Secure Split Assignment Trajectory Sampling: A Malicious Router Detection System

Philadelphia, Pennsylvania June 25-June 28

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/DSN.2006.64

International Conference on Dependabl ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Sihyung Lee Articles by Tina Wong Articles by Hyong S. Kim

	ASCII Text	x
	Sihyung Lee, Tina Wong, Hyong S. Kim, "Secure Split Assignment Trajectory Sampling: A Malicious Router Detection System," Dependable Systems and Networks, International Conference on, pp. 333-342, International Conference on Dependable Systems and Networks (DSN'06), 2006.

	BibTex	x
	@article{ 10.1109/DSN.2006.64, author = {Sihyung Lee and Tina Wong and Hyong S. Kim}, title = {Secure Split Assignment Trajectory Sampling: A Malicious Router Detection System}, journal ={Dependable Systems and Networks, International Conference on}, volume = {0}, year = {2006}, isbn = {0-7695-2607-1}, pages = {333-342}, doi = {http://doi.ieeecomputersociety.org/10.1109/DSN.2006.64}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Dependable Systems and Networks, International Conference on TI - Secure Split Assignment Trajectory Sampling: A Malicious Router Detection System SN - 0-7695-2607-1 SP333 EP342 A1 - Sihyung Lee, A1 - Tina Wong, A1 - Hyong S. Kim, PY - 2006 KW - null VL - 0 JA - Dependable Systems and Networks, International Conference on ER -

Sihyung Lee, Camegie Mellon University

Tina Wong, Camegie Mellon University

Hyong S. Kim, Camegie Mellon University

Routing infrastructure plays a vital mle in the Internet, and attacks on routers can be damaging. Compromised routers can drop, modih, mislforward or reorder valid packets. Existing proposals for secure forwarding require substantial computational overhead and additional capabilities at routers. We propose Secure Split Assignment Trajectory Sampling (SATS), a system that detects malicious routers on the data plane. SATS locates a set of suspicious routers when packets do not follow their predicted paths. It works with a traffic measurement platform using packet sampling, has low overhead on routers and is applicable to high-speed networks. Different subsets ofpackets are sampled over dzyerent groups of routers to ensure that an attacker cannot completely evade detection. Our evaluation shows that SATS can signzjicantly limit a malicious router's harm to a small portion of traffic in a network.

Citation:

Sihyung Lee, Tina Wong, Hyong S. Kim, "Secure Split Assignment Trajectory Sampling: A Malicious Router Detection System," dsn, pp.333-342, International Conference on Dependable Systems and Networks (DSN'06), 2006

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.