National Cybersecurity Center of Excellence seeks feedback on draft project description of “Secure Inter-Domain Routing: Routing Hacks”
The National Cybersecurity Center of Excellence (NCCoE) is pleased to announce the release of a new draft project description: Secure Inter-Domain Routing: Route Hijacks. We are seeking your feedback on this draft to help refine the challenge scope. Comments are due Wednesday, June 29, 2017.
Since the creation of the internet, the Border Gateway Protocol (BGP) has been the default routing protocol to route traffic among organizations (Internet Service Providers (ISPs) and Autonomous Systems (ASes)). While the BGP protocol performs adequately in identifying viable paths that reflect local routing policies and preferences to destinations, the lack of built-in security allows the protocol to be exploited. As a result, attacks against internet routing functions are a significant and systemic threat to internet-based information systems. The consequences of these attacks can: (1) deny access to internet services; (2) detour internet traffic to permit eavesdropping and to facilitate on-path attacks on endpoints (sites); (3) misdeliver internet network traffic to malicious endpoints; (4) undermine IP address-based reputation and filtering systems; and (5) cause routing instability in the internet.