observatory of internet resilience in france
play

Observatory of Internet Resilience in France Franois Contat ANSSI - PowerPoint PPT Presentation

Nov 16, 2022 •107 likes •289 views

Observatory of Internet Resilience in France Franois Contat ANSSI Agence nationale de la scurit des systmes d'information http://www.ssi.gouv.fr/en RIPE 68 - May 12 th , 2014 ANSSI - http://www.ssi.gouv.fr/bonnes-pratiques-bgp 1/14

  1. Observatory of Internet Resilience in France François Contat ANSSI Agence nationale de la sécurité des systèmes d'information http://www.ssi.gouv.fr/en RIPE 68 - May 12 th , 2014 ANSSI - http://www.ssi.gouv.fr/bonnes-pratiques-bgp 1/14

  2. ANSSI and Observatory . Created on July 7th 2009, the ANSSI is the national cyberdefence agency. Main missions are: In 2011, The Observatory of Internet resilience in France is created. Publications: http://www.ssi.gouv.fr/en/ ANSSI - http://www.ssi.gouv.fr/bonnes-pratiques-bgp 2/14 • Prevention • Defence of information systems Internet resilience is one of its priority. • Two reports of Internet status in France • BGP BCP

  3. BGP Best Current Operational Practices

  4. Why? Motivations ANSSI - http://www.ssi.gouv.fr/bonnes-pratiques-bgp 4/14 • BGP BCPs present in multiple documents • No single reference document • No adjustment depending on BGP interconnection type: • Transit • Peering • Customer

  5. Who? ANSSI Operators ANSSI - http://www.ssi.gouv.fr/bonnes-pratiques-bgp 5/14 • Pierre Lorinquer (main author) • Observatory Team (G. Valadon, M. Feuillet, F. Contat) • Association Kazar • France-IX • Jaguar Network • Neo Telecoms • Orange • RENATER • SFR

  6. How? First step: internal work Second step: collaborative work Third step: publication ANSSI - http://www.ssi.gouv.fr/bonnes-pratiques-bgp 6/14 • Classify BGP interconnections and define AS relationships • Draft a first recommendations list • Propose the recommendations list • Debate the importance of each recommendation • Implement Operators comments • Publish on October 1 st , 2013

  7. BGP Best Current Operational Practices Document

  8. Structure Definitions Recommendations levels Recommendations ANSSI - http://www.ssi.gouv.fr/bonnes-pratiques-bgp 8/14 • Interconnection types • As relationships • Description • Examples

  9. Definitions Interconnection types AS relationships ANSSI - http://www.ssi.gouv.fr/bonnes-pratiques-bgp 9/14 • Direct interconnection • IXP Peering • IXP Route-server • Multihop • Transit / Customer (leaf) • Transit / Small transit • Peering

  10. Definitions Interconnection types AS relationships ANSSI - http://www.ssi.gouv.fr/bonnes-pratiques-bgp 9/14 • Direct interconnection • IXP Peering • IXP Route-server • Multihop • Transit / Customer (leaf) • Transit / Small transit • Peering

  11. Definitions Interconnection types AS relationships Internet Exchange Point ANSSI - http://www.ssi.gouv.fr/bonnes-pratiques-bgp 9/14 • Direct interconnection • IXP Peering • IXP Route-server • Multihop • Transit / Customer (leaf) • Transit / Small transit • Peering

  12. Definitions Interconnection types AS relationships transit AS « small transit » AS ANSSI - http://www.ssi.gouv.fr/bonnes-pratiques-bgp 9/14 • Direct interconnection • IXP Peering • IXP Route-server • Multihop • Transit / Customer (leaf) • Transit / Small transit • Peering

  13. Recommendations AS relationship dependant General recommendations ANSSI - http://www.ssi.gouv.fr/bonnes-pratiques-bgp 10/14 • TCP-Authentication • AS-PATH filtering • Prefixes filtering (route objects) • Max-prefix • Private AS removing • Martians filtering • Bogons filtering • Default route filtering • Log • Graceful restart

  14. Recommendation example Systematic ANSSI - http://www.ssi.gouv.fr/bonnes-pratiques-bgp Peering Customer side: - Transit side: Transit Transit / small Customer side: - « leaf » AS. filtering for Transit side: BCP name Customer (leaf) Transit / peer allocated to filtering Prefixes Remarks level Recommendation AS relationship 11/14

  15. Recommendation implementation Routers configurations ANSSI - http://www.ssi.gouv.fr/bonnes-pratiques-bgp 5.3 OpenBGPD (OpenBSD) 11.4R3.7 Junos (Juniper) 15.2(4)S IOS (Cisco) 10.0r5 SR-OS (Alcatel-Lucent) Version Operating system 12/14 • Each recommendation has configuration sample • Configuration examples for: • Cisco, Juniper made by ANSSI • Alcatel and openBGPd configuration given by Operators

  16. Conclusion How did it work? The next report ANSSI - http://www.ssi.gouv.fr/bonnes-pratiques-bgp 13/14 • Got feedbacks from French nog members • Minors errors hilighted by readers after publication • Translate the document in English • Propose new recommendations (ex: GTSM) • Propose route object/ROA declaration • Review old and new recommendations with operators • Keep or remove • Change recommendation level • Update configuration examples (IOS XE/XR, etc.) • …

  17. Questions? ANSSI - http://www.ssi.gouv.fr/bonnes-pratiques-bgp 14/14

Recommend

French Internet Resilience Observatory Franois Contat, Guillaume Valadon Agence nationale de la

French Internet Resilience Observatory Franois Contat, Guillaume Valadon Agence nationale de la

French Internet Resilience Observatory Franois Contat, Guillaume Valadon Agence nationale de la scurit des systmes d'information http://www.ssi.gouv.fr/en RIPE 67 - October 15 th , 2013 ANSSI - http://www.ssi.gouv.fr/observatoire 1/31

1.04k views • 45 slides
What The Observatory Tool is and how it can be useful for YOU The Global Internet

What The Observatory Tool is and how it can be useful for YOU The Global Internet

TECHNICAL DEVELOPMENT OF THE ONLINE PLATFORM FOR THE GLOBAL INTERNET POLICY OBSERVATORY SMART 2014/0026 What The Observatory Tool is and how it can be useful for YOU The

547 views • 20 slides
the real-time Internet routing observatory Alessandro Improta alessandro.improta@iit.cnr.it Our

the real-time Internet routing observatory Alessandro Improta alessandro.improta@iit.cnr.it Our

the real-time Internet routing observatory Alessandro Improta alessandro.improta@iit.cnr.it Our research focus: the Internet AS-level ecosystem Why is it important? To identify Internet topological properties and drawbacks To build realistic

452 views • 23 slides
High Redshift (proto)Clusters Observatory of Paris 5-7 October 2016 Observatory of Paris

High Redshift (proto)Clusters Observatory of Paris 5-7 October 2016 Observatory of Paris

High Redshift (proto)Clusters Observatory of Paris 5-7 October 2016 Observatory of Paris International Center for Scientific workshops (CIAS) CEA/IRFU Internet, coffee breaks etc Internet Co ff ee breaks USB key - Talk pdf

667 views • 18 slides
the real-time Internet routing observatory Alessandro Improta alessandro.improta@iit.cnr.it Our

the real-time Internet routing observatory Alessandro Improta alessandro.improta@iit.cnr.it Our

the real-time Internet routing observatory Alessandro Improta alessandro.improta@iit.cnr.it Our research interest: the Internet AS-level ecosystem Why is it important? To identify Internet topological properties and drawbacks To build

371 views • 22 slides
the real-time Internet routing observatory Pietro G. Giardina Enrico Gregori Alessandro

the real-time Internet routing observatory Pietro G. Giardina Enrico Gregori Alessandro

the real-time Internet routing observatory Pietro G. Giardina Enrico Gregori Alessandro Improta Luciano Lenzini Alessandro Pischedda Lorenzo Rossi Luca Sani Internet Everyone knows the role of the Internet in our society, but

402 views • 22 slides
Regional Space Observatory (France) Earth Observation Technologies for Crop Monitoring: A

Regional Space Observatory (France) Earth Observation Technologies for Crop Monitoring: A

Regional Space Observatory (France) Earth Observation Technologies for Crop Monitoring: A Workshop to Promote Collaborations among GEOGLAM/JECAM/Asia-RiCE 2018 Taichung City, Taiwan 17-20 September, 2018 The Spatial Regional Observatory (OSR)

675 views • 19 slides
the real-time Internet routing observatory Luca Sani 1 / 24 Our research topic: discovering the

the real-time Internet routing observatory Luca Sani 1 / 24 Our research topic: discovering the

the real-time Internet routing observatory Luca Sani 1 / 24 Our research topic: discovering the Internet structure Everyone knows the role of the Internet in our society, but since its commercialization in 1995, no one knows its complete

424 views • 29 slides
the real-time Internet routing observatory Alessandro Improta alessandro.improta@iit.cnr.it

the real-time Internet routing observatory Alessandro Improta alessandro.improta@iit.cnr.it

the real-time Internet routing observatory Alessandro Improta alessandro.improta@iit.cnr.it Unveiling the Internet structure with BGP data BGP route collectors BGP data collected up to date has been unvaluable to reveal the Internet

230 views • 22 slides
Resilience via Measurement Mike Lloyd, CTO Presentation at 9 th Workshop on Internet Economics

Resilience via Measurement Mike Lloyd, CTO Presentation at 9 th Workshop on Internet Economics

Resilience via Measurement Mike Lloyd, CTO Presentation at 9 th Workshop on Internet Economics Problem to Address: Lack of Digital Resilience Breaches are all too common Marriott is just the latest 500 million customers affected

462 views • 12 slides
the real-time Internet routing observatory Luca Sani luca.sani@iit.cnr.it RIPE NCC SEE 6, Budva,

the real-time Internet routing observatory Luca Sani luca.sani@iit.cnr.it RIPE NCC SEE 6, Budva,

the real-time Internet routing observatory Luca Sani luca.sani@iit.cnr.it RIPE NCC SEE 6, Budva, 12-13 June 2017 Our research interest: the Internet AS-level ecosystem Why is it important? To identify Internet topological properties and

695 views • 20 slides
HELIO, a Heliospheric virtual observatory J. Aboudarham, LESIA, Paris Observatory, VO-PDC,

HELIO, a Heliospheric virtual observatory J. Aboudarham, LESIA, Paris Observatory, VO-PDC,

http://www.helio-vo.eu HELIO, a Heliospheric virtual observatory J. Aboudarham, LESIA, Paris Observatory, VO-PDC, France R.D. Bentley, MSSL/UCL, UK A. Csillaghy, FHNW, Switzerland Great range of data Radio imaging Detail Flux, count rate,

145 views • 11 slides
Censored Planet Observatory Measuring Internet censorship globally, continuously, and remotely

Censored Planet Observatory Measuring Internet censorship globally, continuously, and remotely

Censored Planet Observatory Measuring Internet censorship globally, continuously, and remotely Internet Measurement Village 2020 Ram Sundara Raman June 26, 2020 Measuring Censorship is a Complex Problem! Internet censorship practices are

644 views • 52 slides
Data Interconnection Market Evolution in France Samih Souissi Open Internet Unit France-IX

Data Interconnection Market Evolution in France Samih Souissi Open Internet Unit France-IX

Data Interconnection Market Evolution in France Samih Souissi Open Internet Unit France-IX General Assemblee 20 September 2018 1. State of Internet in France Report Overview Agenda 2. Data interconnection market in France 2 State of

750 views • 15 slides
Isolario: the real-time Internet routing observatory Alessandro Improta Luca Sani

Isolario: the real-time Internet routing observatory Alessandro Improta Luca Sani

Isolario: the real-time Internet routing observatory Alessandro Improta Luca Sani alessandro.improta@iit.cnr.it luca.sani@iit.cnr.it 1/40 What we aim to do Research field Internet inter-domain measurement and analysis Why? - 1969 -

571 views • 40 slides
Very-High-Energy Gamma-Ray Astronomy with the ALTO observatory

Very-High-Energy Gamma-Ray Astronomy with the ALTO observatory

Very-High-Energy Gamma-Ray Astronomy with the ALTO observatory http://alto-gamma-ray-observatory.org Yvonne Becherini, Satyendra Thoudam* - Linnaeus University (Sweden) Michael Punch - APC Laboratory, Paris (France), IN2P3/CNRS & Linnaeus

384 views • 15 slides
Internet Science 2 Impact of social behavior for critical infrastructure resilience Ren e

Internet Science 2 Impact of social behavior for critical infrastructure resilience Ren e

Internet Science 2 Impact of social behavior for critical infrastructure resilience Ren e Milzarek Chair for Network Architectures and Services Department for Computer Science Technische Universit at M unchen June 14, 2013 Ren e

506 views • 34 slides
Building Digital Resilience Barcelona presentation February, 2013 Internet access creates vast

Building Digital Resilience Barcelona presentation February, 2013 Internet access creates vast

Building Digital Resilience Barcelona presentation February, 2013 Internet access creates vast economic benefits ... A 10% increase in Internet penetration... ... increases new business creation by 1% ... increases GDP by more than 1% Source:

720 views • 16 slides
resilience Professor Kate Thomas c.p.thomas@bham.ac.uk What is resilience? Resilience is the

resilience Professor Kate Thomas c.p.thomas@bham.ac.uk What is resilience? Resilience is the

How to improve our resilience Professor Kate Thomas c.p.thomas@bham.ac.uk What is resilience? Resilience is the process of adapting well in the face of adversity, trauma, tragedy, threats or significant sources of stress Resilience is

287 views • 9 slides
cities and the internet of everything cities and the internet of everything assaf biderman

cities and the internet of everything cities and the internet of everything assaf biderman

cities and the internet of everything cities and the internet of everything assaf biderman associate director senseable city lab, mit cost exploratory workshop, paris, france 09|26|2011 1990 a new type of planning? people + space +

688 views • 46 slides
Work Package 8 Policy, Societal Challenges and Cooperation Observatory CNRS-Lebanon / IRD-France

Work Package 8 Policy, Societal Challenges and Cooperation Observatory CNRS-Lebanon / IRD-France

Work Package 8 Policy, Societal Challenges and Cooperation Observatory CNRS-Lebanon / IRD-France In light of the fragmentation of monitoring of EU-MED cooperation and trends in societal challenges: WP Objective Creation of a Platform of

298 views • 10 slides
RESILIENCE IN AVIATION : THE CHALLENGE OF THE THE CHALLENGE OF THE Jean Paris Ddale S

RESILIENCE IN AVIATION : THE CHALLENGE OF THE THE CHALLENGE OF THE Jean Paris Ddale S

IAEA Technical Meeting on MANAGING THE UNEXPECTED FROM THE PERSPECTIVE OF THE INTERACTION BETWEEN INDIVIDUALS, TECHNOLOGY AND ORGANIZATION Vienna International Centre 25 to 29 June 2012 le SAS France RESILIENCE IN AVIATION : THE

788 views • 40 slides
Biodiversity and Resilience of Agroecosystems Workshop March 7 &8, 2013 This workshop is

Biodiversity and Resilience of Agroecosystems Workshop March 7 &8, 2013 This workshop is

Biodiversity and Resilience of Agroecosystems Workshop March 7 &8, 2013 This workshop is the first of a workshop series in preparation for the 2014 Resilience Conference to be held in Montpellier, France 1 . The objective of the workshop

388 views • 3 slides
WHO ACTUALLY BENEFITS FROM THE USE OF THE INTERNET ? Realities of empowerment in France in the

WHO ACTUALLY BENEFITS FROM THE USE OF THE INTERNET ? Realities of empowerment in France in the

WHO ACTUALLY BENEFITS FROM THE USE OF THE INTERNET ? Realities of empowerment in France in the digital era M@rsouin Network at the WIP Forum Moscow, 5-7 of July 2017 The Context of French national survey 3 RESEARCH CONTEXT Do all French

874 views • 19 slides

More recommend