公开(公告)号：US11909763B2

公开(公告)日：2024-02-20

申请号：US17224275

申请日：2021-04-07

Applicant: Cisco Technology, Inc.

Inventor： Jakob Heitz ,  Juan Alcaide

IPC: H04L9/40 ,  H04L45/00

CPC classification number: H04L63/1466 ,  H04L45/22 ,  H04L63/0823

Abstract: Techniques for mitigating BGP blackholes and hijackings are disclosed herein. The techniques include methods for determining, by a victim autonomous system (AS), that a first AS is associated with a first BGP route that includes the victim AS as the destination or as an AS along the first BGP route to the destination and sending a message to a second AS directing the second AS to refrain from using the first AS to propagate data to the victim AS. The message can include a set of one or more AS numbers to avoid in refraining from using to propagate data to the victim AS, a timestamp, an expiration interval, a signature of the victim AS, and an identifier identifying a certificate to be used to verify the signature. Systems and computer-readable media are also provided.

公开(公告)号：US20240163311A1

公开(公告)日：2024-05-16

申请号：US18422075

申请日：2024-01-25

Applicant: Cisco Technology, Inc.

Inventor： Jakob Heitz ,  Juan Alcaide

IPC: H04L9/40 ,  H04L45/00

CPC classification number: H04L63/1466 ,  H04L45/22 ,  H04L63/0823

Abstract: Techniques for mitigating BGP blackholes and hijackings are disclosed herein. The techniques include methods for determining, by a victim autonomous system (AS), that a first AS is associated with a first BGP route that includes the victim AS as the destination or as an AS along the first BGP route to the destination and sending a message to a second AS directing the second AS to refrain from using the first AS to propagate data to the victim AS. The message can include a set of one or more AS numbers to avoid in refraining from using to propagate data to the victim AS, a timestamp, an expiration interval, a signature of the victim AS, and an identifier identifying a certificate to be used to verify the signature. Systems and computer-readable media are also provided.

公开(公告)号：US20220329621A1

公开(公告)日：2022-10-13

申请号：US17224275

申请日：2021-04-07

Applicant: Cisco Technology, Inc.

Inventor： Jakob Heitz ,  Juan Alcaide

IPC: H04L29/06 ,  H04L12/707

Abstract: Techniques for mitigating BGP blackholes and hijackings are disclosed herein. The techniques include methods for determining, by a victim autonomous system (AS), that a first AS is associated with a first BGP route that includes the victim AS as the destination or as an AS along the first BGP route to the destination and sending a message to a second AS directing the second AS to refrain from using the first AS to propagate data to the victim AS. The message can include a set of one or more AS numbers to avoid in refraining from using to propagate data to the victim AS, a timestamp, an expiration interval, a signature of the victim AS, and an identifier identifying a certificate to be used to verify the signature. Systems and computer-readable media are also provided.