共查询到19条相似文献,搜索用时 140 毫秒
1.
BGP(border gateway protocol,边界网关协议)在设计之初并没有充分考虑安全问题,随着互联网规模的日益壮大,其安全风险也暴露得愈加明显。学术界和工业界提出了诸多方案解决域间路由面临的安全问题,目前真正得以部署的是IETF(the Internet Engineering Task Force,互联网工程任务组)推动的资源公钥基础设施(resource public key infrastructure,RPKI)。综述了RPKI的技术现状和研究进展,重点分析了RPKI存在的问题、现有的解决方案以及不足之处,介绍了RPKI功能扩展的相关研究,最后指出了未来有潜力的研究方向。 相似文献
2.
3.
4.
5.
6.
张晓微 《电信工程技术与标准化》1997,(2)
在IP互联网络的设计中路由协议的选择十分重要,文章就选择和使用路由协议时必须考虑的关键问题——网络拓扑、编址与路由汇集、路由选择、收敛、网络扩展性及安全性等问题进行讨论;并重点介绍较常用的EIGRP和OSPF路由协议的特点。 相似文献
7.
边界网关协议(border gateway protocol,BGP)是支撑互联网50年来快速发展的核心协议,因早期设计考虑不足一直存在路由劫持、路由泄露等路由安全威胁漏洞。随着互联网应用日益深入,BGP 路由安全问题逐渐引起业界重视,边界网络安全防护意义重大。提出了一种BGP路由安全检测架构,通过推理构建全球BGP路由知识库实现互联网全局路由可视性,并基于此实现路由劫持、路由泄露等路由安全事件的准实时检测。通过在杭州交换中心部署实践,证明本系统可构造较完整的互联网全局路由知识库、实现较准确和实时的BGP路由安全事件检测。 相似文献
8.
9.
10.
11.
《Microelectronics Journal》2015,46(8):706-715
Detailed routing solutions for island style FPGA architectures using Boolean satisfiability (SAT) based formulations have been proposed in this paper. Due to decreasing size of ICs and hence, the increasing complexity of the routing resource constraints, routing has been a big challenge in electronic design automation field. Our proposed techniques work on multi-pin net routing where all nets are considered for routing in their intact form whereas, most of the existing routing solutions decompose multi-pin nets into two-pin nets for detailed routing to ease the problem. However this approach, apart from increasing the number of nets in the circuits, may also introduce pin doglegging which, when not permitted by the architecture of FPGA, would require extra constraints to eliminate. Many detailed routers adopt sequential detailed routing approaches which are vulnerable to the net ordering problem which may cause a routable circuit to be erroneously classified as unroutable. Our proposed techniques avoid these pitfalls by keeping the multi-pin nets intact and solve all nets simultaneously using SAT. The SAT-based multi-pin net dogleg-free formulations presented here achieve significant improvement over existing SAT-based solutions with respect to the number of variables and clauses used, thereby achieving greater scalability and also display comparable and sometimes better routability results on benchmark circuits when compared with other detailed routing solutions. Detailed routing is also significantly affected by the architecture of the switching blocks. This paper proposes SAT-based formulation for three different switch box architectures i.e. Subset, Wilton, and Universal switches. Our experiments clearly demonstrate how routing solutions for a circuit can differ significantly for different types of switch boxes. 相似文献
12.
In the traditional Internet Protocol (IP) architecture, there is an overload of IP semantic problems. Existing solutions focused mainly on the infrastructure for the fixed network, and there is a lack of support for Mobile Ad Hoc Networks (MANETs). To improve scalability. A routing protocol for MANETs is presented based on a locator named Tree-structure Locator Distance Vector (TLDV). The hard core of this routing method is the identifier/locator split by the Distributed Hash Table (DHT ) method, which provides a scalable routing service. The node locator indicates its relative location in the network and should be updated whenever topology changes . Locator space is organized as a tree-structure, and the basic routing operation of the TLDV protocol is presented. TLDV protocol is compared to some classical routing protocols for MANETs on the NS2 platform. Results show that TLDV has better scalability. 相似文献
13.
Yang Jiahai ;Xu Mingwei ;Wang Hui ;Chen Wenlong ;Yang Yuan ;Dong Qingzhou ;Wang Yang 《电子科学学刊(英文版)》2014,(6):519-536
The scalability and mobility issues in current Internet architecture have drawn a lot of attentions from researchers. However, there are still many problems in current solutions. In this paper, we argue that three spaces, i.e., endpoint IDentifier (ID), Endpoint Locator (ELoc) and Routing Locator (RLoc), are necessary to realize two separations, i.e., separating identifier from locator and separating edge networks from the transit core. Following this argument, we design ID-ELoc-RLoc based architecture, i.e., IER, a separation approach to solve both mobility and scalability issues. After separating identifier from locator, mobile endpoints can ensure continuity of communications across IP address changes since their IDs do not change during moving. After separating edge networks from the transit core, the size and dynamics of global routing table would not be affected by traffic engineering, multi-homing, etc. in edge networks. In this paper, we introduce the definitions, framework, and implementation considerations of our IER architecture in details. 相似文献
14.
互联网规模扩大,相应路由表大小呈指数增加,形成下一代互联网可扩展路由“瓶颈”。基于复杂网络和可扩展路由的相关理论与主要策略,文章对相关研究成果。如小世界效应所表现出来的特性、小世界和无标度网络模型,网格、层次及隐藏度量等3种可扩展路由网络模型,随机游走、贪婪、最大度、优先、本地介数、距离与度及相似性与度混合等多种路由策略等进行了分析与归纳。这些研究结果和方法为因互联网规模不断扩大所带来的路由系统可扩展性问题提供解决方案 相似文献
15.
16.
Overlay networking: applications and research challenges 总被引:3,自引:0,他引:3
LU Jun-xiu SHAN Xiu-ming REN Yong 《通信学报》2004,25(12):46-52
Overlay networking is one of the perspective solutions to today‘s Internet challenges. At basic service level, overlay networks can serve as a supplement and enhancement of existing services, such as routing and addressing. At high application level, overlay networks can be used for applications, which are difficult to deploy in existing IP architecture with some specific reasons, e.g., they need high-level information, which is hard to obtain by underlying layers. To address the heterogeneity of today‘s Internet, overlay networks provide ways to service availability and desirable performance while retaining scalability. In contrast to changing the existing network layer, overlay networks allow bootstrapping, which is most important in the development of Internet infrastructure. Various applications of overlay networking are clarified in this paper. Research challenges including routing and searching in overlay networking are also identified. 相似文献
17.
An important challenge for the wider adoption of mobile ad hoc network (MANET) technologies is finding ways to efficiently interconnect them with the Internet. However, such interconnections prove difficult due to differences in mobility, addressing and routing between MANETs and existing IP networks.In this paper, we review the existing solutions to interconnect MANETs with the Internet, but find them lacking in robustness and flexibility. For instance, many solutions do not consider the presence of multiple gateways, and in such scenarios they either fail, or are less efficient due to the lack of multi-homing capabilities.A key insight of ours is that the reason for routing failure is usually an interconnection scheme’s inability to express indirection (i.e., a way to enforce routing through a certain gateway on the path toward a destination in the Internet). Another problem concerns state replication where a route update fails to replicate all the routing state needed to forward packets to an Internet gateway.We analyze the above problems and suggest a solution that provides robust and flexible Internet connectivity. With minor adaptions our solution works for any MANET routing protocol, and has support for multiple gateways and multi-homing. Simulations show that, when used in combination with AODV routing, our solution provides up to 20% delivery ratio improvement over one of the main alternatives. A prototype implementation illustrates the feasibility of our solution in the real world. 相似文献
18.
路由是网络的结构基石,新型网络路由机制是构建新型网络体系的必需。目前网际层的路由本质上是所谓的"单下一跳路由"机制,解决网络传输拥塞问题的一个根本措施在于改变当前网络单下一跳的选路模式,允许多条路径的并行传输。边界网关协议(BGP)是目前Internet唯一采用的域间路由协议,针对当前域间路由系统面临的规模可扩展性问题,文章提出了一个规模可扩展的新型分层域间路由架构(s-idra)。除了可扩展性以外,路由体系还面临其他挑战,比如安全性、服务质量(QoS)、组播、移动、动态网络拓扑等等。路由协议尤其是未来新型信息网络体系结构的路由协议的研究任重而道远。 相似文献
19.
It is generally recognized that the current routing scheme of Internet suffers from serious scalability problems. In this paper, we work with the abstract but ??Internet-like?? network model consisting of an infinite-variance power-law random graph (IVPLRG). We adopt the idea of a routing scheme proposed by Carmi, Cohen and Dolev (C-C-D). The scheme fits very naturally to the spontaneously emerging ??soft hierarchy?? architecture on an IVPLRG. The use of multiple addresses is suggested as a solution to the inflexibility of the pure C-C-D scheme. A mean-field approximation is introduced for efficient computation of relevant quantitative characteristics and applied to various problems of our scheme. We review a few recent Internet routing proposals and discuss their relation to our scheme. We find out that the topology creation of our scheme offers advantages in terms of scalability and routing policy control. 相似文献