Enabling routing security features on network equipment – and providing support and training on them – means network operators can now improve routing security more easily

The post New MANRS Equipment Vendor Program Launched To Improve Internet Routing Security appeared first on Internet Society.

In August 2019, the Internet Society supported the Mutually Agreed Norms for Routing Security (MANRS) initiative by creating a platform to visualize its members’ routing security data from around the globe. The MANRS Observatory’s interactive dashboard allows networks to check their progress in improving their routing security. Last week, we updated some key features of […]

The post New Features in MANRS Observatory: More Informative, Intuitive, and Easy to Use appeared first on Internet Society.

The MANRS Content Delivery Network (CDN) and Cloud Program continues to grow in numbers and in strength with three new participants. Hostmein, Verisign, and Vultr have deepened their commitment to strengthening the security and resilience of the Internet’s global routing system. Participants of this program, which launched in March 2020, implement important practices for mitigating […]

The post MANRS Welcomes Three New CDN and Cloud Participants appeared first on Internet Society.

Today, we’re proud to announce the new MANRS Content Delivery Network (CDN) and Cloud Programme. This new program broadens support for the primary objective of MANRS – to implement crucial fixes needed to eliminate the most common threats to the Internet’s routing system. The founding participants are: Akamai, Amazon Web Services, Azion, Cloudflare, Facebook, Google, […]

The post New Category of CDNs and Cloud Providers Join MANRS to Improve Routing Security appeared first on Internet Society.

Collaboration and shared responsibility are two pillars of the Mutually Agreed Norms for Routing Security (MANRS) initiative, which we support so that there is a baseline of routing security for network operators around the world. The same values apply to running the MANRS Observatory, an online tool we launched in August that lets users track […]

The post You Asked and We Listened: New Features in the MANRS Observatory appeared first on Internet Society.

Routing security is vital to the future and stability of the Internet, but it’s under constant threat. Which is why we’ve launched a free online tool so that network operators can see how they’re doing, and what they can improve, while anyone can see the health of the Internet at a glance. The MANRS Observatory […]

The post MANRS Observatory: Monitoring the State of Internet Routing Security appeared first on Internet Society.

Let’s look at what’s happening in the Internet Engineering Task Force (IETF) and the upcoming IETF 104 meeting in the area of Internet infrastructure resilience. As usual, my focus here is primarily on the routing and forwarding planes, and specifically routing security and unwanted traffic of Distributed Denial of Service Attacks (DDoS) attacks. There’s interesting and […]

The post Internet Resilience Discussions at IETF 104 appeared first on Internet Society.

Editor’s note: This is an abridged version of a post that was first published on MANRS.org. Read the full version. In January last year I looked back at 2017 trying to figure out how routing security looked like globally and on a country level. I used BGPStream.com – a great public service providing information about […]

The post Routing Security – Getting Better, But No Reason to Rest! appeared first on Internet Society.

The post Rough Guide to IETF 102: Internet Infrastructure Resilience appeared first on Internet Society.

RFC 8360, Resource Public Key Infrastructure (RPKI) Validation Reconsidered, is now published in the RFC libraries. What is RPKI? Resource Public Key Infrastructure (RPKI) aims to improve the security of the Internet routing system, specifically the Border Gateway Protocol (BGP), by establishing a hierarchy of trust for BGP routes. Today, most organizations simply trust that […]

The post New RFC 8360 – RPKI Validation Reconsidered – Offers Alternative Validation Procedures to Improve Routing Security appeared first on Internet Society.

In this post of the Internet Society Rough Guide to IETF 101, I’ll focus on important work the IETF is doing that helps improve security and resilience of the Internet infrastructure. BGP What happens if an IXP operator begins maintenance work on the switches without ensuring that BGP sessions between the peers have been shut […]

The post Rough Guide to IETF 101: Internet Infrastructure Resilience appeared first on Internet Society.

Last week, at APRICOT 2018 in Kathmandu, Nepal, there were a lot of talks and discussions focused on routing security and the Mutually Agreed Norms for Routing Security (MANRS). First, there was a Routing Security BoF, attended by about 150 people, where we talked about what it takes to implement routing security practices, how CDNs […]

The post Routing Security is a Serious Problem – and MANRS Can Help. A Report from APRICOT 2018. appeared first on Internet Society.

How was the state of the Internet’s routing system in 2017? Let’s take a look back using data from BGPStream. Some highlights: 13,935 total incidents (either outages or attacks like route leaks and hijacks) Over 10% of all Autonomous Systems on the Internet were affected 3,106 Autonomous Systems were a victim of at least one […]

The post 14,000 Incidents: A 2017 Routing Security Year in Review appeared first on Internet Society.

Yesterday, there were two BGP routing incidents in which several high-profile sites (Google, Apple, Facebook, Microsoft, Twitch, NTT Communications and Riot Games) were rerouted to a previously unused Russian AS. The incidents only lasted about three minutes each, but demonstrated once again the lack of routing controls like those called for in MANRS that could […]

The post Another BGP Routing Incident Highlights an Internet Without Checkpoints appeared first on Internet Society.

As we approach IETF 100 in Singapore next week, this post in the Rough Guide to IETF 100 has much progress to report in the world of Internet Infrastructure Resilience. After several years of hard work, the last major deliverable of the Secure Inter-Domain Routing (SIDR) WG is done – RFC 8205, the BGPSec Protocol […]

The post Rough Guide to IETF 100: Internet Infrastructure Resilience appeared first on Internet Society.

In August 2017, a new botnet called WireX appeared and began causing damage by launching significant DDoS attacks. The botnet counted tens of thousands of nodes, most of which appeared to be hacked Android mobile devices. There are a few important aspects of this story. First, tracking the botnet down and mitigating its activities was […]

The post Can IoT platforms from Apple, Google and Samsung make home automation systems more secure? appeared first on Internet Society.

Billions of Bluetooth-enabled devices may be exposed to a new remote attack called “BlueBorne”, even without user interaction or pairing. Affected systems include Windows, iOS (older than iOS 10), the Linux kernel, and Android. What should you do about it? Bluetooth is ubiquitous, commonly connecting accessories like headsets and keyboards, but is also used throughout […]

The post New BlueBorne Vulnerability to Bluetooth Devices – What happened and what to do about it appeared first on Internet Society.

Mutually Agreed Norms for Routing Security, or MANRS, was founded with the ambitious goal of improving the security and reliability of the global Internet routing system, based on collaboration among participants and shared responsibility for Internet infrastructure. These are undoubtedly essential pillars supporting the Internet’s tremendous growth and success, but we must better articulate the […]

The post New Study: Understanding MANRS’ Potential for Enterprises and Service Providers appeared first on Internet Society.

Last Friday, 25 August, a routing incident caused large-scale internet disruption. It hit Japanese users the hardest, slowing or blocking access to websites and online services for dozens of Japanese companies. What happened is that Google accidentally leaked BGP prefixes it learned from peering relationships, essentially becoming a transit provider instead of simply exchanging traffic […]

The post Google leaked prefixes – and knocked Japan off the Internet appeared first on Internet Society.

[Editor’s Note: This post originally appeared on the MANRS blog.] Verisign, a renowned security solutions provider and a DNS registry and root server operator, demonstrated its commitment to ensuring that the global routing system becomes more secure by joining Mutually Agreed Norms for Routing Security (MANRS) today. To create a sustainable technical and business environment, […]

The post Verisign Joins MANRS to Further Security, Stability and Resiliency of the Internet Routing System appeared first on Internet Society.