IaaS providers fight against attacks on BGP protocol

Several large organizations have joined MANRS. This is an initiative whose participants are trying to prevent the spread of incorrect data about routes in the networks of providers.

Routing errors can lead to failures. Avoiding them is especially important now, when many are sitting at home, and the load on infrastructure continues to increase.


Photo – Ma Joseph – Unsplash

What affects the operation of the cloud

In recent months, more people have begun to sit at home and work remotely. This fact has led to a significant increase in the load on the services of IaaS providers. One of the western cloud vendors noted eightfold growth the number of users in Italy with strict self-isolation measures. Part of the effect is due to an increase in the number of businesses willing to purchase infrastructure for customization. remote jobs.

By given Europol, along with the burden on IT infrastructure, has increased the number of cybercrimes. Similarly, the situation is developing in the United States. Fraudsters often mention coronavirus in phishing emails. About the growth of such attacks warned even at the Department of Homeland Security.

Also experts fix an increase in the number of attacks directed to the dynamic routing protocol BGP. Along with DNS, it is one of the key components of the Internet. Using the protocol, the provider routers transmit network availability data to each other. Back in 1998, a member of the hacker group L0pht spokethat a well-thought-out attack on BGP is able to “turn off” the world’s Internet in half an hour.

In such circumstances, it is important to protect the infrastructure on which the networks of cloud and Internet providers are built. Therefore, at the end of March, several large IaaS vendors and IT companies – including Google, Facebook, Microsoft and Netflix – connected to the project MANRS (Mutually Agreed Norms for Routing Security).

What does MANRS do

The project was founded in 2014 with the support of the international organization “Internet Society“Funding the activities of the Internet Engineering Council (IETF) and the Internet Architecture Council (IAB) Its participants are today their more than 300 – Work on a set of best practices to improve routing security.

In March as part of an initiative launched a new program specifically for cloud providers and companies responsible for the operation of content delivery networks (CDNs). It was connected to it by Google, Facebook and other operators.

They will help with the introduction of filtering and anti-spoofing mechanisms to combat theft of prefixes (route hijacking) and IP forgery.

Corporations will also popularize RPKI (Resource Public Key Infrastructure), a hierarchical public key system to ensure global routing security. So far, only 10% of MANRS participants use it. More IT companies will develop tools for network monitoring.

Prospects

Andrei Robachevsky, Project Manager, Internet Society, convincedthat major players like Google and Microsoft will help reduce the number of hacker attacks on BGP. Over the past few years, MANRS has already achieved some success.

how writes The Register, in 2017, analysts recorded 14 thousand incidents related to interference with the protocol. A year later, thanks to the organization, the total number of incidents decreased to 12 thousand.


Photo – Chris dickens – Unsplash

It is also believed that large companies will serve as an example and will attract other firms to MANRS. Already there are first results – recently China Telecom operator joined the initiative. He was criticized for his frequent routing errors. Just last year, the company accidentally sent through their networks the traffic of several European telecom operators. According to Andrei Robachevsky, China Telecom itself appealed to the community to help them prevent similar incidents in the future.

There is reason to believe that this is not the last time a large company joins MANRS.

Note that this is not the only project to which cloud providers connect. At the end of March, more than 80 new companies became members CNCF (Cloud Native Computing Foundation), formed with support from The Linux Foundation and major Western IaaS providers. Organizations will devote resources to developing open cloud services and tools to ensure information security.

Fresh materials from our corporate blog:

How the cloud will help on remote work
How new features of the 1cloud panel help the client: the experience of Complex Oil
Nearly Anarchy: A Brief History of Fidonet, a Project That Doesn’t Care About Winning Over the Internet

Similar Posts

Leave a Reply

Your email address will not be published. Required fields are marked *