jumpstarting bgp security
play

Jumpstarting BGP Security Yossi Gilad Joint work with: Avichai - PowerPoint PPT Presentation

Jul 12, 2023 •35 likes •305 views

Jumpstarting BGP Security Yossi Gilad Joint work with: Avichai Cohen, Amir Herzberg, and Michael Schapira BGP is insecure! Prefix hijack 1.2.0.0/16 is Mine The Internet AS 1 AS 666 1.2.0.0/16 is Mine BGP is insecure! Prefix hijacks

  1. Jumpstarting BGP Security Yossi Gilad Joint work with: Avichai Cohen, Amir Herzberg, and Michael Schapira

  2. BGP is insecure! • Prefix hijack 1.2.0.0/16 is Mine The Internet AS 1 AS 666 1.2.0.0/16 is Mine

  3. BGP is insecure! Prefix hijacks Victim 1.2/16 1.2/16 Path: 1,2,3 AS 3 Path: 666 AS 666 1.2/16 Path: 1,2 AS 2 1.2/16 BGP Ad. Data flow AS 1 Path: 1 1.2/16

  4. Resource PKI (RPKI) • Origin Authentication • Protects against prefix/subprefix hijacks • Slowly gaining traction (protects 6% of prefixes) Verify signature RPKI cache 1.2/16 à AS 1 repository 1.2/16: AS 1 1.2/16: AS 1 BGP Routers

  5. BGP is insecure! • Prefix/Subprefix Hijack 1.2.0.0/16 is Mine The Internet AS 1 AS 666 1.2.0.0/16 is Mine

  6. RPKI prevents prefix hijacks 1.2/16 1.2/16 Victim Path: 1,2,3 Path: 666 1.2/16 à AS 1 AS 3 AS 666 AS 2 BGP Ad. Data flow AS 1 1.2/16

  7. Next-AS attack circumvents RPKI 1.2/16 1.2/16 Victim Path: 1,2,3 Path: 1,666 1.2/16 à AS 1 AS 3 AS 666 AS 2 AS 1 1.2/16 BGP Ad. False `link’ Data flow

  8. BGP is insecure! • Next-AS Attack 1.2.0.0/16 is Mine The Internet AS 1 AS 666 AS1 is my neighbor

  9. Current paradigm: a two step solution • First, RPKI against prefix-hijacking • Then, add BGPsec • Protects against false paths (e.g., next-AS attacks) • Deployment challenge: •Real-time signature and validation •Different message format Prefix: 1.2/16 Prefix: 1.2/16 Secure-Path: 1,2,3 Secure-Path: 1,2 Matches RPKI policy? 1.2/16: AS 1 AS 1 AS 2 AS 3 Matches RPKI policy? Path signature OK? Add signature, 1.2/16 Path signatures valid? then relay

  10. BGPsec in partial adoption? Meager benefits [Lychev et al., SIGCOMM’13] • AS 666 launches a next-AS attack against AS 1 • Not prevented by BGPsec Legacy Adopter “Breaks” BGPsec 1.2/16 1.2/16 Path: 1,666 Path: 1,2 AS 1 AS 2 AS 3 1.2/16 AS 666

  11. BGPsec: deployment challenges • Changes to BGP routers: • Online crypto requires new hardware [BGPsec design choices, IETF] • Different message format • legacy messages coexist with new format • BGPsec is not “a minor extension” of BGP BGPSEC Design Choices and Summary of Supporting Discussions draft-sriram-bgpsec-design-choices-08

  12. Goals • Easy deployment, minimal overhead • Signatures and verifications: only offline, off-router • Significant security benefits in partial deployment • No changes to routing protocol

  13. Path-end validation 1.2/16 1.2/16 Victim Path: 1,2,3 Path: 1,666 1.2/16 à AS 1 AS 3 AS 666 AS 1 à AS 2 AS 2 AS 1 1.2/16 Fake `link’ BGP Ad. Data flow

  14. Path-end validation • Key insight: “last hop” is critical • Extend RPKI to authenticate the “last hop” 4.5 4 3.5

  15. Path-end validation • Path-end validation extends RPKI to authenticate the “last hop” 4.5 • Key insight: Securing path-suffixes provides significant benefits 4 RPKI d Prefix 3.5 v path-end validation a Did d approve reaching it via v?

  16. Intuition • AS 666 wants to attract AS 3’s traffic to IP prefix 1.2.3.0/24, but… • It can’t announce that it owns the prefix or is 4.5 AS 1’s neighbor • It has to launch 2-hop attack : (prefix: 1,2,666) 4 AS 1 connected to AS 2? 3.5 AS 1 connected to AS 3? AS 1 AS 2 AS 3 1.2/16 AS 666

  17. Deployment Verify signature 1.2/16 -> AS 1 AS 1 -> AS 2 RPKI cache repository 1.2/16: AS 1 1.2/16: AS 1 AS 1 à AS 2 AS 1 à AS 2 BGP Routers

  18. Deployment: today! ip as-path access-list as1 deny _[^2]_1_ • Use existing Access List interface • Validated suffix extends automatically with adoption

  19. Evaluating impact • How significant is path-end validation? • Empirically-derived AS-level network from CAIDA • Including inferred peering links [Giotsas et al., SIGCOMM’13] • Evaluate fraction of ASes an attacker can attract • For different adoption scenarios • For different types of attack • Using the simulation framework in [Gill et al., CCR’12]

  20. Simulation results

  21. Simulation results

  22. Simulation results

  23. Impact of authenticating hops BGP (no authentication) Origin authentication (RPKI) Path-end validation

  24. Local deployment

  25. Additional results • Local deployment protects local traffic • Large content providers are better protected • Path-end validation mitigates high profile incidents • Security monotone

  26. Conclusion • Path-end validation • Is a modest extension to RPKI • Can significantly impact BGP security while avoiding BGPsec’s deployment hurdles • We advocate • Incorporating path-end validation into the RPKI • Regulatory/financial efforts on gathering critical mass of adopters

  27. Thank You

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Jumpstarting Your DevSECOps Pipeline with IAST and RASP Jeff Williams @planetlevel CTO and

Jumpstarting Your DevSECOps Pipeline with IAST and RASP Jeff Williams @planetlevel CTO and

Jumpstarting Your DevSECOps Pipeline with IAST and RASP Jeff Williams @planetlevel CTO and Co-FOUNDER Contrast Security The Average 26.7 Vulnerabilities application is extremely 21% CustomCode vulnerable 8% USED Libraries 2

598 views • 37 slides
Jumpstarting BGP Security Yossi Gilad Joint work with: Avichai Cohen, Amir Herzberg, and Michael

Jumpstarting BGP Security Yossi Gilad Joint work with: Avichai Cohen, Amir Herzberg, and Michael

Jumpstarting BGP Security Yossi Gilad Joint work with: Avichai Cohen, Amir Herzberg, and Michael Schapira Prefix hijacking prefers shorter route Victim 168.122/16 168.122/16 Path: X-111 AS X Path: 666 AS 666 168.122/16 AS Path: 111

884 views • 24 slides
WOW! What a Clerkship! How to Maximize Law Students Judicial Externships by Jumpstarting the

WOW! What a Clerkship! How to Maximize Law Students Judicial Externships by Jumpstarting the

WOW! What a Clerkship! How to Maximize Law Students Judicial Externships by Jumpstarting the Classroom Experience By Amany Ragab Hacking, Assistant Clinical Professor Supervisor, Saint Louis University School of Law Externship Clinic I.

599 views • 46 slides
The Kitchen Sink Jumpstarting Mobile Web Development Introduction & Background i n i m A

The Kitchen Sink Jumpstarting Mobile Web Development Introduction & Background i n i m A

The Kitchen Sink Jumpstarting Mobile Web Development Introduction & Background i n i m A n a g j o M e c f i f O b W e s u p m a C UC San Diego embraces MWF onsulted 7 ampus IT Student Affairs Libraries Summer

527 views • 8 slides
Jumpstarting EV Adoption: Making NL a leader in electric vehicle use Jon Seary Joe Butler

Jumpstarting EV Adoption: Making NL a leader in electric vehicle use Jon Seary Joe Butler

Jumpstarting EV Adoption: Making NL a leader in electric vehicle use Jon Seary Joe Butler Drive Electric NL Public Utilities Board Rate Mitigation Options and Impacts Why do we drive electric? Owning an EV: Significant cost savings for NL

680 views • 20 slides
What is network security? Friends and enemies: Alice, Bob, Trudy What is network security?

What is network security? Friends and enemies: Alice, Bob, Trudy What is network security?

Network security Network security Foundations: what is security? cryptography Network Security Network Security authentication message integrity key distribution and certification Security in practice: Srinidhi Varadarajan

332 views • 6 slides
Security Security as term, Possible Security violations Authentication Criteria for

Security Security as term, Possible Security violations Authentication Criteria for

BS1 WS19/20 topic-based slides Security Security as term, Possible Security violations Authentication Criteria for Trust in Computer Systems Three hearts of Windows Security DACLs A Look at Security System is secure if

988 views • 20 slides
CPSC410/611: Security Security Security Attacks Security Threats Crypto

CPSC410/611: Security Security Security Attacks Security Threats Crypto

CPSC 410 / 611 : Operating Systems CPSC410/611: Security Security Security Attacks Security Threats Crypto Authentication Examples SSL Security Threats Breach of confidentiality unauthorized access to

458 views • 18 slides
Biometrics and Security Biometrics and Security Biometrics and Security Biometrics and Security

Biometrics and Security Biometrics and Security Biometrics and Security Biometrics and Security

Biometrics and Security Biometrics and Security Biometrics and Security Biometrics and Security WS 06/07 Seminar Prof. Dr.-Ing. Jana Dittmann & Dr.-Ing. Claus Vielhauer with support from Tobias Scheidat

419 views • 16 slides
1 X.800 Security Services X.800 Security Services X.800 Security Services Data integrity

1 X.800 Security Services X.800 Security Services X.800 Security Services Data integrity

Course Overview Course Requirements EECS 498-7/8 Cryptography and Network Security: www.citi.umich.edu/u/honey/security Principles and Practice (Third Edition) Computer Security Monday & Friday, 9:00 10:30 William Stallings

670 views • 19 slides
A (re)introduction to Spring Security Agenda Before Spring Security: Acegi security

A (re)introduction to Spring Security Agenda Before Spring Security: Acegi security

A (re)introduction to Spring Security Agenda Before Spring Security: Acegi security Introducing Spring Security View layer security Whats coming in Spring Security 3 E-mail: craig@habuma.com Blog: http://www.springloaded.info

452 views • 19 slides
Network Security Network Security Srinidhi Varadarajan Network security Network security

Network Security Network Security Srinidhi Varadarajan Network security Network security

Network Security Network Security Srinidhi Varadarajan Network security Network security Foundations: what is security? cryptography authentication message integrity key distribution and certification Security in practice:

634 views • 36 slides
Security Overview Security Goals The Attack Space Security Mechanisms

Security Overview Security Goals The Attack Space Security Mechanisms

CSCE Intro to Computer Systems Security Security Overview Security Goals The Attack Space Security Mechanisms Introduction to Cryptography Authentication Authorization Confidentiality Case Studies Security

472 views • 20 slides
SECURITY TESTING Towards a safer web world AGENDA 1. 3 WS OF SECURITY TESTING 2. SECURITY

SECURITY TESTING Towards a safer web world AGENDA 1. 3 WS OF SECURITY TESTING 2. SECURITY

SECURITY TESTING Towards a safer web world AGENDA 1. 3 WS OF SECURITY TESTING 2. SECURITY TESTING CONCEPTS 3. SECURITY TESTING TYPES 4. TOP 10 SECURITY RISKS Few Security Breaches Date: 2013-14 September 2016, while in negotiations to

404 views • 18 slides
Security Security with Distributed Systems Why Security? The need for security mechanisms in

Security Security with Distributed Systems Why Security? The need for security mechanisms in

Security Security with Distributed Systems Why Security? The need for security mechanisms in distributed systems arises from the desire to share resources Resources must be protected against unauthorized access, as enemies (attackers)

1.16k views • 67 slides
International and Global Security 1 Peer Discussion What is security? 2 International

International and Global Security 1 Peer Discussion What is security? 2 International

International and Global Security 1 Peer Discussion What is security? 2 International Security What is security? Freedom from threats to core values? Contestation over referent object: Individual? State? System? How is security achieved?

715 views • 11 slides
Developing Counselors Skills Jennifer Wyatt, LMHC, MT-BC, CDP Email: wyattj@ohsu.edu Paul

Developing Counselors Skills Jennifer Wyatt, LMHC, MT-BC, CDP Email: wyattj@ohsu.edu Paul

Clinical Supervision I: Developing Counselors Skills 11/28/2016 Clinical Supervision I: Developing Counselors Skills Jennifer Wyatt, LMHC, MT-BC, CDP Email: wyattj@ohsu.edu Paul Hunziker, MA, LMFT, CDP Email: paul.hunziker@gmail.com

636 views • 29 slides
Freedom of Information Training Session Information Management & Legal Services Aim of

Freedom of Information Training Session Information Management & Legal Services Aim of

Freedom of Information Training Session Information Management & Legal Services Aim of Training Cover the basics of the Freedom of Cover commonly used exemptions (lawful Information Act 2000 reasons not to release

973 views • 43 slides
A Formalization of the Max-flow Min-cut Theorem in Higher Order Logic Niccol` o Veltri

A Formalization of the Max-flow Min-cut Theorem in Higher Order Logic Niccol` o Veltri

A Formalization of the Max-flow Min-cut Theorem in Higher Order Logic Niccol` o Veltri Institute of Cybernetics, Tallinn Theory Days 13 Niccol` o Veltri Institute of Cybernetics, Tallinn A Formalization of the Max-flow Min-cut Theorem in

389 views • 14 slides
Prediction of Prediction of Class and Property Assertions Class and Property Assertions on OWL

Prediction of Prediction of Class and Property Assertions Class and Property Assertions on OWL

Prediction of Prediction of Class and Property Assertions Class and Property Assertions on OWL Ontologies through on OWL Ontologies through Evidence Combination Evidence Combination Giuseppe Rizzo Giuseppe Rizzo Nicola Fanizzi Nicola

231 views • 22 slides
FINITE-TIME STOCHASTIC THERMODYNAMICS AND OPTIMAL MASS TRANSPORT Krzysztof Gawedzki , Vienna ,

FINITE-TIME STOCHASTIC THERMODYNAMICS AND OPTIMAL MASS TRANSPORT Krzysztof Gawedzki , Vienna ,

FINITE-TIME STOCHASTIC THERMODYNAMICS AND OPTIMAL MASS TRANSPORT Krzysztof Gawedzki , Vienna , May 2012 Time is the longest distance between two places Tennessee Williams Stochastic Thermodynamics : In classical version it describes

741 views • 34 slides
Working group 3 update Anna Caroli & Nick Selby WG3 leads 3rd International Conference on

Working group 3 update Anna Caroli & Nick Selby WG3 leads 3rd International Conference on

Working group 3 update Anna Caroli & Nick Selby WG3 leads 3rd International Conference on Functional Renal Imaging Nottingham, Oct 15-17th 2019 WG3 working group overview WG3: aims to join up clinical sites working on renal MRI WG3

494 views • 12 slides
Comp/Phys/Mtsc 715 Tensor: Glyphs, Traces, Surfaces, Etc. 3/20/2012 Tensors Comp/Phys/Mtsc 715

Comp/Phys/Mtsc 715 Tensor: Glyphs, Traces, Surfaces, Etc. 3/20/2012 Tensors Comp/Phys/Mtsc 715

3/19/2012 Comp/Phys/Mtsc 715 Tensor: Glyphs, Traces, Surfaces, Etc. 3/20/2012 Tensors Comp/Phys/Mtsc 715 Taylor 1 Preview Videos Vis2006: nlcglyph.mov Tensor glyph design Stress Tensor visualization for implant 3/20/2012 Tensors

549 views • 29 slides
D3: The Crash Course Chad Stolper CSE 6242: Data and Visual Analytics D3: The Crash Course Chad

D3: The Crash Course Chad Stolper CSE 6242: Data and Visual Analytics D3: The Crash Course Chad

D3: The Crash Course Chad Stolper CSE 6242: Data and Visual Analytics D3: The Crash Course Chad Stolper CSE 6242: Data and Visual Analytics D3: Scratching the Surface D3: Only the Beginning D3: Only the Beginning Please do not be afraid to ask

1.42k views • 105 slides

More recommend