| 摘要 |
A technique for detecting and locating a misbehaving router divides the network domain into multiple sectors and uses a two-level authentication scheme to allow a receiving device to authenticate that a particular packet originated in a particular sector. More specifically, an originating device includes a sector tag and a device tag in the packet. The sector tag is computed using a sector key known to all devices in the network domain, and allows any receiving device to authenticate the originating sector for the packet. The device tag is computed using a device key known only to the device and to a secure and trusted authority within the same sector. Upon receiving the packet, a receiving device authenticates the packet by computing a sector verification tag and comparing the sector verification tag to the sector tag in the packet. If the sector verification tag does not match the sector tag in the packet, then the receiving device drops the packet. If the sector verification tag matches the sector tag in the packet, but the packet includes invalid data, then the receiving device forwards the packet to a secure and trusted authority in the receiving sector. The secure and trusted authority in the receiving sector forwards the packet to other secure and trust authorities in other sectors. Each secure and trusted authority that receives the packet is able to determine whether any device in its sector is the originating device for the packet by computing device verification tags for each device in the sector and comparing the device verification tags to the device tag in the packet.
|
