An efficient message authentication scheme for link state routing

23 November 2002

conference paper
Published by Institute of Electrical and Electronics Engineers (IEEE)

p. 90-98
https://doi.org/10.1109/csac.1997.646178

Abstract

We study methods for reducing the cost of secure link state routing. In secure link state routing, routers may need to verify the authenticity of many routing updates, and some routers such as border routers may need to sign many routing updates. Previous work such as public-key based schemes are very expensive computationally or have certain limitations. This paper presents an efficient solution, based on a detection-diagnosis-recovery approach, for the link state routing update authentication problem. Our scheme is scalable to handle large networks, applicable to routing protocols that use multiple-valued cost metrics, and applicable even, when link states change frequently.

Keywords

This publication has 18 references indexed in Scilit:

Digital signature protection of the OSPF routing protocol
Published by Institute of Electrical and Electronics Engineers (IEEE) ,2002
Reducing the cost of security in link-state routing
Published by Institute of Electrical and Electronics Engineers (IEEE) ,2002
OSPF Version 2
Published by RFC Editor ,1997
State transition analysis: a rule-based intrusion detection approach
IEEE Transactions on Software Engineering, 1995
Network intrusion detection
IEEE Network, 1994
Integrating security in inter-domain routing protocols
ACM SIGCOMM Computer Communication Review, 1993
A survey of intrusion detection techniques
Computers & Security, 1993
The MD5 Message-Digest Algorithm
Published by RFC Editor ,1992
The New Routing Algorithm for the ARPANET
IEEE Transactions on Communications, 1980
A method for obtaining digital signatures and public-key cryptosystems
Communications of the ACM, 1978