A New Path Verification Protocol for Securing BGP

The paper proposes an ID-based Aggregate Path Verification protocol (IDAPV) to provide authenticity for route announcements in the Border Gateway (BGP) with a more efficient and easily deployed ID-based aggregate signature scheme instead of certificate-based scheme, which leads to performance and deployment matters of current proposals, and a secure key issuing protocol to hold the privacy of the system master key and router's private key in IDAPV, for in the ID-based cryptographic scheme, private key generator has the knowledge about these secrets, which is greatly risky in the real world. Compared with S-BGP, IDAPV simplifies key management process, consumes lesser memory and has shorter update message. Our simulation result indicates that convergence time of IDAPV with hardware implementation approximates BGP.