2. www.enisa.europa.eu 2
Agenda
• About ENISA
• Security and resilience of the European
communications networks
• Previous ENISA work
• 2013 Mapping the European Internet
infrastructure
3. www.enisa.europa.eu 3
About ENISA
The European Union Agency for Network and Information
Security – ENISA gives advice on information security
issues to
• Citizens
• Business
• National authorities
• EU institutions
4. www.enisa.europa.eu 4
About ENISA
– acts as a forum for sharing good Network and
Information Security practices
– facilitates information exchange and collaboration
Electronic
Comms
Reference
Group
Cloud
Security
and
Resilience
Experts
Group
7. www.enisa.europa.eu 7
Resilience
…provide and maintain an acceptable level of
service in face of faults (unintentional, intentional,
or naturally caused) affecting their normal
operation….
• Failure recovery at the micro level
• Mid‐size incident
• Disaster recovery at the strategic level
8. www.enisa.europa.eu 8
Resilience
The ability of the system to cope
with small local events such as
machine failures and
reconfigure itself essentially
automatically and over a time
scale of seconds to minutes.
The ability of a system to cope
with and recover from a major
event, such as a large natural
disaster or a capable attack, on
a time scale of hours to days or
even longer.
medium to high impact
medium to low probability
cross boundaries repercussions
possibly cascading impact
low medium high
10. www.enisa.europa.eu 10
Assessing resilience of the European
communications networks
• Understand
interdependencies
• Cascading effects on
particular region,
country or set of
critical services
• Inter-networks
consequences
11. www.enisa.europa.eu 11
Potential adverse events
• Regional failure of other critical infrastructure on
which the Internet depends
• Cable cut
• Natural disaster
• Coordinated attack
• Design faults
12. www.enisa.europa.eu 12
Current issues
• the lack of good information about the state and
behavior of the system
• the scale and complexity of the system
• the dynamic nature of the system
14. www.enisa.europa.eu 14
Previous ENISA Work
• 2010 study “Resilience of the
Internet Interconnection
Ecosystem” (aka “Inter-X
Report”)
• Large collection of resilience
aspects of interconnections on all
layers
• Also contains collection of well-
known incidents
• Chris Hall, Richard Clayton and
Ross Anderson
https://www.enisa.europa.eu/activities/Resilience-and-CIIP/critical-infrastructure-and-services/inter-x/interx
15. www.enisa.europa.eu 15
Previous ENISA Work
• 2011 report “Good Practices in
Resilient Internet Interconnection“
• 15 good practices and 11
recommendations for enhancing
resilience of internet
interconnections
• Christian Doerr and Fernando
Kuipers from TU Delft
https://www.enisa.europa.eu/activities/Resilience-and-CIIP/critical-infrastructure-and-services/inter-x/resilience-of-interconnections/report
17. www.enisa.europa.eu 17
Starting point
• Develop techniques to accurately measure the
structure of the Internet
• Investigate the structural properties of the
Internet in a changing provider ecosystem
18. www.enisa.europa.eu 18
The Internet:
in each European country, as a whole
• Dependencies on physical infrastructure
• Cross‐system dependencies
• Inter-domain issues
• Possible point of failures not covered by intra-
domain risk assessment
• National and European-scale complete picture
19. www.enisa.europa.eu 19
Incidents as source of info
• It is straightforward to divert traffic away from its proper
destination by announcing invalid routes -> youtube 2008,
china 2010, Spamhaus & banking IP Hijack 2013…
• Latent bugs in BGP implementations can disrupt the
system -> Cisco & RIPE unexpected attribute 2010,
Juniper 2011…
• In some parts of the world a small number of cable
systems are critical -> Egypt 2013
• The system is critically dependent on electrical power ->
Hurricane Sandy 2012
• The ecosystem can work well in a crisis -> 9/11, japan
earthquake 2011
20. www.enisa.europa.eu 20
Mapping the ecosystem?
• the physical infrastructure - commercially
confidential, sometimes overlap with CNI
• the peering and transit connections -
commercially confidential
• the distribution of traffic flows - commercially
sensitive
• commercial and operational arrangements -
commercially sensitive
21. www.enisa.europa.eu 21
Topologies?
• BGP‐derived AS maps get a reasonable view of the major
transit providers, but miss a large number of peering
relationships between non‐Tier 1 Ases
• Router‐Level Topologies ?
• PoP‐Level Topologies ?
• Budget -> very low
22. www.enisa.europa.eu 22
Develop a methodology:
• Using publicly available information
• Take the big picture of all networks in each
country
• See if it is possible to notice point of failures or
interesting relationships between Ases
Mapping the European Internet infrastructure
Technical component
23. www.enisa.europa.eu 23
Mapping the Internet infrastructure:
organizational component
• What is already shared about
– Physical infrastructure
– Routing infrastructure
• If there are other efforts to map the entire
system
• How do you interact in case of large scale
failures and if there are routines/best practises
24. www.enisa.europa.eu 24
Why ENISA @peering_forum?
• Understanding your point of view concerning
security and resilience of interconnected
networks in europe
• Collect your feedback on ENISA efforts
25. www.enisa.europa.eu 25
Thank you
Rossella Mattioli
rossella.mattioli@enisa.europa.eu
Read more about ENISA work on resilience
https://www.enisa.europa.eu/activities/Resilience-and-
CIIP/critical-infrastructure-and-services/inter-x
Join the ENISA Electronic Comms Reference Group
https://resilience.enisa.europa.eu/ecrg