An experimental study of insider attacks for OSPF routing protocol

Atlanta, GA October 28-October 31

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/ICNP.1997.643735

Fifth International Conference on Net ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by B. Vetter Articles by F. Wang Articles by S.F. Wu

	ASCII Text	x
	B. Vetter, F. Wang, S.F. Wu, "An experimental study of insider attacks for OSPF routing protocol," Network Protocols, IEEE International Conference on, pp. 293, Fifth International Conference on Network Protocols (ICNP'97), 1997.

	BibTex	x
	@article{ 10.1109/ICNP.1997.643735, author = {B. Vetter and F. Wang and S.F. Wu}, title = {An experimental study of insider attacks for OSPF routing protocol}, journal ={Network Protocols, IEEE International Conference on}, volume = {0}, year = {1997}, issn = {1092-1648}, pages = {293}, doi = {http://doi.ieeecomputersociety.org/10.1109/ICNP.1997.643735}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Network Protocols, IEEE International Conference on TI - An experimental study of insider attacks for OSPF routing protocol SN - 1092-1648 SP EP A1 - B. Vetter, A1 - F. Wang, A1 - S.F. Wu, PY - 1997 KW - telecommunication network routing; OSPF routing protocol; network infrastructure; network routing; management protocols; security intrusions; max sequence number attack; OSPF routing testbed; router products VL - 0 JA - Network Protocols, IEEE International Conference on ER -

B. Vetter, Dept. of Comput. Sci., North Carolina State Univ., Raleigh, NC, USA

F. Wang, Dept. of Comput. Sci., North Carolina State Univ., Raleigh, NC, USA

S.F. Wu, Dept. of Comput. Sci., North Carolina State Univ., Raleigh, NC, USA

It is critical to protect the network infrastructure (e.g., network routing and management protocols) against security intrusions, yet dealing with insider attacks are probably one of the most challenging research problems in network security. We study the security threats, especially internal/insider threats, for the standardized routing protocol OSPF. In OSPF, a group of routers collaborate, exchange routing information, and forward packets for each other. If one (and maybe more than one) router is evil or compromised, how can this router damage the whole network? In this paper, we analyze OSPF and identify its strengths and weakness under various insider attacks. Furthermore, to confirm our analysis, we have implemented and experimented one attack, the max sequence number attack, on our OSPF routing testbed. Our attack is very successful against two independently developed router products as it will block routing updates for 60 minutes by simply injecting one bad OSPF protocol data unit.

Index Terms:

telecommunication network routing; OSPF routing protocol; network infrastructure; network routing; management protocols; security intrusions; max sequence number attack; OSPF routing testbed; router products

Citation:

B. Vetter, F. Wang, S.F. Wu, "An experimental study of insider attacks for OSPF routing protocol," icnp, pp.293, Fifth International Conference on Network Protocols (ICNP'97), 1997

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.