Issuance Policies of Route Origin Authorization with a Single Prefix and Multiple Prefixes: A Comparative Analysis

被引：0

作者：

Lai, Zetong ^{[1
]}

Yan, Zhiwei ^{[2
]}

Geng, Guanggang ^{[1
]}

Nakazato, Hidenori ^{[3
]}

机构：

[1] Jinan Univ, Dept Cyber Secur, Guangzhou, Peoples R China

[2] China Internet Network Informat Ctr, Natl Engn Lab Naming & Addressing, Beijing, Peoples R China

[3] Waseda Univ, Fac Sci & Engn, Tokyo, Japan

来源：

INTERNATIONAL JOURNAL OF ADVANCED COMPUTER SCIENCE AND APPLICATIONS | 2024年 / 15卷 / 03期

关键词：

BGP; RPKI; route origin authorization; interdomain routing security; computer network protocols; routing; BGP;

D O I：

10.14569/IJACSA.2024.01503116

中图分类号：

TP301 [理论、方法];

学科分类号：

081202 ;

摘要：

Resource Public Key Infrastructure (RPKI) is a solution to mitigate the security issues faced by inter-domain routing. Within the RPKI framework, Route Origin Authorization (ROA) plays a crucial role as an RPKI object. ROA allows address space holders to place a single IP address prefix or multiple IP address prefixes in it. However, this feature has introduced security risks during the global deployment of RPKI. In this study, we analyze the current status of ROA issuance and discuss the impact of using two ROA issuance policies on RPKI security and synchronization efficiency. Based on the aforementioned work, recommendations are proposed for the utilization of ROA issuance policies.

引用

页码：1168 / 1176

页数：9