Security issues in control, management and routing protocols

被引:12
作者
Baltatu, M [1 ]
Lioy, A [1 ]
Maino, F [1 ]
Mazzocchi, D [1 ]
机构
[1] Politecn Torino, Dipartimento Automat & Informat, I-10129 Turin, Italy
来源
COMPUTER NETWORKS | 2000年 / 34卷 / 06期
关键词
denial of service; authentication; IP security; routing security; public key infrastructure;
D O I
10.1016/S1389-1286(00)00159-6
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
The TCP/IP suite is the basis for today's Internet, yet it lacks even the most basic mechanisms of authentication. As usage of the Internet increases, its scarcity of built-in security becomes more and more of a problem. This paper describes serious attacks against Internet control and management protocols, with an emphasis on the ICMP protocol, as well as some of the well-known vulnerabilities of the inter-domain routing protocols. All the presented attacks have at least one common feature: they exploit intrinsic network security flaws. The paper also discusses various solutions to these security breaches, including the use of IPsec. (C) 2000 Elsevier Science B.V. All rights reserved.
引用
收藏
页码:881 / 894
页数:14
相关论文
共 18 条
  • [1] BAKER F, 1997, 2082 RIP2 MD5 RFC
  • [2] BELLOVIN S, 1989, ACM COMPUTER COMMUNI, V19
  • [3] Braden R., 1989, REQUIREMENTS INTERNE
  • [4] *CERT, 1996, CA9626 CERT
  • [5] *CERT, 1998, CA9801 CERT
  • [6] DERRING S, 1991, 1256 ICMP RFC
  • [7] FENNER W, 1997, 2236 RFC
  • [8] Ferguson P., 1998, 2267 RFC
  • [9] HARKINS D, 1998, 2409 IKE RFC
  • [10] HAUSER R, 1999, COMPUTER NETWORKS, V31
12