计算机工程与应用 ›› 2019, Vol. 55 ›› Issue (17): 125-130.DOI: 10.3778/j.issn.1002-8331.1807-0264

• 网络、通信与安全 • 上一篇    下一篇

基于生灭过程的域间路由系统相继故障模型

许新忠,王禹,苗甫   

  1. 1.河南艺术职业学院,郑州 450011
    2.河南工程学院 计算机学院,郑州 451191
  • 出版日期:2019-09-01 发布日期:2019-08-30

Cascading Failure Model for Inter Domain Routing System Based on Birth and Die Process Theory

XU Xinzhong, WANG Yu, MIAO Fu   

  1. 1.Henan Vocational College of Art, Zhengzhou 450011, China
    2.School of Computer Science, Henan University of Engineering, Zhengzhou 451191, China
  • Online:2019-09-01 Published:2019-08-30

摘要: 大规模BGP-LDoS(Low-rate DoS attack against BGP sessions)攻击是造成域间路由系统大范围相继故障的一种典型且有效的技术手段。在分析BGP-LDoS攻击技术及特性的基础上,提出一种基于生灭过程理论的相继故障模型。将域间路由系统的所有节点视为一个单种群,将BGP-LDoS攻击下的路由节点故障传播过程视为种群的生灭过程,即各个节点在正常态和故障态之间的迁移。通过构建的故障传播主方程,形式化描述节点故障在域间路由系统中的级联传播。理论分析和实验结果都验证了该模型能够有效描述BGP-LDoS攻击导致的域间路由系统节点故障传播过程,可为域间路由系统相继故障预防与控制技术的研究提供理论支持。

关键词: 域间路由, 相继故障, 生灭过程, 状态迁移

Abstract: Large scale BGP-LDoS attack is a typical and effective technical means to cause large scale cascading failures in Inter Domain Routing System(IDRS). This paper proposes a cascading failure model, named BID-CFM, which is used to describe the failure propagation process of routing nodes when suffering from large-scale BGP-LDoS attacks. In the model, all nodes of IDRS is regarded as a single species and the failure propagation process of nodes under BGP-LDoS attack is regarded as the birth and death process, namely the state migration of each node between normal and failure. Theoretical analysis and experimental results verify that the model can effectively describe the cascading failure of IDRS caused by BGP-LDoS attacks.

Key words: inter domain routing, cascading failure, birth and die process, state transfer