Distributed algorithms for secure multipath routing

To proactively defend against intruders from readily jeopardizing single-path data sessions, we propose a distributed secure multipath solution to route data across multiple paths so that intruders require much more resources to mount successful attacks. Our work exhibits several crucial properties...

Full description

Saved in:
Bibliographic Details
Published inProceedings IEEE 24th Annual Joint Conference of the IEEE Computer and Communications Societies Vol. 3; pp. 1952 - 1963 vol. 3
Main Authors Lee, P.P.C., Misra, V., Rubenstein, D.
Format Conference Proceeding
LanguageEnglish
Published IEEE 2005
Subjects
Bandwidth
Computer crime
Computer science
Constraint optimization
Data security
Distributed algorithms
Network topology
Optimal control
Routing protocols
Throughput
Online AccessGet full text

Cover

More Information
Summary:To proactively defend against intruders from readily jeopardizing single-path data sessions, we propose a distributed secure multipath solution to route data across multiple paths so that intruders require much more resources to mount successful attacks. Our work exhibits several crucial properties that differentiate itself from previous approaches. They include (1) distributed routing decisions: routing decisions are made without the centralized information of the entire network topology, (2) bandwidth-constraint adaptation: the worst-case link attack is mitigated for any feasible session throughput subject to the link-bandwidth constraints, and (3) lexicographic protection: severe link attacks are suppressed based on lexicographic optimization. We devise two algorithms for the solution, termed the bound-control algorithm and the lex-control algorithm, and prove their convergence to the respective optimal solutions. Experiments show that the bound-control algorithm is more effective to prevent the worst-case single-link attack when compared to the single-path approach, and that the lex-control algorithm further enhances the bound-control algorithm by countering severe single-link attacks and various models of multi-link attacks. Moreover, the lex-control algorithm offers prominent protection after only a few execution rounds. Thus, system designers can sacrifice minimal routing security for significantly improved algorithm performance when deploying the distributed secure multipath solution.
ISBN:9780780389687
0780389689
ISSN:0743-166X
DOI:10.1109/INFCOM.2005.1498473