New NIST and DHS Standards Get Ready to Tackle BGP Hijacks (Internet's biggest security hole)

LASER_oneXM

LASER_oneXM

Level 37
Thread author
Verified
Top Poster
Well-known
Feb 4, 2016
2,520
Two US government agencies have united forces to coordinate the creation of a new set of standards aimed at securing the process of routing of information between major Internet entities, such as Internet Service Providers, hosting providers, cloud providers, educational, research, and national networks.

The solution they developed is actually a collection of standards known collectively as Secure Inter-Domain Routing (SIDR).

SIDR standards will secure Internet routing
SIDR is the first comprehensive effort of its kind aimed at improving the security of BGP (Border Gateway Protocol), an Internet networking protocol used to route information between large Internet networks.

The protocol works by each router advertising to its neighboring networks what IP blocks are available on its network. When data needs to travel from one network to another, the sending router selects the best neighboring router to send the data based on an internal score that describes each adjacent router's reliability. The protocol is a little bit more complex and we can't describe it here in full. You can read more about BGP here.

BGP's biggest problem is security, or its lack of. Developed in the late 1980s, security was not a major threat vector at a time before the Internet we know today, so it wasn't taken into consideration when building the original protocol.
Click to expand...

BGP hijacks are the Internet's biggest security hole

Attackers of different sizes and with various intentions have abused the BGP protocol in attacks named BGP hijacks. These happen when an Internet entity (network) advertises to nearby networks that certain IP blocks are on its network when they aren't.


This allows the malicious network to receive traffic intended for other networks. For example, a rogue ISP could hijack traffic destined for Google's servers.


BGP hijacks are currently considered the Internet's biggest security hole and have been at the base of several major security incidents. [1, 2, 3, 4, 5]

BGP-hijack.png
Click to expand...
 
  • Like
Reactions: XhenEd, Parsh and frogboy
You must log in or register to reply here.

Similar threads

silversurfer
    • Like
    • Wow
    • +Reputation
Security News 300,000 Systems Vulnerable to New Loop DoS Attack
Replies
2
Views
4,029
Security News
cartaphilus
cartaphilus
Lymphocyte
    • Like
    • Wow
Security News Microsoft Defender adds detection of unsecure Wi-Fi networks
Replies
0
Views
1,519
Security News
Lymphocyte
Lymphocyte
nicolaasjan
    • Like
    • Applause
    • +Reputation
Technology Google Chrome's new post-quantum cryptography may break TLS connections
Replies
0
Views
402
Technology News
nicolaasjan
nicolaasjan

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top