中文摘要：

互联网自治系统（AS）以在路由系统中宣告网络前缀的方式宣告IP地址块的所有权。当一个自治系统宣告了不属于它的网络前缀时,就会导致前缀劫持的发生。由于边界网关协议（BGP）本身无法验证AS和IP前缀之间的宣告关系是否真实,导致对前缀劫持的检测和判定异常困难。本文提出并实现一种基于稳定度的,构建可信AS-IP宣告关系的方法,并用于检测和判定前缀劫持。通过构建AS和IP前缀宣告关系的时间序列,计算该宣告关系在时间序列上的稳定度数值,并用于评估AS和IP前缀宣告关系的可信度。本文运用该方法对历史上发生过的大规模异常事件进行检测,实验表明,该方法能构造准确的AS和IP前缀宣告关系,并可有效地检测和判定前缀劫持事件。

英文摘要：

Internet Autonomous System（AS） claims the ownership of its IP address blocks by advertising those blocks in routing system.Prefix hijacking occurs when an AS advertises a prefix not of its own.It is known to be rather challenging to detect and confirm prefix hijacking for Border Gateway Protocol（BGP） itself cannot tell the invalid mappings of AS and its announced IP prefixes from those valid ones.This paper proposes and implements a stability-based approach to construct reliable AS-IP mappings,which are further used in the detection of prefix hijacking.For each AS-IP mapping,it first builds a time series according to its liveness in a past time window,and then calculates the stability of this sequence to measure the reliability of this mapping.This method is applied to the data related to several large-scale prefix hijacking events.The experiments show that the proposed method can accurately construct AS-IP mappings and effectively detect prefix hijacking events.