טכניון מכון טכנולוגי לישראל
הטכניון מכון טכנולוגי לישראל - בית הספר ללימודי מוסמכים  
M.Sc Thesis
M.Sc StudentHas Green Raziel David
SubjectWhen a Router Tells Different Stories to Different
Neighbors: A New Partition Attack on Link-State
Routing Protocols
DepartmentDepartment of Computer Science
Supervisor Professor Reuven Cohen
Full Thesis textFull thesis text - English Version


Abstract

The Internet consists of a large number of interconnected heterogeneous ASs (Autonomous Systems), each owned and administered by an autonomous organization. Traffic in each AS is forwarded by routers that maintain a coherent picture of the network topology using an intra-AS routing protocol. The most popular intra-AS routing protocols are link-state protocols, such as OSPF and IS-IS.


In this work we propose and analyze a new attack, referred to as a "partition attack,” in which a compromised router sends different LSAs to different neighbors. This enables a single compromised router to prevent the other routers from building a correct and consistent picture of the network topology. The attack cannot be prevented even if LSAs are encrypted and digitally signed with current schemes.