BGP Neighbor Establishment Mechanism Based On Trust Degree

With the continuous progress of the times,the internet has entered a period of very rapid development,and the breadth and depth of integration with the economy and society has reached an unprecedented state.The network environment has become more and more complex.Regarding cyber attacks Incidents are not uncommon,and research on network security has become very important.As the core component of the network environment,the BGP protocol is related to the health and stability of the network environment.However,the traditional BGP protocol has many security vulnerabilities.One is the BGP speaker and peer BGP,which transmits routing information based on TCP.When the speaker communicates,there is no way to verify the authenticity of the Update message and ensure its integrity,and it cannot make up for the original flaws of the TCP protocol.Second,in the BGP system,there was no good way to prove whether the message in the NLRI field content in the update message announced by an AS is true.Third,when BGP was designed before,no effective method was designed to prove the update message.Whether the declared path attribute message is true.All of the above lacked a mechanism to ensure information security,leading to several malicious attacks against it,and it was easy to broadcast false routing messages,causing a series of problems such as data interruption and inaccessibility to the outside world,which undermined the stability of the network environment.Therefore,the security research of BGP protocol is very important.This article first introduces basic knowledge about BGP security,Bayesian estimation and other related theories,and then designs a trust-based BGP neighbor establishment mechanism through the trust mechanism to estimate the next time the neighbor entity's situation is good or bad,and based on this to measure the trust of the path and establish a new BGP routing standard.After that,the current BGP routing scheme was further optimized on this basis.In addition,a set of"humanized" punishment mechanism has been established to punish routing nodes that conduct false propagation.This paper draws on research results in other fields and introduces trust relationships in the autonomous domain system.Each autonomous domain is regarded as an entity.When they exchange information with neighbors,all historical data will be recorded,and then based on Bayesian predictions.Calculate the trustworthiness of nodes and paths,making it a new BGP routing standard.This mechanism does not need to modify the original protocol,does not involve complex key management,and is highly implementable.The final test shows that the mechanism studied in this paper has good stability,can effectively suppress the propagation of false routes,and to a certain extent provides strong support for the healthy and orderly propagation of information and data in the network environment.