VTechWorks staff will be away for the Thanksgiving holiday beginning at noon on Wednesday, November 27, through Friday, November 29. We will resume normal operations on Monday, December 2. Thank you for your patience.
 

RoVista: Measuring and Analyzing the Route Origin Validation (ROV) in RPKI

dc.contributor.authorLi, Weitongen
dc.contributor.authorLin, Zhexiaoen
dc.contributor.authorAshiq, Md. Ishtiaqen
dc.contributor.authorAben, Emileen
dc.contributor.authorFontugne, Romainen
dc.contributor.authorPhokeer, Amreeshen
dc.contributor.authorChung, Taejoongen
dc.date.accessioned2023-11-02T13:07:41Zen
dc.date.available2023-11-02T13:07:41Zen
dc.date.issued2023-10-24en
dc.date.updated2023-11-01T08:01:46Zen
dc.description.abstractThe Resource Public Key Infrastructure (RPKI) is a system to add security to the Internet routing. In recent years, the publication of Route Origin Authorization (ROA) objects, which bind IP prefixes to their legitimate origin ASN, has been rapidly increasing. However, ROAs are effective only if the routers use them to verify and filter invalid BGP announcements, a process called Route Origin Validation (ROV). There are many proposed approaches to measure the status of ROV in the wild, but they are limited in scalability or accuracy. In this paper, we present RoVista, an ROV measurement framework that leverages IP-ID side channel and in-the-wild RPKI-invalid prefix. With over 20 months of longitudinal measurement, RoVista successfully covers more than 28K ASes where 63.8% of ASes have derived benefits from ROV, although the percentage of fully protected ASes remains relatively low at 12.3%. In order to validate our findings, we have also sought input from network operators. We then evaluate the security impact of current ROV deployment and reveal misconfigurations that will weaken the protection of ROV. Lastly, we compare RoVista with other approaches and conclude with a discussion of our findings and limitations.en
dc.description.versionPublished versionen
dc.format.mimetypeapplication/pdfen
dc.identifier.doihttps://doi.org/10.1145/3618257.3624806en
dc.identifier.urihttp://hdl.handle.net/10919/116619en
dc.language.isoenen
dc.publisherACMen
dc.rightsCreative Commons Attribution 4.0 Internationalen
dc.rights.holderThe author(s)en
dc.rights.urihttp://creativecommons.org/licenses/by/4.0/en
dc.titleRoVista: Measuring and Analyzing the Route Origin Validation (ROV) in RPKIen
dc.typeArticle - Refereeden
dc.type.dcmitypeTexten

Files

Original bundle
Now showing 1 - 1 of 1
Loading...
Thumbnail Image
Name:
3618257.3624806.pdf
Size:
1.24 MB
Format:
Adobe Portable Document Format
Description:
Published version
License bundle
Now showing 1 - 1 of 1
Name:
license.txt
Size:
0 B
Format:
Item-specific license agreed upon to submission
Description: