Routing Protocol Comparison: Security Considerations and Applicability for Different Network Environments

 All routing protocols can be susceptible to attacks if not properly configured and secured. When properly configured and of these choices, RIP, OSPF, IS-IS, EIGRP and BGP, BGP provides higher security in stopping an attack, because it was designed as security for WANs, whereas, the others are designed for LAN security.  Accounting for security measures that address interconnected LANs, otherwise known as WANs, the protocol adds additional security measures for stopping an attack. In smaller organizations, the complexity of BGP may introduce more challenges than are beneficial when a simpler protocol can be implemented that provides sufficient LAN security. For example IS-IS provides a flexible, compatible, scalable solution for small networks.

Protocol Descriptions
RIP: Seeks out the best path between the source and the destination network using a hop count between hosts methodology to determine the best route for networking. While RIP quickly adapts to changes in small networks where it quickly assesses hops between hosts, it does not scale well in large, complex infrastructures. RIP focuses on speed and simplicity and often misses the mark on efficiency and adaptability. 

OSPF: Seeks out the closest neighbor instead of searching for the fastest route between the source and the destination. According to IBM, “OSPF is more suitable for serving large, heterogeneous internetworks. OSPF can recalculate the routes in a short amount of time when the network topology changes.” This suggests that OSPF provides a scalable, predictable solution for large, changeable networks. Through mutual support, nearby routers link together to create an efficient exchange of information. Insecure and prone to attack because it leaps for connection without looking.

IS-IS: Seeks out the closest neighbor, but utilizes a different protocol to link. IS-IS updates the neighbor by sending Connectionless Network Service packets instead of establishing a connection to the neighbor. Native multicast routing. Scales well in large networks with complex configurations as it can handle different types of protocols. Because IS-IS runs over Layer 2, it is much more secure, scalable, and flexible than OSPF.

EIGRP: Seeks out neighbors in the close area creating a powerful, fast, incremental solution with much lower CPU and memory needs than OSPF, much faster, and much easier to configure. It works well in both small and large networks. Plus it’s cool. Who doesn’t want to learn about DUAL distance vector algorithms? Limited to CISCO devices.

BGP: Considers all available paths and determines the best path. Slow and analytical for larger networks that need more consideration over quick solutions. Operates over WAN, so it has a lower data transfer rate; however, it’s very reliable and common in mainstream enterprises.

References:
RIP: https://www.geeksforgeeks.org/routing-information-protocol-rip/
OSPF: https://www.ibm.com/docs/en/i/7.4?topic=routing-open-shortest-path-first
IS-IS: https://www.geeksforgeeks.org/difference-between-ospf-and-is-is/
https://ipwithease.com/ospf-vs-isis/
EIGRP: https://community.fs.com/blog/eigrp-vs-ospf-differences.html
BGP: https://www.linkedin.com/advice/0/how-does-bgp-security-benefit-your

Comments

Post a Comment

Popular posts from this blog

SalonAboutBeauty: Less Integration for Consistent Styling Across Components

Ensuring Consistent Variables Less provides several advantages for organizing CSS to ensure consistency across a website. The variables.less file defines reusable properties that allow a developer to easily communicate and maintain styles according to a style guide or theme.  The Less Web Development Cookbook describes properties in the variables.less file in relation to other programming languages: “Variables in Less are defined as the equivalent to statics in other programming languages. You assign a value to a variable once and use it everywhere in your code” (Meyghani & Jobsen, 2015, p. 50). It suggests that less allows a developer to set properties, such as colors and length, to variable names that retain their meaning and can be used everywhere in the code. Examples: @base-color: red, @primary: green.  By providing these definitions in a central location, developers create code consistency in all areas of the website. Creating an Organized File St...
Read more

Why “Human Error” Is Usually a System Design Problem

In complex systems, failure rarely comes from a single bad decision. It comes from problems that evolve slowly, cross boundaries, and remain unresolved while everyone involved behaves reasonably. Managing risk in these environments means managing trajectories, not just incidents. When ownership is divided strictly by role, function, or severity threshold, gaps are inevitable. Those gaps are where issues linger, age, and quietly accumulate risk, not because they were ignored, but because no one was responsible for carrying them forward end to end. This is common in healthcare, where delay is often necessary. A patient may require observation, referrals, or time to clarify diagnosis. The failure is not that care takes time; it is that the trajectory of care becomes fragmented. Each clinician escalates correctly within scope, yet no one owns the evolving picture across visits, domains, and decisions. The patient is evaluated repeatedly, reassured locally, and sent away without continuity ...
Read more

Challenges in Prosecuting Deep Web and Darknet Crimes: The Case of Ross Ulbricht and the Silk Road

  The deep web represents online information that is not easily accessible through search engines. Prosecuting crimes on the deep web is no more challenging than prosecuting crimes for any standard website because law enforcement can still track the user's location through a domain or IP address. Alternately, the darknet poses a challenge for law enforcement to address illicit activity because while the darknet is a web-based system, it is accessible only through the Tor protocol that encapsulates HTTP and HTTPS traffic, much like a VPN that hides a user’s location and identity. The Tor protocol, often called the Onion Router, contains methods for encrypting and routing traffic between peers. The purpose of the Tor protocol is to make web browsing anonymous by routing each request through multiple peers and altering encryption at various steps until the request reaches its destination. Subsequent requests may hop through different peers, making traffic appear random, unpredictable,...
Read more