Research On The Application Of Blockchain Technology In RPKI

As a network attack method using the defects of border gateway protocol,route hijacking may affect the quality of network service,or lead to large-scale paralysis of network system,which seriously threatens the stable operation of cyberspace.The main way to launch route hijacking attack is to use self-governing domain nodes to issue false route announcements.In this regard,the Internet Engineering Task Force proposed the construction of RPKI(Resource Public Key Infrastructure),hoping to solve the above problems through resource authentication.However,problems such as single point of failure,chaotic resource management and untimely data synchronization limit the global deployment of RPKI.In view of the above situation,scholars have put forward various improvement schemes.The characteristics of blockchain,such as decentralization,consensus mechanism and immutability,are of great significance to solve the problem of RPKI.Therefore,They focused on the scheme to improve the deficiency of RPKI based on blockchain technology.However,the uneditable blockchain also has a negative impact.In these improved schemes,many wrong or invalid data in RPKI still exist on the chain,which will not only affect the stable operation of the whole system,but also produce great storage pressure.This paper gives corresponding solutions to the above problems.The main work is as follows:1.An editable blockchain scheme based on Shamir chameleon hash key sharing is proposed.Chameleon hash is used to ensure that the security structure of the blockchain before and after editing is still maintained,and the safe use of chameleon hash is guaranteed through random group and Shamir key sharing algorithm.Simulation experiments show that the transaction publishing time and transaction editing time in the editable blockchain scheme are within a reasonable range,which is operable,and has higher security and compatibility compared with similar schemes.2.Propose an Internet number resource management scheme based on editable blockchain.Through the design of allocable resource pool mechanism,the scheme organically combines the advantages of smart contract and editable blockchain,and effectively solves the problems of single point of failure in RPKI,unauthorized allocation and re allocation of resources in the process of resource allocation,and untimely synchronization of resource certificate data.Finally,the effectiveness and feasibility of the scheme are verified by experiments.3.The RPKI simulation system based on editable blockchain is designed and implemented.The system design focuses on the key idea of Internet number resource management scheme and adds the function of clearing invalid data on the chain.The system simulates the basic functions of CA administrator’s allocation of Internet code number resources,AS administrator’s announcement of routing,database administrator’s clearing of certificate data,and passes a simple test.The realization of these functions ensures the authenticity of as route announcement,is conducive to the maintenance of BGP boundary router’s route-table,and effectively avoids the occurrence of route hijacking.