Securing MPLS Networks with Multi-path Routing

Las Vegas, Nevada, USA April 02-April 04

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/ITNG.2007.176

International Conference on Informati ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Sahel Alouneh Articles by Abdeslam En-Nouaary Articles by Anjali Agarwal

	ASCII Text	x
	Sahel Alouneh, Abdeslam En-Nouaary, Anjali Agarwal, "Securing MPLS Networks with Multi-path Routing," Information Technology: New Generations, Third International Conference on, pp. 809-814, International Conference on Information Technology (ITNG'07), 2007.

	BibTex	x
	@article{ 10.1109/ITNG.2007.176, author = {Sahel Alouneh and Abdeslam En-Nouaary and Anjali Agarwal}, title = {Securing MPLS Networks with Multi-path Routing}, journal ={Information Technology: New Generations, Third International Conference on}, volume = {0}, year = {2007}, isbn = {0-7695-2776-0}, pages = {809-814}, doi = {http://doi.ieeecomputersociety.org/10.1109/ITNG.2007.176}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Information Technology: New Generations, Third International Conference on TI - Securing MPLS Networks with Multi-path Routing SN - 0-7695-2776-0 SP809 EP814 A1 - Sahel Alouneh, A1 - Abdeslam En-Nouaary, A1 - Anjali Agarwal, PY - 2007 KW - null VL - 0 JA - Information Technology: New Generations, Third International Conference on ER -

Sahel Alouneh, Concordia University, Canada

Abdeslam En-Nouaary, Concordia University, Canada

Anjali Agarwal, Concordia University, Canada

MPLS network architecture does not protect the confidentiality of data transmitted. This paper proposes a mechanism to enhance the security in MPLS networks by using multi-path routing combined with a modified (k, n) Threshold Secret Sharing scheme. An IP packet entering MPLS ingress router can be partitioned into n shadow (share) packets, which are then assigned to maximally-node disjoint paths across the MPLS network. The egress router at the end will be able to reconstruct the original IP packet if it receives any k share packets. The attacker must therefore tap at least k paths to be able to reconstruct the original IP packet that is being transmitted, while receiving k-1 or less of share packets makes it hard or even impossible to reconstruct the original IP packet.

Citation:

Sahel Alouneh, Abdeslam En-Nouaary, Anjali Agarwal, "Securing MPLS Networks with Multi-path Routing," itng, pp.809-814, International Conference on Information Technology (ITNG'07), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.