-
Notifications
You must be signed in to change notification settings - Fork 7
Citations and Use Cases
Included here are some use cases for BGPy, i.e. some papers that have been completed or are in progress by other teams by extending BGPy. Please do cite and/or contact if you end up using it, we'd love to hear your use case and add it here! We're also in the process of actively developing BGPy, so any changes you'd like to see please let us know :)
BGPy is a BGP Python Simulator used to analyze various attack and defense scenarios that includes a custom test suite for BGP diagrams.
- Github: https://github.com/jfuruness/bgpy_pkg
- PyPi: https://pypi.org/project/bgpy-pkg/
- Paper: https://dl.acm.org/doi/fullHtml/10.1145/3607505.3607509
- Unofficial paper: https://drive.google.com/file/d/1GNx_M6jd8KVjzvvCkrG6BhkRhf-F-7IM/view?usp=sharing
@inproceedings{10.1145/3607505.3607509,
author = {Furuness, Justin and Morris, Cameron and Morillo, Reynaldo and Herzberg, Amir and Wang, Bing},
title = {BGPy: The BGP Python Security Simulator},
year = {2023},
isbn = {9798400707889},
publisher = {Association for Computing Machinery},
address = {New York, NY, USA},
url = {https://doi.org/10.1145/3607505.3607509},
doi = {10.1145/3607505.3607509},
abstract = {The security of Border Gateway Protocol (BGP), and inter-domain routing in general, remains a challenge, in spite of its well-known importance, repeated attacks and incidents, and extensive efforts and research over decades. We present BGPy, an open-source, extensible, robust, easy-to-use and efficient BGP security simulator, to be used for research and education. BGPy allows realistic simulations of a large variety of BGP attacks and defenses. It is provided as a Python package, and can be further customized and extended, e.g., to investigate new attacks and new defense mechanisms. We describe how BGPy is currently used by multiple BGP security projects.},
booktitle = {Proceedings of the 16th Cyber Security Experimentation and Test Workshop},
pages = {41–56},
numpages = {16},
location = {Marina del Rey, CA, USA},
series = {CSET '23}
}
ROV++ contains multiple variants that are incremental improvements over ROV
- NOTE: This used a very old version of BGPy. Most of the ROV++ policies have since been moved into BGPy
- Github: https://github.com/jfuruness/rovpp
- PyPi: https://pypi.org/project/rovpp/
- Paper: https://www.ndss-symposium.org/wp-content/uploads/ndss2021_1A-4_24438_paper.pdf
- Unofficial Paper: https://www.researchgate.net/publication/346777643_ROV_Improved_Deployable_Defense_against_BGP_Hijacking
- Journal Version: (in progress)
(Journal version in progress)
@inproceedings{inproceedings,
author = {Morillo, Reynaldo and Furuness, Justin and Herzberg, Amir and Morris, Cameron and Breslin, James},
year = {2020},
month = {12},
pages = {},
title = {ROV++: Improved Deployable Defense against BGP Hijacking},
doi = {10.14722/ndss.2021.24438}
}
BGP-iSec includes enhancements to BGPSec for defending against path manipulation attacks.
- NOTE: This used a very old version of BGPy. Most of the BGP-iSec policies have since been moved into BGPy
- Github: https://github.com/c-morris/bgpy_pathsec
- Paper: https://www.researchgate.net/publication/375553362_BGP-iSec_Improved_Security_of_Internet_Routing_Against_Post-ROV_Attacks
@inproceedings{ndss2024:241035,
author = {Cameron Morris and Amir Herzberg and Bing Wang and Samuel Secondo},
title = {{BGP}-i{S}ec: {I}mproved {S}ecurity of {I}nternet {R}outing against {P}ost-{ROV} {A}ttacks},
booktitle = {Proceedings of the 2024 Network and Distributed System Security ({NDSS}) Symposium},
year = {2024},
isbn = {1-891562-93-2},
doi = {10.14722/ndss.2024.241035}
}
Ain’t How You Deploy: An Analysis of BGP Security Policies Performance Against Various Attack Scenarios with Differing Deployment Strategies:
An Analysis of BGP Security Policies Performance Against Various Attack Scenarios with Differing Deployment Strategies
- Github: https://github.com/sethbarrett50/BGPy_Analysis/tree/main
- Paper: Accepted, but conference has not occurred yet
- Unofficial paper: Accepted, but conference has not occurred yet
NOTE: To be updated after publication, this is from a preprint and is unofficial
@inproceedings{barrett2024bgp,
title={Ain't How You Deploy: An Analysis of BGP Security Policies Performance Against Various Attack Scenarios with Differing Deployment Strategies},
author={Barrett, Seth and Idom, Calvin and Zavala Villafuerte, German and Byers, Andrew and Gulmezoglu, Berk},
booktitle={Proceedings of the 11th International Symposium on Networks, Computers, and Communications (ISNCC)},
year={2024},
month={June},
note={Accepted for publication}
}
Evaluating ASPA, post-ROV defenses, and post-ROV attacks, including the novel first-ASN Stripping Hijack
- Github: https://github.com/jfuruness/aspa_eval/
- Paper: Accepted to NDSS, preprint available upon request
- Unofficial paper: Accepted to NDSS, preprint available upon request
Accepted to NDSS, preprint available upon request
(in progress)
- Github: (not yet public)
- PyPi: (not yet public)
- Paper: (in progress)
- Unofficial paper: (in progress)
(in progress)
(in progress)
- Github: (not yet public)
- PyPi: (not yet public)
- Paper: (in progress)
- Unofficial paper: (in progress)
(in progress)
(in progress)
- Github: (not yet public)
- PyPi: (not yet public)
- Paper: (in progress)
- Unofficial paper: (in progress)
(in progress)
(in progress)
- Github: (not yet public)
- PyPi: (not yet public)
- Paper: (in progress)
- Unofficial paper: (in progress)
(in progress)
(in progress)
- Paper: (in progress)
- Unofficial paper: (in progress)
(in progress)
This work cited BGPy, although they didn't end up using it, since BGPy wasn't around when the work had been started, noting that it would potentially be useful for future works. It was recently accepted, but the paper is not yet out.
@inproceedings{inproceedings,
author = {Rodday, Nils and Rodosek, Gabi and Pras, Aiko and Deij, Roland},
year = {2024},
month = {05},
pages = {1-10},
title = {Exploring the Benefit of Path Plausibility Algorithms in BGP},
doi = {10.1109/NOMS59830.2024.10575088}
}```