ÿþ<html><head><title>A Strategy for Transitioning to BGP Security</title>

</head>



<body bgcolor="#FFFFFF">



<!-- TITLE -->

</p>

<font size="5" color="#2b2a66" face="Verdana"><b>Let the Market Drive Deployment:  A Strategy for Transitioning to BGP Security</b>

</font>

<br>

<font size="4" color="#937630" face="Verdana"><b>Phillipa Gill, Michael Schapira, and Sharon Goldberg</b></font>

<br>

<font size="3" color="#2b2a66" face="Verdana">

<a href="http://conferences.sigcomm.org/sigcomm/2011/">ACM SIGCOMM'11</a>,  Toronto, August 2011.

<br>

<a href="http://www.nanog.org/meetings/nanog52/host.php">NANOG'52</a>, Denver, June 2011. 

</font>







<p>



<font size="3" color="#937630" face="Verdana">

<b>Abstract:

</b></font>&nbsp;&nbsp;&nbsp;  

With a cryptographic root-of-trust for Internet routing (<a href="https://www.arin.net/resources/rpki.html">RPKI</a>) on the horizon, we can finally start planning the deployment of one of the secure interdomain routing protocols proposed over a decade ago (<a href="http://www.ir.bbn.com/sbgp/">Secure BGP</a>, <a href="http://www.cisco.com/web/about/ac123/ac147/archived_issues/ipj_6-3/securing_bgp_sobgp.html">secure origin BGP</a>).



However, if experience with IPv6 is any indicator, this will be no easy task. Security concerns alone seem unlikely to provide sufficient local incentive to drive the deployment process forward. Worse yet, the security benefits provided by the S*BGP protocols do not even kick in until a large number of ASes have deployed them.



<br><br>Instead, we appeal to ISPs' interest in increasing revenue-generating traffic. We propose a strategy that governments and industry groups can use to harness ISPs' local business objectives and drive global S*BGP deployment.



We evaluate our deployment strategy using theoretical analysis and large-scale simulations on empirical data. Our results give evidence that the market dynamics created by our proposal can transition the majority of the Internet to S*BGP.





<p>

<b><font size="3" color="#937630" face="Verdana">Papers:</font>

</b></font>&nbsp;&nbsp;&nbsp;  Let the Market Drive Deployment: A Strategy for Transitioning to BGP Security <a href="papers/SBGPtrans.pdf">ACM SIGCOMM version</a>   &nbsp;&nbsp;&nbsp;

<a href="papers/SBGPtrans_full.pdf" >full version</a>&nbsp;&nbsp;&nbsp;<br>

 &nbsp;&nbsp;&nbsp; &nbsp;&nbsp;&nbsp; &nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &nbsp;&nbsp;&nbsp; &nbsp;&nbsp;&nbsp;

<a href="papers/QuickSand.pdf">Modeling on Quicksand: Dealing with the Scarcity of Ground Truth in Interdomain Routing Data</a> ACM Computer Communication Review. Jan. 2012. 



<p>

<b><font size="3" color="#937630" face="Verdana">Talks:</font>

</b></font>&nbsp;&nbsp;&nbsp; 

<a href="http://www.cs.bu.edu/~goldbe/papers/Goldberg-TransitionToSBGP-NANOG.pdf">NANOG slides</a>&nbsp;&nbsp;&nbsp;

<a href="http://www.cs.utoronto.ca/~phillipa/slides/LetTheMarket_Web.pptx">Seminar slides</a>&nbsp;&nbsp;&nbsp;

<a href="http://www.cs.utoronto.ca/~phillipa/slides/LetTheMarket_SIGCOMM-Web.pdf">SIGCOMM slides</a>

<br>



<p>



<b><font size="3" color="#937630" face="verdana">Video:</font>

</b></font>&nbsp;&nbsp;&nbsp;

<a href="http://www.nanog.org/meetings/nanog52/presentations/Tuesday/Let%20the%20Market%20Drive%20Deployment%20-%20A%20Strategy%20for%20Transitioning%20to%20BGP%20Security.wmv">NANOG52 (WMV)</a>

&nbsp;&nbsp;&nbsp;

<a href="http://research.microsoft.com/apps/video/default.aspx?id=150677">Microsoft Crypo Colloquium</a>

&nbsp;&nbsp;&nbsp;

<a href="http://dl.acm.org/citation.cfm?id=2018439&CFID=46265961&CFTOKEN=46849312" target="_blank">SIGCOMM (ACM video)</a>

<br>

<p>

<b><font size="3" color="#937630" face="Verdana">Results Browser:</font>

</b></font>&nbsp;&nbsp;&nbsp; 

<a href="http://www.cs.toronto.edu/~phillipa/ResBrowser/ResBrowserWalkThrough.html">Results browser</a> is an interactive interface for exploring the S*BGP deployment dynamics from our simulations.

<br>



<p>

<b><font size="3" color="#937630" face="Verdana">GraphViz:</font>

</b></font>&nbsp;&nbsp;&nbsp; 

<a href="http://www.cs.toronto.edu/~phillipa/measurement/canonical/">GraphViz</a> visualization of our simulations.



<p>

This material is based upon work supported by the National Science Foundation under Grant 1017907 as well as a corporate gift from Cisco. Any opinions, findings and conclusions or recomendations expressed in this material are those of the author(s) and do not necessarily reflect the views of the National Science Foundation (NSF) or other sponsors.





<!--  Google analytics stuff below this line -->



<script type="text/javascript">

var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www.");

document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E"));

</script>

<script type="text/javascript">

try {

var pageTracker = _gat._getTracker("UA-6969041-1");

pageTracker._trackPageview();

} catch(err) {}</script>



</body></html>