let the market drive deployment
play

Let the Market Drive Deployment A Strategy for Transitioning to BGP - PowerPoint PPT Presentation

May 06, 2023 •163 likes •491 views

SIGCOMM 2011 Toronto, ON Aug. 16, 2011 Let the Market Drive Deployment A Strategy for Transitioning to BGP Security Phillipa Gill University of Toronto Michael Schapira Sharon Goldberg Princeton University Boston University Incentives for

  1. SIGCOMM 2011 Toronto, ON Aug. 16, 2011 Let the Market Drive Deployment A Strategy for Transitioning to BGP Security Phillipa Gill University of Toronto Michael Schapira Sharon Goldberg Princeton University Boston University

  2. Incentives for BGP Security Insecurity of Internet routing is well known: • S-BGP proposed in 1997 to address many issues • Challenges are being surmounted: – Political: Rollout of RPKI as a cryptographic root trust – Technical: Lots of activity in the IETF SIDR working group The pessimistic view: • This is economically infeasible! • Why should ISPs bother deploying S*BGP ? • No security benefits until many other ASes deploy! • Worse yet, they can’t make money from it! Our view: • Calm down. Things aren’t so bad. • ISPs can use S*BGP to make money • …by attracting traffic to their network.

  3. Outline • Part 1: Background • Part 2: Our strategy • Part 3: Evaluating our strategy – Model – Simulations • Part 4: Summary and recommendations

  4. Traffic Attraction & Interception Attacks April 2010 : China Telecom intercepts traffic ChinaTel path is shorter ? Level3, VZW, 22394 ChinaTel 66.174.161.0/24 66.174.161.0/24 ISP 1 VZW, 22394 66.174.161.0/24 Level 3 Verizon China Wireless 22394 Telecom 66.174.161.0/24 This prefix and 50K others were 22394 announced by China Telecom Traffic for some prefixes was possibly intercepted 66.174.161.0/24

  5. Securing the Internet: RPKI Resource Public Key Infrastructure (RPKI): Certified mapping from ASes to public keys and IP prefixes. RPKI: Invalid! ? X Level3, VZW, 22394 ChinaTel 66.174.161.0/24 66.174.161.0/24 ISP 1 Level 3 Verizon China Wireless Telecom RPKI shows China Telecom is not a 22394 valid origin for this prefix.

  6. But RPKI alone is not enough! Resource Public Key Infrastructure (RPKI): Certified mapping from ASes to public keys and IP prefixes. ? Level3, VZW, 22394 ChinaTel, 22394 66.174.161.0/24 66.174.161.0/24 ISP 1 Level 3 Verizon China Wireless Telecom Malicious router can pretend to 22394 connect to the valid origin.

  7. To stop this attack, we need S*BGP (e.g. S-BGP/soBGP) (1) S-BGP [1997]: RPKI + Cannot announce a path that was not announced to you. VZW: (22394, Prefix) Level3: (VZW, 22394, Prefix) ISP 1: (Level3, VZW, 22394, Prefix) ISP 1 Level 3 Verizon China Wireless VZW: (22394, Prefix) Telecom Level3: (VZW, 22394, Prefix) 22394 VZW: (22394, Prefix) Public Key Signature: Anyone with 22394’s public key can validate that the message was sent by 22394.

  8. To stop this attack, we need S*BGP (e.g. S-BGP/soBGP) (2) S-BGP [1997]: RPKI + Cannot announce a path that was not announced to you. VZW: (22394, Prefix) Level3: (VZW, 22394, Prefix) ISP 1: (Level3, VZW, 22394, Prefix) ISP 1 Level 3 Verizon China Wireless Telecom Malicious router can’t announce a direct 22394 path to 22394, since 22394 never said ChinaTel: (22394, Prefix)

  9. Overview S*BGP will necessarily go through a transition phase How should deployment occur? • Our Goal: Come up with a strategy for S*BGP (S-BGP/soBGP) deployment. • How governments & standards groups invest resources • … to create market pressure for S*BGP deployment We evaluate guidelines via a model & simulations • Model: ISPs care only about revenue , not security ! • And run simulations on [UCLA Cyclops+IXP] AS graph data • Parallelize simulations on a 200-node DryadLINQ cluster

  10. Outline • Part 1: Background • Part 2: Our strategy • Part 3: Evaluating our strategy – Model – Simulations • Part 4: Summary and recommendations

  11. How to deploy S*BGP globally? Pessimistic view: • No local economic incentives; only security incentives • Like IPv6, but worse, because entire path must be secure Our view: • S*BGP has an advantage: it affects route selection • Route selection controls traffic flows • And an ISP that attracts more customer traffic earns more revenue. Why should I upgrade if (security) benefits don’t kick in unless everyone else does? 8359

  12. Stubs vs ISPs : Stubs are 85% of the Internet’s ASes! A stub is an AS with no customers. Stubs shouldn’t transit traffic. They only originate their own prefixes. ISP ISP ISP Sprint 8359 13789 $ $ Stub X 18608 Loses $$! 85% of ASes are stubs! We call the rest (15%) ISPs.

  13. How can we create market pressure? Assume that secure ASes break ties on secure paths! 8359, 18608 13789, 18608 38.101.185.0/24 38.101.185.0/24 ISP ISP ISP Sprint 8359 13789 $ $ AS 8359 attracts customer traffic Stub 18608 18608 18608 38.101.185.0/24 38.101.185.0/24 ISPs can use S*BGP to attract customer traffic & thus money

  14. How can we create market pressure? Assume that secure ASes break ties on secure paths! 8359, 18608 13789: (18608, 38.101.185.0/24) 38.101.185.0/24 Sprint: (13789, 18608, 38.101.185.0/24) Sprint 8359 13789 AS 8359 loses $ $ traffic, feels pressure to deploy. 13789: (18608, 38.101.185.0/24) 18608 18608 38.101.185.0/24

  15. Our Strategy: 3 Guidelines for Deploying S*BGP (1) 1. Secure ASes should break ties in favor of secure paths 2. ISPs “help” their stub customers deploy simplex S*BGP. Bank of A Bank of A ISP1 A stub is an AS that does not Boston U Boston U transit traffic. 85% of ASes are stubs!

  16. Simplex S*BGP: `Cheap’ S*BGP for Stubs A stub never transits traffic 18608 Only announces its own prefixes.. • 38.101.185.0/24 …and receives paths from provider • Stub • Sign but don’t verify! (rely on provider to validate) 18608 2 options for deploying S*BGP in stubs: 1. Have providers sign for stub customers. (Stubs do nothing) 2. Stubs run simplex S*BGP. (Stub only signs, provider validates) 1. No hardware upgrade required • Sign for ~1 prefix , not ~300K prefixes Use ~1 private key, not ~36K public keys • 2. Security impact is minor (we evaluated this): Stub vulnerable to attacks by its direct provider. •

  17. Our Strategy: 3 Guidelines for Deploying S*BGP (2) 1. Secure ASes should break ties in favor of secure paths 2. ISPs “help” their stub customers deploy simplex S*BGP. Bank of A ISP1 Boston U (possibly with some government subsidies) 3. Initially, a few early adopters deploy S*BGP (gov’t incentives, regulations, altruism, etc).

  18. Outline • Part 1: Background • Part 2: Our strategy • Part 3: Evaluating our strategy – Model – Simulations • Part 4: Summary and recommendations

  19. A model of the S*BGP deployment process • To start the process: – Early adopter ASes have deployed S*BGP – Their stub customers deploy simplex S*BGP • Each round: ISP n – Compute utility for every insecure ISP – If its ’ ‘s utility can increase by more than θ % ISP n when it deploys S*BGP, – Then SP n decides to secure itself & all its stub customers ISP n • Stop when no new ISPs decide to become secure.

  20. How do we compute utility? traffic $ Number of source ASes routing through ISP n ISP n ISP n to all customer destinations . $ Important Note: ISP utility does not depend on security. BGP Routing Policy Model: 1. Prefer customer paths To determine routing, over peer paths we run simulations on the over provider paths [UCLA Cyclops] AS graph 2. Prefer shorter paths with these routing policies: 3. If secure, prefer secure paths . 4. Arbitrary tiebreak

  21. Outline • Part 1: Background • Part 2: Our strategy • Part 3: Evaluating our strategy – Model – Simulations • Part 4: Summary and recommendations

  22. Case Study of S*BGP deployment Ten early adopters: • Five Tier 1s: • Five Popular Content Providers – Sprint (AS 1239) – Google (AS 15169) – Verizon (AS 701) – Microsoft (AS 8075) – AT&T (AS 7018) – Facebook (AS 32934) – Level 3 (AS 3356) – Akamai (AS 22822) – Cogent (AS 174) – Limelight (AS 20940) • The five content providers source 10% of Internet traffic • Stubs break ties in favor of secure paths • Threshold θ = 5%. This leads to 85% of ASes deploying S*BGP (65% of ISPs)

  23. Simulation : Market pressure drives deployment (1) Round 1 Round 0 Round 4 Sprint 13789 13789 8359 8359 18608 18608 Stub

  24. Simulation : Market pressure drives deployment (2) Round 5 Round 4 Sprint 8342 13789 8359 18608 6731 6731 30733 Stub 50197 50197 Stub

  25. Simulation : Market pressure drives deployment (3) Round 6 Round 7 Sprint 8342 8342 13789 8359 18608 9002 6731 6731 30733 Stub 50197 50197 41209 43975 41209 Stub Stub 39575 39575

  26. So who should be the early adopters? Theorem: Finding the optimal set of early adopters is NP-hard. Approximating this within a constant factor is also NP-hard.

  27. So who should be the early adopters? Small target set suffices for small threshold Higher threshold requires a larger target set. Easy to deploy Hard to deploy

  28. Outline • Part 1: Background • Part 2: Our strategy • Part 3: Evaluating our strategy – Model – Simulations • Part 4: Summary and recommendations

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

1102 Commercial Drive Heritage Designation 1102 Commercial Drive The Florida Market at 1102

1102 Commercial Drive Heritage Designation 1102 Commercial Drive The Florida Market at 1102

1102 Commercial Drive Heritage Designation 1102 Commercial Drive The Florida Market at 1102 Commercial Drive 2 1102 Commercial Drive Site and Surrounding Zoning 3 1102 Commercial Drive Recently Restored 4 1102 Commercial Drive Rendering

488 views • 11 slides
NVIDIA DRIVE December 2019 DRIVE PLATFORM Mass production INDUSTRY / MARKET SAFETY TECHNOLOGY

NVIDIA DRIVE December 2019 DRIVE PLATFORM Mass production INDUSTRY / MARKET SAFETY TECHNOLOGY

NVIDIA DRIVE December 2019 DRIVE PLATFORM Mass production INDUSTRY / MARKET SAFETY TECHNOLOGY REGULATIONS NVIDIA CONFIDENTIAL. DO NOT DISTRIBUTE. 2 THE DRIVE INITIATIVE End-to-End, Open Platform for Building Autonomous Vehicles DGX

1.07k views • 74 slides
Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop

Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop

Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop R U Ready? This is my vest this is my CORE. These are all of the things I need as a Marine to be successful during this deployment: Who

426 views • 25 slides
Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop

Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop

Presented by: Doretta Richardson Pre-Deployment Brief Got Deployment? 2 Pre-Deployment Workshop R U Ready? This is my vest this is my CORE. These are all of the things I need as a Marine to be successful during this deployment: Who

453 views • 34 slides
Testing and certification of PV modules from prototype- production to volume-market deployment PV

Testing and certification of PV modules from prototype- production to volume-market deployment PV

Testing and certification of PV modules from prototype- production to volume-market deployment PV MODULE TECH 2019 - Penang Trust Quality Progress Luca Votta International Business Manager Solar & Wind KIWA GROUP What Testing we do

337 views • 17 slides
Secure and efficient deep learning everywhere Octomizer Outline Who we are (recap) Deployment

Secure and efficient deep learning everywhere Octomizer Outline Who we are (recap) Deployment

Secure and efficient deep learning everywhere Octomizer Outline Who we are (recap) Deployment pain The vision The Octomizer: TVM for everyone 2 Simple, secure, and efficient Drive TVM adoption Expand the set of users who can deployment of

370 views • 14 slides
Photovoltaic - Market & Product Gerenzano, November 2010 1 GEFRAN Drive & Motion The

Photovoltaic - Market & Product Gerenzano, November 2010 1 GEFRAN Drive & Motion The

Photovoltaic - Market & Product Gerenzano, November 2010 1 GEFRAN Drive & Motion The Renewable Energies Introduction 2 GEFRAN Drive & Motion 2 The PV Technology 3 GEFRAN Drive & Motion November 2010 Working concept of a

724 views • 44 slides
DyMRA: Dynamic Market Deployment for Decentralized Resource Allocation Daniel Lzaro, Xavier

DyMRA: Dynamic Market Deployment for Decentralized Resource Allocation Daniel Lzaro, Xavier

DyMRA: Dynamic Market Deployment for Decentralized Resource Allocation Daniel Lzaro, Xavier Vilajosana and Joan Manuel Marqus Universitat Oberta de Catalunya Introduction Virtual communities: Formed by users with common goals that

428 views • 22 slides
IPv6 Deployment WG in IPv6 Promotion Council and its Deployment Guideline 2005.2.23 IPv6

IPv6 Deployment WG in IPv6 Promotion Council and its Deployment Guideline 2005.2.23 IPv6

IPv6 Deployment WG in IPv6 Promotion Council and its Deployment Guideline 2005.2.23 IPv6 Deployment WG Chair Takashi Arano (Intec NetCore, Inc.) IPv6 Deployment Guideline solves barriers for deployment I cant see IPv6s

319 views • 7 slides
Market Deployment of Cool-Colored Roofing Materials P r oject Advisor y Committee (P AC)

Market Deployment of Cool-Colored Roofing Materials P r oject Advisor y Committee (P AC)

Market Deployment of Cool-Colored Roofing Materials P r oject Advisor y Committee (P AC) Meeting INDUSTRY COLLABORATIVE COLLABORATIVE ORNL R&D LBNL R&D Sponsored by the California Energy Commission CEC (Project Manager:

783 views • 57 slides
Deployment RES-E-MARKETS September 2016 Content 1. Context and methodology 2. A theoretical

Deployment RES-E-MARKETS September 2016 Content 1. Context and methodology 2. A theoretical

Electricity Market Design and RE Deployment RES-E-MARKETS September 2016 Content 1. Context and methodology 2. A theoretical framework for market design assessment 3. Key challenges for power system with high shares of VRE 4. Energy only

1.18k views • 51 slides
NAVYA AND DRIVERLESS MARKET PRESENTATION PRESENTATION OF THE PARTNERSHIP We drive your future

NAVYA AND DRIVERLESS MARKET PRESENTATION PRESENTATION OF THE PARTNERSHIP We drive your future

NAVYA AND DRIVERLESS MARKET PRESENTATION PRESENTATION OF THE PARTNERSHIP We drive your future Keolis International CIO Forum 28th March 2016 1 0 0 %A ut onomous D riverless Elect ric AUTONOMOUS VEHICLES : THE NEW MOBILITY More and

227 views • 12 slides
AGGF, Kigali 28 November 2018 MASS MARKET ELECTRIC MOBILITY TO DRIVE AFRICA FORWARD OUR

AGGF, Kigali 28 November 2018 MASS MARKET ELECTRIC MOBILITY TO DRIVE AFRICA FORWARD OUR

AGGF, Kigali 28 November 2018 MASS MARKET ELECTRIC MOBILITY TO DRIVE AFRICA FORWARD OUR VISION: THE WORLDS FIRST MASS MARKET SHIFT TO EVs The world needs to leave fossil fuels in the ground Electric vehicle hardware is getting

1.05k views • 11 slides
2019 Economic & Market Outlook Fisette Financial Services, LLC 963 NE Discovery Drive,

2019 Economic & Market Outlook Fisette Financial Services, LLC 963 NE Discovery Drive,

2019 Economic & Market Outlook Fisette Financial Services, LLC 963 NE Discovery Drive, Issaquah, W A 98029 (425) 507-9004 January 18, 2019 Gross Domestic Product Consumption (68%) + Investment + Govt + Net Exports 1947-2018 Average 3.2%

549 views • 39 slides
Family Communication During Deployment Please download the Family Communication during Deployment

Family Communication During Deployment Please download the Family Communication during Deployment

Family Communication During Deployment Please download the Family Communication during Deployment Worksheet before beginning this class. Family Communication during Deployment (MAR 2103) What are the options? Care E-mail Packages Letters

221 views • 9 slides
Autos Drive America 2 The U.S. Vehicle Market Today Invest heavily in the United States - - more

Autos Drive America 2 The U.S. Vehicle Market Today Invest heavily in the United States - - more

Jennifer M. Safavian President and CEO Autos Drive America 2 The U.S. Vehicle Market Today Invest heavily in the United States - - more than $92 billion as of 2019. 60% of Workforce Export 17% Nearly Half U.S. is manufacturing Total U.S.

429 views • 5 slides
Chapter 7.3: Euripides Life and Career Life and Career wrote something around 90 plays

Chapter 7.3: Euripides Life and Career Life and Career wrote something around 90 plays

Chapter 7.3: Euripides Life and Career Life and Career wrote something around 90 plays i.e. 20+ entries at the Dionysia younger than Sophocles by ca. 10 years and died a few months before him thus, they must have competed

411 views • 21 slides
Towards the Web of Things Dave Raggett, W3C UWE WDC, Bristol September 2007 1 Contact:

Towards the Web of Things Dave Raggett, W3C UWE WDC, Bristol September 2007 1 Contact:

Towards the Web of Things Dave Raggett, W3C UWE WDC, Bristol September 2007 1 Contact: dsr@w3.org Contents The origins of the Web and how it has evolved Challenges posed by the explosion of new kinds of networked devices Changing

745 views • 50 slides
Investigation of magnetic phase transitions using the Laue technique 4 29 September 2017

Investigation of magnetic phase transitions using the Laue technique 4 29 September 2017

Institut Laue-Langevin International Student Summer Programme at ILL/ESRF 2017 Project Report Investigation of magnetic phase transitions using the Laue technique 4 29 September 2017 Author Supervisor Guido Homann Dr. Bachir

299 views • 13 slides
: Welcome the Second Spring of Dataflow and Parallel Computing -- Toward a Path of Convergence

: Welcome the Second Spring of Dataflow and Parallel Computing -- Toward a Path of Convergence

: Welcome the Second Spring of Dataflow and Parallel Computing -- Toward a Path of Convergence for Ecosystems of Extreme-Scale HPC, Big Data and Beyond Guang R. Gao ACM Fellow and IEEE Fellow Endowed Distinguished Professor, University of

800 views • 50 slides
communication-optimal QR factorizations: performance and scalability on varying architectures

communication-optimal QR factorizations: performance and scalability on varying architectures

communication-optimal QR factorizations: performance and scalability on varying architectures Edward Hutter and Edgar Solomonik Department of Computer Science University of Illinois at Urbana-Champaign Blue Waters Symposium 2019 Edward Hutter

1.04k views • 84 slides
Accurate Numerical Simula.ons of Chemical Phenomena Involved in

Accurate Numerical Simula.ons of Chemical Phenomena Involved in

Accurate Numerical Simula.ons of Chemical Phenomena Involved in Energy Produc.on and Storage Using MADNESS lvaro Vzquez-Mayagoi3a (ALCF), Jeff Hammond

344 views • 19 slides
How Secure are Secure How Secure are Secure Interdomain Routing Protocols? Interdomain Routing

How Secure are Secure How Secure are Secure Interdomain Routing Protocols? Interdomain Routing

DIMACS Workshop On Secure Routing March 10, 2010 How Secure are Secure How Secure are Secure Interdomain Routing Protocols? Interdomain Routing Protocols? $ $ Sharon Goldberg Microsoft Research & Boston University y Michael Schapira

701 views • 54 slides
Introduction Vast transistor budgets, but .... Poor interconnect scaling Pressure to

Introduction Vast transistor budgets, but .... Poor interconnect scaling Pressure to

Introduction Vast transistor budgets, but .... Poor interconnect scaling Pressure to decentralise designs 7 On-Chip Interconnection Networks Need to manage complexity and power Need for flexible/fault tolerant designs

405 views • 16 slides

More recommend