Abstract
Security incidents such as natural disasters and power outages can cause inter-domain routing system regional failures, significantly impact the Internet’s safety. Reducing the impact of security incidents is essential for maintaining the stability of the Internet. One of the major impacts of security incidents is that many UPDATE messages will generate, which may easily cause network oscillations. This paper presents the UPDATE messages analysis during the six security incidents and finds that many duplicates and invalid messages are the leading cause of network instability. To effectively process these UPDATE messages, this paper proposes an UPDATE message preprocessing algorithm by analyzing the UPDATE operating mechanism to remove duplicate and invalid messages. Aiming at the problem of slow route search in existing route update methods using software-defined networking (SDN), this paper designs a RIB hierarchical structure for multi-level retrieval and proposes SMSEI-SDN combination with current route update strategies. Experimental results show that when a security incident occurs, by removing duplicate and invalid messages, SMSEI-SDN can reduce the total number of messages by an average of 19% and a maximum of 34.9% within the 60 s of caching time. Besides, SMSEI-SDN can reduce the routing update time by more than 99.98% compared to existing methods. This work provides insights for network operators and researchers interested in security incident impact suppression in the inter-domain routing system.
Highlights
Security incidents such as natural disasters [1, 2] and power outages can cause inter-domain routing system regional failures, significantly impact the Internet’s safety
This paper uses the IP-software-defined networking (SDN) method and the SMSEI-SDN method to construct a routing information table based on the Routing Information Base (RIB) information at the corresponding time in the RIPE data set
This paper first analyzed UPDATE messages’ composition characteristics when the inter-domain routing system encounters large-scale security incidents and found many repeated and invalid messages in the UPDATE messages generated during security incidents
Summary
Security incidents such as natural disasters [1, 2] and power outages can cause inter-domain routing system regional failures, significantly impact the Internet’s safety. In the interdomain routing system, the failure information of nodes and edges will be propagated to the surrounding network through UPDATE messages, which will have a continuous impact on the surrounding networks. In order to reduce the impact of security incidents on the network and maintain the stability of the inter-domain routing system, it is necessary to study methods to suppress the propagation of security incidents’ effects. When the inter-domain routing system encounters a security incident, it will often cause node failure or link interruption and change the inter-domain routing system’s network structure. Once the routing node has exhausted its resources due to processing excessive UPDATE messages [6], it will cause a cascading failure. The continuous propagation of invalid UPDATE messages will cause many invalid paths to be selected before finding a valid route, which will cause
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
