Aug 30, 2010

"Attack" On Border Gateway Protocol


There has been a decent coverage recently of an experiment with a proposed extension of BGP. The BGP protocol is one of the main protocols providing connections between IP networks (it also decides with network will carry the data and as such profits of large internet providers).
Category: General
Posted by: dc352

There has been a decent coverage recently of an experiment with a proposed extension of BGP. The BGP protocol is one of the main protocols providing connections between IP networks (it also decides with network will carry the data and as such profits of large internet providers).

BGP is vulnerable to various attacks and an experiment using a new parameter caused a disruption to about 1% of all internet traffic. The experiment was run by RIPE (managing European internet resources) and Duke University. They say tha correctly configured routers should not be affected (Cisco IOS XR code, which is used on Cisco CRS-1 systems, apparently was).

Well, that leaves the question of how many people know how to configure a BGP router. Especially to correctly respond to unusual packets. (1, 2, 3, 4, ...). Source 4 describes another problem that appeared last year.