Advertisement

Recreating a Large-Scale BGP Incident in a Realistic Environment

  • Enis Karaarslan
  • Andres Garcia Perez
  • Christos Siaterlis
Conference paper
Part of the Lecture Notes in Electrical Engineering book series (LNEE, volume 264)

Abstract

The Internet has become a critical asset for both the economy and the society. Realistic experimentation environments are needed to study and improve the resilience and the stability of the Internet. In this paper, we propose a methodology that allows to: (1) model an Internet-like topology, (2) recreate the model with realistic parameters and conditions, (3) reproduce large-scale incidents, and (4) test various what-if scenarios. As a prood of concept, a valid abstraction of the Europe Internet backbone is created where Network Service Providers (NSP) are connected to each other in various Internet Exchange Points (IXP). This topology is emulated on a Emulab-based testbed. A well-known BGP-route hijacking incident is replayed and studied under hypothetical scenarios of network operators reactions and collaboration. The results of the experiments are then analysed showing the potential value of the proposed methodology.

Keywords

Autonomous System Border Gateway Protocol Background Traffic Security Incident Network Service Provider 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.

Notes

Acknowledgments

This study was conducted during the stay of Mr. Karaarslan as a TUBITAK grant holder at the Joint Research Centre and was supported by TUBITAK BIDEB 2219.

References

  1. 1.
    Augustin B, Krishnamurthy B, Willinger W (2009) Ixps: mapped? In: Proceedings of the ICM 2009, pp 336–349Google Scholar
  2. 2.
    Carl G, Kesidis G (2008) Large-scale testing of the Internet’s border gateway protocol (BGP) via topological scale-down. ACM Trans Model Comput Simul 18(3):11:1–11:30. doi: 10.1145/1371574.1371577 CrossRefGoogle Scholar
  3. 3.
    Eide E, Stoller L, Lepreau J (2007) An experimentation workbench for replayable networking research. In: Proceedings of the 4th USENIX symposium on networked systems design & implementation, pp 215–228Google Scholar
  4. 4.
    Gregori E, Improta A, Lenzini L, Orsini C (2011) The impact of IXPs on the AS-level topology structure of the Internet. Comp Commun 34(1):68–82. doi: 10.1016/j.comcom.2010.09.002 CrossRefGoogle Scholar
  5. 5.
    Lad M, Oliveira R, Zhang B, Zhang L (2007) Understanding resiliency of Internet topology against prefix hijack attacks. In: Proceedings of the DSN 2007 conference, IEEE, pp 368–377. doi: 10.1109/DSN.2007.95
  6. 6.
    Mirkovic J, Hussain A, Fahmy S, Reiher P, Thomas R (2009) Accurately measuring denial of service in simulation and testbed experiments. IEEE Trans Dependable Secure Comput 6(2):81–95. doi: 10.1109/TDSC.2008.73 CrossRefGoogle Scholar
  7. 7.
    NCC R (2008) Ripe ncc, youtube hijacking: a ripe ncc ris case study.Google Scholar
  8. 8.
    Nicol D, Liljenstam M, Liu J (2005) Advanced concepts in large-scale network simulation. In: Proceedings of the winter simulation conference, 2005, IEEE, pp. 153–166. doi: 10.1109/WSC.2005.1574248
  9. 9.
    Siaterlis C, Garcia AP, Genge B (2012) On the use of emulab testbeds for scientifically rigorous experiments. IEEE Commun Surv Tutorials (Accepted)Google Scholar
  10. 10.
    Winter R (2009) Modeling the Internet routing topology in less than 24h. In: Proceedings of the PADS 2009 conference, IEEE, pp 72–79. doi: 10.1109/PADS.2009.17
  11. 11.
    Xu K, Duan Z, Zhang Z, Chandrashekar J (2004) On properties of internet exchange points and their impact on as topology and relationship. In: Proceedings of the NETWORKING 2004 conference. Springer, pp 284–295Google Scholar

Copyright information

© Springer International Publishing Switzerland 2013

Authors and Affiliations

  • Enis Karaarslan
    • 1
  • Andres Garcia Perez
    • 2
  • Christos Siaterlis
    • 2
  1. 1.Department of Computer ScienceMugla Sitki Kocman UniversityMuglaTurkey
  2. 2.JRC Institute for the Protection and Security of the CitizenIspraItaly

Personalised recommendations