Re: Any resources outline BGP Attacks

[Dug Song <dugsong () monkey org>]

On Wed, Aug 29, 2001 at 12:23:28PM -0400, Jose Nazario wrote:

> like i said i'm no BGP guy, so i coul dbe entirely wrong about this. but i
> do know that curt's paper was pretty good. sorry no link, just do a google
> search.

there HAS been a lot of published research on this, and it's really
old hat to anyone on the NANOG list.

my coworkers Craig Labovitz, Farnam Jahanian, Rob Malan, and Abha
Ahuja were responsible for the seminal work in this area, having
analyzed BGP instability and convergence properties at the major
exchange points since 1996:

        http://research.microsoft.com/~labovit/

security-wise, there are other groups looking at BGP specifically as
an attack vector, which is pretty obvious once you realize how many
networks don't do proper route filtering:

        http://shang.csc.ncsu.edu/bgp/www/

this was also the basis for the l0pht's claim that they could take
down the Internet in a half-hour, when they testified before Congress
in '98.

-d.

---
http://www.monkey.org/~dugsong/
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://list.nfr.com/mailman/listinfo/firewall-wizards