通信学报2024,Vol.45Issue(7):196-205,10.DOI:10.11959/j.issn.1000-436x.2024102
RPKI去中心化安全增强技术综述
Survey on decentralized security-enhanced technologies for RPKI
摘要
Abstract
The resource public key infrastructure(RPKI)deploys a centralized and hierarchical infrastructure for the au-thorization of IP addresses.It not only enhances the security of the Internet border gateway protocol system,but also in-troduces centralization into the routing system.According to the functions of the certificate authorities,the authorization center,operation center,and publication center in the RPKI were proposed,and a comprehensive survey on decentralized security-enhanced technologies for the RPKI were presented based on these three centers.Firstly,RPKI centralization risks were refined from the perspective of authorization,operation and publication.Secondly,the technical ideas and so-lutions of decentralized security-enhanced technologies were classified into these three perspectives.Thirdly,technolo-gies were compared in terms of security,scalability,and incremental deployment.Finally,the existing problems in cur-rent technologies were summarized and the future research directions were prospected.关键词
边界网关协议/资源公钥基础设施/域间路由安全/区块链/去中心化Key words
border gateway protocol/resource public key infrastructure/secure inter-domain routing/blockchain/decen-tralization分类
信息技术与安全科学引用本文复制引用
秦超逸,张宇,方滨兴..RPKI去中心化安全增强技术综述[J].通信学报,2024,45(7):196-205,10.基金项目
国家重点研发计划基金资助项目(No.2022YFB3104800) (No.2022YFB3104800)
鹏城实验室重大攻关基金资助项目(No.PCL2023A05) The National Key Research and Development Program of China(No.2022YFB3104800),The Major Key Proj-ect of PCL(No.PCL2023A05) (No.PCL2023A05)
