CPC H04L 63/1466 (2013.01) [H04L 45/22 (2013.01); H04L 63/0823 (2013.01)] | 20 Claims |
1. A method comprising:
determining, by a victim autonomous system (AS), that a first AS is diverting traffic from the victim AS to an unintended destination;
determining, by the victim AS, that the first AS is associated with a first Border Gateway Protocol (BGP) route that includes the victim AS as a destination or as an AS along the first BGP route to the destination; and
suppressing utilization of the first BGP route in propagating data to the victim AS by sending a message to a second AS to avoid traffic being hijacked by the first AS, the message to the second AS including:
a set of one or more AS numbers to avoid using to propagate data to the victim AS, wherein the set of one or more AS numbers includes the first AS;
a timestamp;
an expiration interval;
a signature of the victim AS; and
an identifier identifying a certificate for verifying the signature.
|