• Version
• Download 6
• File Size 326.99 KB
• File Count 1
• Create Date 11 July 2025
• Last Updated 11 July 2025

A Multi-Tiered Anomaly Detection Framework for BGP Routing Security

1st Swastik Kar
Amrita Vishwa Vidyapeetham, Amritapuri)

Amritapuri, India https://orcid.org/0009-0000-0058-039X

Abstract—BGP, the protocol responsible for interdomain rout- ing across the global internet, continues to face critical vul- nerabilities, particularly in the form of routing anomalies and prefix hijacking attacks. Despite the existence of various anomaly detection systems, most current solutions suffer from poor scalability and require frequent, resource-intensive retraining to accommodate the continuous addition of new Autonomous Systems (ASes) and the emergence of novel attack patterns. In this work, we propose a multi-tiered anomaly detection framework that allows network operators and service providers to select different tiers of security based on their operational priorities and available computational resources. This will allow the network to respond quickly, in case of events where new ASes are added to the global network or new attacks are discovered. This tier-based approach ensures that lightweight, rapidly deployable detection mechanisms are available as a first line of defense, while more comprehensive, resource-heavy models continue training in the background.