Title:Buddyguard -- A Buddy System for Reliable IP Prefix Monitoring
Speaker:Jun Li, University of Oregon, USA
Time: 10:00am, Sep. 3, 2012 (Monday)
Venue: Room 305, Computer Science Building
Contact: Jin Zhao jzhao@fudan.edu.cn
================================================================
Abstract:
Because of operational malpractice or security attacks, an IP prefix (i.e. a block of IP addresses) can undergo many types of routing anomalies that can cause loss of business, identity theft, or many other devastating effects. The most well-known is probably prefix hijacking, in which an attacker hijacks traffic meant to reach the legitimate user of a prefix. In this talk, we discuss a new approach to reliable monitoring of IP prefixes in the domain of the Border Gateway Protocol (BGP).
Dubbed Buddyguard, it surrounds a prefix with a buddy system composed of buddy prefixes, or buddies, and monitors the behavior of the prefix against that of its buddies. Buddyguard not only helps detect prefix anomalies accurately and quickly, but also greatly promotes the resiliency of the system and protects itself against circumvention by attackers.
Bio:
Dr. Jun Li is an associate professor in the Department of Computer and Information Science at the University of Oregon, and directs the Network Security Research Laboratory there. He received his Ph.D. from UCLA in 2002 (with honors), M.E. from Chinese Academy of Sciences in 1995 (with Presidential Scholarship), and B.S. from Peking University in 1992, all in computer science. In 2011 he is also a "Catedra de Excelencia" (Chair of Excellence) at the Carlos III University of Madrid, Spain, and a visiting researcher at the IMDEA Networks Institute in Spain.
Specialized in computer networks, distributed systems, and their security, Dr. Jun Li is currently researching Internet monitoring and forensics, social networking, future Internet architecture, and various network security topics. He studies both direct countermeasures against network security attacks (including Internet worms, phishing, and botnets) and fundamental security issues and solutions at the network architecture and protocol level (such as security for Internet routing, DNS, and peer-to-peer networking). He has also done research on open architecture and programmable network as well as sensor networks.
He has published a book on disseminating security updates over the Internet and more than 40 peer-reviewed papers. He has also served on several USA National Science Foundation research panels and more than 50 international technical program committees. He is a 2007 recipient of the prestigious NSF CAREER award, a senior member of ACM, and a senior member of IEEE.
