SlideShare una empresa de Scribd logo

Resilience of the Interdomain Routing System

European Union Agency for Network and Information Security (ENISA)
European Union Agency for Network and Information Security (ENISA)

Security and resilience of the European communications networks © European Union Agency for Network and Information Security (ENISA), 2013 http://enisa.europa.eu

TecnologíaNoticias y política
1 de 25
www.enisa.europa.eu Resilience of the Interdomain Routing System Security and resilience of the European communications networks
www.enisa.europa.eu 2 Agenda • About ENISA • Security and resilience of the European communications networks • Previous ENISA work • 2013 Mapping the European Internet infrastructure
www.enisa.europa.eu 3 About ENISA The European Union Agency for Network and Information Security – ENISA gives advice on information security issues to • Citizens • Business • National authorities • EU institutions
www.enisa.europa.eu 4 About ENISA – acts as a forum for sharing good Network and Information Security practices – facilitates information exchange and collaboration Electronic Comms Reference Group Cloud Security and Resilience Experts Group
www.enisa.europa.eu 5 About ENISA The European Union Agency for Network and Information Security focuses on • Prevention • Preparedness
www.enisa.europa.eu 6 Security and resilience of the European communications networks
www.enisa.europa.eu 7 Resilience …provide and maintain an acceptable level of service in face of faults (unintentional, intentional, or naturally caused) affecting their normal operation…. • Failure recovery at the micro level • Mid‐size incident • Disaster recovery at the strategic level
www.enisa.europa.eu 8 Resilience The ability of the system to cope with small local events such as machine failures and reconfigure itself essentially automatically and over a time scale of seconds to minutes. The ability of a system to cope with and recover from a major event, such as a large natural disaster or a capable attack, on a time scale of hours to days or even longer. medium to high impact medium to low probability cross boundaries repercussions possibly cascading impact low medium high
www.enisa.europa.eu 9Cc-by-3.0|Árni Friðriksson
www.enisa.europa.eu 10 Assessing resilience of the European communications networks • Understand interdependencies • Cascading effects on particular region, country or set of critical services • Inter-networks consequences
www.enisa.europa.eu 11 Potential adverse events • Regional failure of other critical infrastructure on which the Internet depends • Cable cut • Natural disaster • Coordinated attack • Design faults
www.enisa.europa.eu 12 Current issues • the lack of good information about the state and behavior of the system • the scale and complexity of the system • the dynamic nature of the system
www.enisa.europa.eu 13 Previous ENISA work
www.enisa.europa.eu 14 Previous ENISA Work • 2010 study “Resilience of the Internet Interconnection Ecosystem” (aka “Inter-X Report”) • Large collection of resilience aspects of interconnections on all layers • Also contains collection of well- known incidents • Chris Hall, Richard Clayton and Ross Anderson https://www.enisa.europa.eu/activities/Resilience-and-CIIP/critical-infrastructure-and-services/inter-x/interx
www.enisa.europa.eu 15 Previous ENISA Work • 2011 report “Good Practices in Resilient Internet Interconnection“ • 15 good practices and 11 recommendations for enhancing resilience of internet interconnections • Christian Doerr and Fernando Kuipers from TU Delft https://www.enisa.europa.eu/activities/Resilience-and-CIIP/critical-infrastructure-and-services/inter-x/resilience-of-interconnections/report
www.enisa.europa.eu 16 2013 Mapping the European Internet infrastructure
www.enisa.europa.eu 17 Starting point • Develop techniques to accurately measure the structure of the Internet • Investigate the structural properties of the Internet in a changing provider ecosystem
www.enisa.europa.eu 18 The Internet: in each European country, as a whole • Dependencies on physical infrastructure • Cross‐system dependencies • Inter-domain issues • Possible point of failures not covered by intra- domain risk assessment • National and European-scale complete picture
www.enisa.europa.eu 19 Incidents as source of info • It is straightforward to divert traffic away from its proper destination by announcing invalid routes -> youtube 2008, china 2010, Spamhaus & banking IP Hijack 2013… • Latent bugs in BGP implementations can disrupt the system -> Cisco & RIPE unexpected attribute 2010, Juniper 2011… • In some parts of the world a small number of cable systems are critical -> Egypt 2013 • The system is critically dependent on electrical power -> Hurricane Sandy 2012 • The ecosystem can work well in a crisis -> 9/11, japan earthquake 2011
www.enisa.europa.eu 20 Mapping the ecosystem? • the physical infrastructure - commercially confidential, sometimes overlap with CNI • the peering and transit connections - commercially confidential • the distribution of traffic flows - commercially sensitive • commercial and operational arrangements - commercially sensitive
www.enisa.europa.eu 21 Topologies? • BGP‐derived AS maps get a reasonable view of the major transit providers, but miss a large number of peering relationships between non‐Tier 1 Ases • Router‐Level Topologies ? • PoP‐Level Topologies ? • Budget -> very low
www.enisa.europa.eu 22 Develop a methodology: • Using publicly available information • Take the big picture of all networks in each country • See if it is possible to notice point of failures or interesting relationships between Ases Mapping the European Internet infrastructure Technical component
www.enisa.europa.eu 23 Mapping the Internet infrastructure: organizational component • What is already shared about – Physical infrastructure – Routing infrastructure • If there are other efforts to map the entire system • How do you interact in case of large scale failures and if there are routines/best practises
www.enisa.europa.eu 24 Why ENISA @peering_forum? • Understanding your point of view concerning security and resilience of interconnected networks in europe • Collect your feedback on ENISA efforts
www.enisa.europa.eu 25 Thank you Rossella Mattioli rossella.mattioli@enisa.europa.eu Read more about ENISA work on resilience https://www.enisa.europa.eu/activities/Resilience-and- CIIP/critical-infrastructure-and-services/inter-x Join the ENISA Electronic Comms Reference Group https://resilience.enisa.europa.eu/ecrg

Recomendados

Enisa internet mapping project-20130523
Enisa internet mapping project-20130523Enisa internet mapping project-20130523
Enisa internet mapping project-20130523
European Union Agency for Network and Information Security (ENISA)
 
European Critical Internet Infrastructure: past, present and future challenges
European Critical Internet Infrastructure: past, present and future challengesEuropean Critical Internet Infrastructure: past, present and future challenges
European Critical Internet Infrastructure: past, present and future challenges
European Union Agency for Network and Information Security (ENISA)
 
Enisa and cyber security standards
Enisa and cyber security standardsEnisa and cyber security standards
Enisa and cyber security standards
European Union Agency for Network and Information Security (ENISA)
 
Smart university presentation 27-8 2014
Smart university presentation 27-8 2014Smart university presentation 27-8 2014
Smart university presentation 27-8 2014
Jacob Knudsen
 
International Journal on AdHoc Networking Systems (IJANS)
International Journal on AdHoc Networking Systems (IJANS)International Journal on AdHoc Networking Systems (IJANS)
International Journal on AdHoc Networking Systems (IJANS)
pijans
 
Data management experiences in the European projects context: which lessons f...
Data management experiences in the European projects context: which lessons f...Data management experiences in the European projects context: which lessons f...
Data management experiences in the European projects context: which lessons f...
Research Data Alliance
 
International Journal of Wireless and Mobile Networking (IJWAMN)
International Journal of Wireless and Mobile Networking (IJWAMN)International Journal of Wireless and Mobile Networking (IJWAMN)
International Journal of Wireless and Mobile Networking (IJWAMN)
arpublication
 
Vasile Baltac-DigitalTrends 2011
Vasile Baltac-DigitalTrends 2011Vasile Baltac-DigitalTrends 2011
Vasile Baltac-DigitalTrends 2011
Hellenic Professionals Informatics Society
 

Recomendados

Enisa internet mapping project-20130523
Enisa internet mapping project-20130523Enisa internet mapping project-20130523
Enisa internet mapping project-20130523
European Union Agency for Network and Information Security (ENISA)
 
European Critical Internet Infrastructure: past, present and future challenges
European Critical Internet Infrastructure: past, present and future challengesEuropean Critical Internet Infrastructure: past, present and future challenges
European Critical Internet Infrastructure: past, present and future challenges
European Union Agency for Network and Information Security (ENISA)
 
Enisa and cyber security standards
Enisa and cyber security standardsEnisa and cyber security standards
Enisa and cyber security standards
European Union Agency for Network and Information Security (ENISA)
 
Smart university presentation 27-8 2014
Smart university presentation 27-8 2014Smart university presentation 27-8 2014
Smart university presentation 27-8 2014
Jacob Knudsen
 
International Journal on AdHoc Networking Systems (IJANS)
International Journal on AdHoc Networking Systems (IJANS)International Journal on AdHoc Networking Systems (IJANS)
International Journal on AdHoc Networking Systems (IJANS)
pijans
 
Data management experiences in the European projects context: which lessons f...
Data management experiences in the European projects context: which lessons f...Data management experiences in the European projects context: which lessons f...
Data management experiences in the European projects context: which lessons f...
Research Data Alliance
 
International Journal of Wireless and Mobile Networking (IJWAMN)
International Journal of Wireless and Mobile Networking (IJWAMN)International Journal of Wireless and Mobile Networking (IJWAMN)
International Journal of Wireless and Mobile Networking (IJWAMN)
arpublication
 
Vasile Baltac-DigitalTrends 2011
Vasile Baltac-DigitalTrends 2011Vasile Baltac-DigitalTrends 2011
Vasile Baltac-DigitalTrends 2011
Hellenic Professionals Informatics Society
 
Sim-CI launching customer proposition - are you joining?
Sim-CI launching customer proposition - are you joining?Sim-CI launching customer proposition - are you joining?
Sim-CI launching customer proposition - are you joining?
simcipresentation
 
About European Open Science Cloud
About European Open Science CloudAbout European Open Science Cloud
About European Open Science Cloud
Jisc
 
Adisif interface brazil april 2016
Adisif interface brazil april 2016Adisif interface brazil april 2016
Adisif interface brazil april 2016
Cédric BISTER
 
IoT and Crime Prevention
IoT and Crime PreventionIoT and Crime Prevention
IoT and Crime Prevention
IoTUK
 
PETRAS Hub Overview
PETRAS Hub OverviewPETRAS Hub Overview
PETRAS Hub Overview
IoTUK
 
DOTSOFT Archiving, Analytics & more
DOTSOFT Archiving, Analytics & moreDOTSOFT Archiving, Analytics & more
DOTSOFT Archiving, Analytics & more
Odysseas Spyroglou
 
International Journal of Wireless and Mobile Networking (IJWAMN)
International Journal of Wireless and Mobile Networking (IJWAMN)International Journal of Wireless and Mobile Networking (IJWAMN)
International Journal of Wireless and Mobile Networking (IJWAMN)
arpublication
 
AIOTI presentation
AIOTI presentationAIOTI presentation
AIOTI presentation
IoTUK
 
International Journal of Wireless and Mobile Networking (IJWAMN)
International Journal of Wireless and Mobile Networking (IJWAMN)International Journal of Wireless and Mobile Networking (IJWAMN)
International Journal of Wireless and Mobile Networking (IJWAMN)
arpublication
 
CEPIS Vasile Baltac Presentation at Digital Trends 2011 Athens
CEPIS Vasile Baltac Presentation at Digital Trends 2011 AthensCEPIS Vasile Baltac Presentation at Digital Trends 2011 Athens
CEPIS Vasile Baltac Presentation at Digital Trends 2011 Athens
Vasile Baltac
 
Foodborne Pathogens: Where Have We Been and Where Are We Going?
Foodborne Pathogens: Where Have We Been and Where Are We Going? Foodborne Pathogens: Where Have We Been and Where Are We Going?
Foodborne Pathogens: Where Have We Been and Where Are We Going?
dedmark
 
Moodboard
MoodboardMoodboard
Moodboard
atif95
 
Seminario Jean
Seminario JeanSeminario Jean
Seminario Jean
FocusAdvertising
 
Web 1.0 y web 2.0 power point
Web 1.0 y web 2.0 power pointWeb 1.0 y web 2.0 power point
Web 1.0 y web 2.0 power point
josuzugasti
 
PKM K
PKM KPKM K
PKM K
Anggit Rezky
 
Sistem Operasi
Sistem OperasiSistem Operasi
Sistem Operasi
Anggit Rezky
 
Lille Smart water demo site of the european project SmartWatr4Europe, Aquatec...
Lille Smart water demo site of the european project SmartWatr4Europe, Aquatec...Lille Smart water demo site of the european project SmartWatr4Europe, Aquatec...
Lille Smart water demo site of the european project SmartWatr4Europe, Aquatec...
Isam Shahrour
 
lecture_1.pdf
lecture_1.pdflecture_1.pdf
lecture_1.pdf
MahendraShukla27
 
The Internet of Things: Privacy and Security Issues
The Internet of Things: Privacy and Security IssuesThe Internet of Things: Privacy and Security Issues
The Internet of Things: Privacy and Security Issues
European Union Agency for Network and Information Security (ENISA)
 
Detroit A Smart City..... inspired by a "Community of Practice"
Detroit A Smart City..... inspired by a "Community of Practice"Detroit A Smart City..... inspired by a "Community of Practice"
Detroit A Smart City..... inspired by a "Community of Practice"
Charles "Chuck" Speicher Jr.
 
FIRE overview
FIRE overviewFIRE overview
FIRE overview
Future Internet Research and Experimentation - FIRE
 
Unit1_COMPUTER_COMMUNICATIONSSlides.pptx
Unit1_COMPUTER_COMMUNICATIONSSlides.pptxUnit1_COMPUTER_COMMUNICATIONSSlides.pptx
Unit1_COMPUTER_COMMUNICATIONSSlides.pptx
NANDIKHATHARANIKUMAR1
 

Más contenido relacionado

La actualidad más candente

La actualidad más candente (10)

Sim-CI launching customer proposition - are you joining?
Sim-CI launching customer proposition - are you joining?Sim-CI launching customer proposition - are you joining?
Sim-CI launching customer proposition - are you joining?
 
About European Open Science Cloud
About European Open Science CloudAbout European Open Science Cloud
About European Open Science Cloud
 
Adisif interface brazil april 2016
Adisif interface brazil april 2016Adisif interface brazil april 2016
Adisif interface brazil april 2016
 
IoT and Crime Prevention
IoT and Crime PreventionIoT and Crime Prevention
IoT and Crime Prevention
 
PETRAS Hub Overview
PETRAS Hub OverviewPETRAS Hub Overview
PETRAS Hub Overview
 
DOTSOFT Archiving, Analytics & more
DOTSOFT Archiving, Analytics & moreDOTSOFT Archiving, Analytics & more
DOTSOFT Archiving, Analytics & more
 
International Journal of Wireless and Mobile Networking (IJWAMN)
International Journal of Wireless and Mobile Networking (IJWAMN)International Journal of Wireless and Mobile Networking (IJWAMN)
International Journal of Wireless and Mobile Networking (IJWAMN)
 
AIOTI presentation
AIOTI presentationAIOTI presentation
AIOTI presentation
 
International Journal of Wireless and Mobile Networking (IJWAMN)
International Journal of Wireless and Mobile Networking (IJWAMN)International Journal of Wireless and Mobile Networking (IJWAMN)
International Journal of Wireless and Mobile Networking (IJWAMN)
 
CEPIS Vasile Baltac Presentation at Digital Trends 2011 Athens
CEPIS Vasile Baltac Presentation at Digital Trends 2011 AthensCEPIS Vasile Baltac Presentation at Digital Trends 2011 Athens
CEPIS Vasile Baltac Presentation at Digital Trends 2011 Athens
 

Destacado

Web 1.0 y web 2.0 power point
Web 1.0 y web 2.0 power pointWeb 1.0 y web 2.0 power point
Web 1.0 y web 2.0 power point
josuzugasti
 

Destacado (6)

Foodborne Pathogens: Where Have We Been and Where Are We Going?
Foodborne Pathogens: Where Have We Been and Where Are We Going? Foodborne Pathogens: Where Have We Been and Where Are We Going?
Foodborne Pathogens: Where Have We Been and Where Are We Going?
 
Moodboard
MoodboardMoodboard
Moodboard
 
Seminario Jean
Seminario JeanSeminario Jean
Seminario Jean
 
Web 1.0 y web 2.0 power point
Web 1.0 y web 2.0 power pointWeb 1.0 y web 2.0 power point
Web 1.0 y web 2.0 power point
 
PKM K
PKM KPKM K
PKM K
 
Sistem Operasi
Sistem OperasiSistem Operasi
Sistem Operasi
 

Similar a Resilience of the Interdomain Routing System

Detroit A Smart City..... inspired by a "Community of Practice"
Detroit A Smart City..... inspired by a "Community of Practice"Detroit A Smart City..... inspired by a "Community of Practice"
Detroit A Smart City..... inspired by a "Community of Practice"
Charles "Chuck" Speicher Jr.
 
DARE: Delivering Agile Research Excellence on European e-Infrastructures
DARE: Delivering Agile Research Excellence on European e-Infrastructures DARE: Delivering Agile Research Excellence on European e-Infrastructures
DARE: Delivering Agile Research Excellence on European e-Infrastructures
EUDAT
 
CS5032 Lecture 20: Dependable infrastructure 2
CS5032 Lecture 20: Dependable infrastructure 2CS5032 Lecture 20: Dependable infrastructure 2
CS5032 Lecture 20: Dependable infrastructure 2
John Rooksby
 
RECAP at ETSI Experiential Network Intelligence (ENI) Meeting
RECAP at ETSI Experiential Network Intelligence (ENI) MeetingRECAP at ETSI Experiential Network Intelligence (ENI) Meeting
RECAP at ETSI Experiential Network Intelligence (ENI) Meeting
RECAP Project
 

Similar a Resilience of the Interdomain Routing System (20)

Lille Smart water demo site of the european project SmartWatr4Europe, Aquatec...
Lille Smart water demo site of the european project SmartWatr4Europe, Aquatec...Lille Smart water demo site of the european project SmartWatr4Europe, Aquatec...
Lille Smart water demo site of the european project SmartWatr4Europe, Aquatec...
 
lecture_1.pdf
lecture_1.pdflecture_1.pdf
lecture_1.pdf
 
The Internet of Things: Privacy and Security Issues
The Internet of Things: Privacy and Security IssuesThe Internet of Things: Privacy and Security Issues
The Internet of Things: Privacy and Security Issues
 
Detroit A Smart City..... inspired by a "Community of Practice"
Detroit A Smart City..... inspired by a "Community of Practice"Detroit A Smart City..... inspired by a "Community of Practice"
Detroit A Smart City..... inspired by a "Community of Practice"
 
FIRE overview
FIRE overviewFIRE overview
FIRE overview
 
Unit1_COMPUTER_COMMUNICATIONSSlides.pptx
Unit1_COMPUTER_COMMUNICATIONSSlides.pptxUnit1_COMPUTER_COMMUNICATIONSSlides.pptx
Unit1_COMPUTER_COMMUNICATIONSSlides.pptx
 
Unit - 1.pptx
Unit - 1.pptxUnit - 1.pptx
Unit - 1.pptx
 
DARE: Delivering Agile Research Excellence on European e-Infrastructures
DARE: Delivering Agile Research Excellence on European e-Infrastructures DARE: Delivering Agile Research Excellence on European e-Infrastructures
DARE: Delivering Agile Research Excellence on European e-Infrastructures
 
CS5032 Lecture 20: Dependable infrastructure 2
CS5032 Lecture 20: Dependable infrastructure 2CS5032 Lecture 20: Dependable infrastructure 2
CS5032 Lecture 20: Dependable infrastructure 2
 
Wi sig lad_v5
Wi sig lad_v5Wi sig lad_v5
Wi sig lad_v5
 
e-Infrastructures as a key enabler for virtual research communities
e-Infrastructures as a key enabler for virtual research communitiese-Infrastructures as a key enabler for virtual research communities
e-Infrastructures as a key enabler for virtual research communities
 
1_IoT_Fundamentals.ppt
1_IoT_Fundamentals.ppt1_IoT_Fundamentals.ppt
1_IoT_Fundamentals.ppt
 
homenet-ews.ppt
homenet-ews.ppthomenet-ews.ppt
homenet-ews.ppt
 
Katastrophen-Einsatz-Überwachung mit survival sensor networks on IPv6
Katastrophen-Einsatz-Überwachung mit survival sensor networks on IPv6Katastrophen-Einsatz-Überwachung mit survival sensor networks on IPv6
Katastrophen-Einsatz-Überwachung mit survival sensor networks on IPv6
 
RECAP at ETSI Experiential Network Intelligence (ENI) Meeting
RECAP at ETSI Experiential Network Intelligence (ENI) MeetingRECAP at ETSI Experiential Network Intelligence (ENI) Meeting
RECAP at ETSI Experiential Network Intelligence (ENI) Meeting
 
UNIT 1 Part 1.pdf
UNIT 1 Part 1.pdfUNIT 1 Part 1.pdf
UNIT 1 Part 1.pdf
 
VET4SBO Level 3 module 1 - unit 1 - 0.009 en
VET4SBO Level 3 module 1 - unit 1 - 0.009 enVET4SBO Level 3 module 1 - unit 1 - 0.009 en
VET4SBO Level 3 module 1 - unit 1 - 0.009 en
 
Computer network coe351- part1- final
Computer network coe351- part1- finalComputer network coe351- part1- final
Computer network coe351- part1- final
 
Protecting Europe's Network Infrastructure
Protecting Europe's Network Infrastructure Protecting Europe's Network Infrastructure
Protecting Europe's Network Infrastructure
 
8 iot
8 iot8 iot
8 iot
 

Último

A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
Igalia
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
Principled Technologies
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
Safe Software
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
Joaquim Jorge
 
Why Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businessWhy Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire business
panagenda
 

Último (20)

A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
 
Top 10 Most Downloaded Games on Play Store in 2024
Top 10 Most Downloaded Games on Play Store in 2024Top 10 Most Downloaded Games on Play Store in 2024
Top 10 Most Downloaded Games on Play Store in 2024
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
Real Time Object Detection Using Open CV
Real Time Object Detection Using Open CVReal Time Object Detection Using Open CV
Real Time Object Detection Using Open CV
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...
 
Why Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businessWhy Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire business
 
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
 
Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024Partners Life - Insurer Innovation Award 2024
Partners Life - Insurer Innovation Award 2024
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of Terraform
 
Manulife - Insurer Innovation Award 2024
Manulife - Insurer Innovation Award 2024Manulife - Insurer Innovation Award 2024
Manulife - Insurer Innovation Award 2024
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 

Resilience of the Interdomain Routing System

  • 1. www.enisa.europa.eu Resilience of the Interdomain Routing System Security and resilience of the European communications networks
  • 2. www.enisa.europa.eu 2 Agenda • About ENISA • Security and resilience of the European communications networks • Previous ENISA work • 2013 Mapping the European Internet infrastructure
  • 3. www.enisa.europa.eu 3 About ENISA The European Union Agency for Network and Information Security – ENISA gives advice on information security issues to • Citizens • Business • National authorities • EU institutions
  • 4. www.enisa.europa.eu 4 About ENISA – acts as a forum for sharing good Network and Information Security practices – facilitates information exchange and collaboration Electronic Comms Reference Group Cloud Security and Resilience Experts Group
  • 5. www.enisa.europa.eu 5 About ENISA The European Union Agency for Network and Information Security focuses on • Prevention • Preparedness
  • 6. www.enisa.europa.eu 6 Security and resilience of the European communications networks
  • 7. www.enisa.europa.eu 7 Resilience …provide and maintain an acceptable level of service in face of faults (unintentional, intentional, or naturally caused) affecting their normal operation…. • Failure recovery at the micro level • Mid‐size incident • Disaster recovery at the strategic level
  • 8. www.enisa.europa.eu 8 Resilience The ability of the system to cope with small local events such as machine failures and reconfigure itself essentially automatically and over a time scale of seconds to minutes. The ability of a system to cope with and recover from a major event, such as a large natural disaster or a capable attack, on a time scale of hours to days or even longer. medium to high impact medium to low probability cross boundaries repercussions possibly cascading impact low medium high
  • 10. www.enisa.europa.eu 10 Assessing resilience of the European communications networks • Understand interdependencies • Cascading effects on particular region, country or set of critical services • Inter-networks consequences
  • 11. www.enisa.europa.eu 11 Potential adverse events • Regional failure of other critical infrastructure on which the Internet depends • Cable cut • Natural disaster • Coordinated attack • Design faults
  • 12. www.enisa.europa.eu 12 Current issues • the lack of good information about the state and behavior of the system • the scale and complexity of the system • the dynamic nature of the system
  • 14. www.enisa.europa.eu 14 Previous ENISA Work • 2010 study “Resilience of the Internet Interconnection Ecosystem” (aka “Inter-X Report”) • Large collection of resilience aspects of interconnections on all layers • Also contains collection of well- known incidents • Chris Hall, Richard Clayton and Ross Anderson https://www.enisa.europa.eu/activities/Resilience-and-CIIP/critical-infrastructure-and-services/inter-x/interx
  • 15. www.enisa.europa.eu 15 Previous ENISA Work • 2011 report “Good Practices in Resilient Internet Interconnection“ • 15 good practices and 11 recommendations for enhancing resilience of internet interconnections • Christian Doerr and Fernando Kuipers from TU Delft https://www.enisa.europa.eu/activities/Resilience-and-CIIP/critical-infrastructure-and-services/inter-x/resilience-of-interconnections/report
  • 16. www.enisa.europa.eu 16 2013 Mapping the European Internet infrastructure
  • 17. www.enisa.europa.eu 17 Starting point • Develop techniques to accurately measure the structure of the Internet • Investigate the structural properties of the Internet in a changing provider ecosystem
  • 18. www.enisa.europa.eu 18 The Internet: in each European country, as a whole • Dependencies on physical infrastructure • Cross‐system dependencies • Inter-domain issues • Possible point of failures not covered by intra- domain risk assessment • National and European-scale complete picture
  • 19. www.enisa.europa.eu 19 Incidents as source of info • It is straightforward to divert traffic away from its proper destination by announcing invalid routes -> youtube 2008, china 2010, Spamhaus & banking IP Hijack 2013… • Latent bugs in BGP implementations can disrupt the system -> Cisco & RIPE unexpected attribute 2010, Juniper 2011… • In some parts of the world a small number of cable systems are critical -> Egypt 2013 • The system is critically dependent on electrical power -> Hurricane Sandy 2012 • The ecosystem can work well in a crisis -> 9/11, japan earthquake 2011
  • 20. www.enisa.europa.eu 20 Mapping the ecosystem? • the physical infrastructure - commercially confidential, sometimes overlap with CNI • the peering and transit connections - commercially confidential • the distribution of traffic flows - commercially sensitive • commercial and operational arrangements - commercially sensitive
  • 21. www.enisa.europa.eu 21 Topologies? • BGP‐derived AS maps get a reasonable view of the major transit providers, but miss a large number of peering relationships between non‐Tier 1 Ases • Router‐Level Topologies ? • PoP‐Level Topologies ? • Budget -> very low
  • 22. www.enisa.europa.eu 22 Develop a methodology: • Using publicly available information • Take the big picture of all networks in each country • See if it is possible to notice point of failures or interesting relationships between Ases Mapping the European Internet infrastructure Technical component
  • 23. www.enisa.europa.eu 23 Mapping the Internet infrastructure: organizational component • What is already shared about – Physical infrastructure – Routing infrastructure • If there are other efforts to map the entire system • How do you interact in case of large scale failures and if there are routines/best practises
  • 24. www.enisa.europa.eu 24 Why ENISA @peering_forum? • Understanding your point of view concerning security and resilience of interconnected networks in europe • Collect your feedback on ENISA efforts
  • 25. www.enisa.europa.eu 25 Thank you Rossella Mattioli rossella.mattioli@enisa.europa.eu Read more about ENISA work on resilience https://www.enisa.europa.eu/activities/Resilience-and- CIIP/critical-infrastructure-and-services/inter-x Join the ENISA Electronic Comms Reference Group https://resilience.enisa.europa.eu/ecrg