A Prefix Hijacking Detection Model Based on the Immune Network Theory

Jian Zhang; Daofeng Li; Bowen Zhao

doi:10.1109/ACCESS.2019.2941006

IEEE Access (Jan 2019)

A Prefix Hijacking Detection Model Based on the Immune Network Theory

Jian Zhang,
Daofeng Li,
Bowen Zhao

Affiliations

Jian Zhang: School of Computer, Electrical and Information, Guangxi University, Nanning, China
Daofeng Li: School of Computer, Electrical and Information, Guangxi University, Nanning, China
Bowen Zhao: ORCiD; School of Computer Science and Engineering, South China University of Technology, Guangzhou, China

DOI: https://doi.org/10.1109/ACCESS.2019.2941006
Journal volume & issue: Vol. 7
pp. 132384 – 132394

Abstract

Read online

The prefix hijacking problem is an urgent security issue that need to address in the Border Gateway Protocol (BGP) security research. In order to solve the problem of prefix hijacking in BGP, we propose (a) new (p)refix (h)ijacking (d)etection model based on the immune network theory in this paper, called aPHD. To be specific, aPHD uses real BGP UPDATE messages for pre-training and has the ability to detect UPDATE messages in real time after pre-training. The aPHD (1) can effectively detect prefix hijacking attacks with high accuracy; (2)is easy to deployment; and (3) has a low false positive rate and low overhead. Extensive performance evaluation shows that our solution is secure and feasible. The aPHD improved the accuracy rate by 6.2% and reduced the false positive rate by 85.7%.

Published in IEEE Access

ISSN: 2169-3536 (Online)
Publisher: IEEE
Country of publisher: United States
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering
Website: https://ieeexplore.ieee.org/xpl/RecentIssue.jsp?punumber=6287639

About the journal

Abstract

Keywords