Andrei Robachevsky – Internet Society https://www.internetsociety.org We are a global charitable organization empowering people to keep the Internet a force for good: open, globally connected, secure, and trustworthy. Wed, 24 Jan 2024 16:30:08 +0000 en-US hourly 1 https://wordpress.org/?v=6.6.2 https://www.internetsociety.org/wp-content/uploads/2017/09/cropped-ISOC-Symbol-Ground-navy-690px-1-32x32.jpg Andrei Robachevsky – Internet Society https://www.internetsociety.org 32 32 Achieving Greater Heights for MANRS https://www.internetsociety.org/blog/2023/11/achieving-greater-heights-for-manrs/ Thu, 02 Nov 2023 15:00:00 +0000 https://www.internetsociety.org/?p=201788 a mountain peak covered with snow seen through colorful prayer flags

Partnering with the Global Cyber Alliance (GCA), we believe that MANRS will continue to be further established as the globally recognized benchmark for global routing security.

The post Achieving Greater Heights for MANRS appeared first on Internet Society.

]]>
New MANRS Equipment Vendor Program Launched To Improve Internet Routing Security https://www.internetsociety.org/blog/2021/09/new-manrs-equipment-vendor-program-launched-to-improve-internet-routing-security/ Wed, 15 Sep 2021 22:01:00 +0000 https://www.internetsociety.org/?p=150352

Enabling routing security features on network equipment – and providing support and training on them – means network operators can now improve routing security more easily

The post New MANRS Equipment Vendor Program Launched To Improve Internet Routing Security appeared first on Internet Society.

]]>
New Features in MANRS Observatory: More Informative, Intuitive, and Easy to Use https://www.internetsociety.org/blog/2020/11/new-features-in-manrs-observatory-more-informative-intuitive-and-easy-to-use/ Thu, 12 Nov 2020 16:39:27 +0000 http://www.internetsociety.org/?p=126236

In August 2019, the Internet Society supported the Mutually Agreed Norms for Routing Security (MANRS) initiative by creating a platform to visualize its members’ routing security data from around the globe. The MANRS Observatory’s interactive dashboard allows networks to check their progress in improving their routing security. Last week, we updated some key features of […]

The post New Features in MANRS Observatory: More Informative, Intuitive, and Easy to Use appeared first on Internet Society.

]]>
MANRS Welcomes Three New CDN and Cloud Participants https://www.internetsociety.org/blog/2020/07/manrs-welcomes-three-new-cdn-and-cloud-participants/ Tue, 14 Jul 2020 13:00:03 +0000 https://www.internetsociety.org/?p=118118

The MANRS Content Delivery Network (CDN) and Cloud Program continues to grow in numbers and in strength with three new participants. Hostmein, Verisign, and Vultr have deepened their commitment to strengthening the security and resilience of the Internet’s global routing system. Participants of this program, which launched in March 2020, implement important practices for mitigating […]

The post MANRS Welcomes Three New CDN and Cloud Participants appeared first on Internet Society.

]]>
New Category of CDNs and Cloud Providers Join MANRS to Improve Routing Security https://www.internetsociety.org/blog/2020/03/new-category-of-cdns-and-cloud-providers-join-manrs-to-improve-routing-security/ Tue, 31 Mar 2020 06:00:00 +0000 https://www.internetsociety.org/?p=112058

Today, we’re proud to announce the new MANRS Content Delivery Network (CDN) and Cloud Programme. This new program broadens support for the primary objective of MANRS – to implement crucial fixes needed to eliminate the most common threats to the Internet’s routing system. The founding participants are: Akamai, Amazon Web Services, Azion, Cloudflare, Facebook, Google, […]

The post New Category of CDNs and Cloud Providers Join MANRS to Improve Routing Security appeared first on Internet Society.

]]>
You Asked and We Listened: New Features in the MANRS Observatory https://www.internetsociety.org/blog/2020/02/you-asked-and-we-listened-new-features-in-the-manrs-observatory/ Tue, 04 Feb 2020 16:05:20 +0000 https://www.internetsociety.org/?p=110047

Collaboration and shared responsibility are two pillars of the Mutually Agreed Norms for Routing Security (MANRS) initiative, which we support so that there is a baseline of routing security for network operators around the world. The same values apply to running the MANRS Observatory, an online tool we launched in August that lets users track […]

The post You Asked and We Listened: New Features in the MANRS Observatory appeared first on Internet Society.

]]>
MANRS Observatory: Monitoring the State of Internet Routing Security https://www.internetsociety.org/blog/2019/08/manrs-observatory-monitoring-the-state-of-internet-routing-security/ Tue, 13 Aug 2019 14:04:22 +0000 https://www.internetsociety.org/?p=103860

Routing security is vital to the future and stability of the Internet, but it’s under constant threat. Which is why we’ve launched a free online tool so that network operators can see how they’re doing, and what they can improve, while anyone can see the health of the Internet at a glance. The MANRS Observatory […]

The post MANRS Observatory: Monitoring the State of Internet Routing Security appeared first on Internet Society.

]]>
Internet Resilience Discussions at IETF 104 https://www.internetsociety.org/blog/2019/03/internet-resilience-discussions-at-ietf-104/ Fri, 22 Mar 2019 09:09:55 +0000 https://www.internetsociety.org/?p=95984

Let’s look at what’s happening in the Internet Engineering Task Force (IETF) and the upcoming IETF 104 meeting in the area of Internet infrastructure resilience. As usual, my focus here is primarily on the routing and forwarding planes, and specifically routing security and unwanted traffic of Distributed Denial of Service Attacks (DDoS) attacks. There’s interesting and […]

The post Internet Resilience Discussions at IETF 104 appeared first on Internet Society.

]]>
Routing Security – Getting Better, But No Reason to Rest! https://www.internetsociety.org/blog/2019/02/routing-security-getting-better-but-no-reason-to-rest/ Tue, 05 Feb 2019 14:00:13 +0000 https://www.internetsociety.org/?p=94354

Editor’s note: This is an abridged version of a post that was first published on MANRS.org. Read the full version. In January last year I looked back at 2017 trying to figure out how routing security looked like globally and on a country level. I used BGPStream.com – a great public service providing information about […]

The post Routing Security – Getting Better, But No Reason to Rest! appeared first on Internet Society.

]]>
Rough Guide to IETF 102: Internet Infrastructure Resilience https://www.internetsociety.org/blog/2018/07/rough-guide-to-ietf-102-internet-infrastructure-resilience/ Tue, 10 Jul 2018 13:24:07 +0000 https://www.internetsociety.org/?p=82838 As usual, in this post I’ll focus on important work the IETF is doing that helps improve the security and resilience of the Internet infrastructure. At IETF 102 there are a lot of new ideas being brought to the community in the form of Internet Drafts aimed at improving the security and resilience of the […]

The post Rough Guide to IETF 102: Internet Infrastructure Resilience appeared first on Internet Society.

]]>
New RFC 8360 – RPKI Validation Reconsidered – Offers Alternative Validation Procedures to Improve Routing Security https://www.internetsociety.org/blog/2018/04/new-rfc-8360-rpki-validation-reconsidered-offers-alternative-validation-procedures-improve-routing-security/ Fri, 06 Apr 2018 14:14:05 +0000 https://www.internetsociety.org/?p=77207

RFC 8360, Resource Public Key Infrastructure (RPKI) Validation Reconsidered, is now published in the RFC libraries. What is RPKI? Resource Public Key Infrastructure (RPKI) aims to improve the security of the Internet routing system, specifically the Border Gateway Protocol (BGP), by establishing a hierarchy of trust for BGP routes. Today, most organizations simply trust that […]

The post New RFC 8360 – RPKI Validation Reconsidered – Offers Alternative Validation Procedures to Improve Routing Security appeared first on Internet Society.

]]>
Rough Guide to IETF 101: Internet Infrastructure Resilience https://www.internetsociety.org/blog/2018/03/rough-guide-ietf-101-internet-infrastructure-resilience/ Mon, 12 Mar 2018 09:00:34 +0000 https://www.internetsociety.org/?p=75054

In this post of the Internet Society Rough Guide to IETF 101, I’ll focus on important work the IETF is doing that helps improve security and resilience of the Internet infrastructure. BGP What happens if an IXP operator begins maintenance work on the switches without ensuring that BGP sessions between the peers have been shut […]

The post Rough Guide to IETF 101: Internet Infrastructure Resilience appeared first on Internet Society.

]]>
Routing Security is a Serious Problem – and MANRS Can Help. A Report from APRICOT 2018. https://www.internetsociety.org/blog/2018/03/routing-security-serious-problem-manrs-can-help-report-apricot-2018/ Tue, 06 Mar 2018 04:12:54 +0000 https://www.internetsociety.org/?p=74745

Last week, at APRICOT 2018 in Kathmandu, Nepal, there were a lot of talks and discussions focused on routing security and the Mutually Agreed Norms for Routing Security (MANRS). First, there was a Routing Security BoF, attended by about 150 people, where we talked about what it takes to implement routing security practices, how CDNs […]

The post Routing Security is a Serious Problem – and MANRS Can Help. A Report from APRICOT 2018. appeared first on Internet Society.

]]>
14,000 Incidents: A 2017 Routing Security Year in Review https://www.internetsociety.org/blog/2018/01/14000-incidents-2017-routing-security-year-review/ Tue, 09 Jan 2018 17:05:08 +0000 https://www.internetsociety.org/?p=71490

How was the state of the Internet’s routing system in 2017? Let’s take a look back using data from BGPStream. Some highlights: 13,935 total incidents (either outages or attacks like route leaks and hijacks) Over 10% of all Autonomous Systems on the Internet were affected 3,106 Autonomous Systems were a victim of at least one […]

The post 14,000 Incidents: A 2017 Routing Security Year in Review appeared first on Internet Society.

]]>
Another BGP Routing Incident Highlights an Internet Without Checkpoints https://www.internetsociety.org/blog/2017/12/another-bgp-routing-incident-highlights-internet-without-checkpoints/ Wed, 13 Dec 2017 19:05:05 +0000 https://www.internetsociety.org/?p=68835

Yesterday, there were two BGP routing incidents in which several high-profile sites (Google, Apple, Facebook, Microsoft, Twitch, NTT Communications and Riot Games) were rerouted to a previously unused Russian AS. The incidents only lasted about three minutes each, but demonstrated once again the lack of routing controls like those called for in MANRS that could […]

The post Another BGP Routing Incident Highlights an Internet Without Checkpoints appeared first on Internet Society.

]]>
Rough Guide to IETF 100: Internet Infrastructure Resilience https://www.internetsociety.org/blog/2017/11/rough-guide-ietf-100-internet-infrastructure-resilience/ Tue, 07 Nov 2017 05:28:07 +0000 https://www.internetsociety.org/?p=65375

As we approach IETF 100 in Singapore next week, this post in the Rough Guide to IETF 100 has much progress to report in the world of Internet Infrastructure Resilience. After several years of hard work, the last major deliverable of the Secure Inter-Domain Routing (SIDR) WG is done – RFC 8205, the BGPSec Protocol […]

The post Rough Guide to IETF 100: Internet Infrastructure Resilience appeared first on Internet Society.

]]>
Can IoT platforms from Apple, Google and Samsung make home automation systems more secure? https://www.internetsociety.org/blog/2017/09/can-iot-platforms-apple-google-samsung-make-home-automation-systems-secure/ Wed, 27 Sep 2017 20:45:54 +0000 https://www.internetsociety.org/?p=60388

In August 2017, a new botnet called WireX appeared and began causing damage by launching significant DDoS attacks. The botnet counted tens of thousands of nodes, most of which appeared to be hacked Android mobile devices. There are a few important aspects of this story. First, tracking the botnet down and mitigating its activities was […]

The post Can IoT platforms from Apple, Google and Samsung make home automation systems more secure? appeared first on Internet Society.

]]>
New BlueBorne Vulnerability to Bluetooth Devices – What happened and what to do about it https://www.internetsociety.org/blog/2017/09/new-blueborne-vulnerability-bluetooth-devices-happened/ Fri, 15 Sep 2017 15:39:17 +0000 https://www.internetsociety.org/?p=59254/

Billions of Bluetooth-enabled devices may be exposed to a new remote attack called “BlueBorne”, even without user interaction or pairing. Affected systems include Windows, iOS (older than iOS 10), the Linux kernel, and Android. What should you do about it? Bluetooth is ubiquitous, commonly connecting accessories like headsets and keyboards, but is also used throughout […]

The post New BlueBorne Vulnerability to Bluetooth Devices – What happened and what to do about it appeared first on Internet Society.

]]>
New Study: Understanding MANRS’ Potential for Enterprises and Service Providers https://www.internetsociety.org/blog/2017/09/new-study-understanding-manrs-potential-enterprises-service-providers/ Fri, 01 Sep 2017 20:03:42 +0000 http://www.internetsociety.org/?p=30317/

Mutually Agreed Norms for Routing Security, or MANRS, was founded with the ambitious goal of improving the security and reliability of the global Internet routing system, based on collaboration among participants and shared responsibility for Internet infrastructure. These are undoubtedly essential pillars supporting the Internet’s tremendous growth and success, but we must better articulate the […]

The post New Study: Understanding MANRS’ Potential for Enterprises and Service Providers appeared first on Internet Society.

]]>
Google leaked prefixes – and knocked Japan off the Internet https://www.internetsociety.org/blog/2017/08/google-leaked-prefixes-knocked-japan-off-internet/ Mon, 28 Aug 2017 13:51:01 +0000 http://www.internetsociety.org/?p=27409/

Last Friday, 25 August, a routing incident caused large-scale internet disruption. It hit Japanese users the hardest, slowing or blocking access to websites and online services for dozens of Japanese companies. What happened is that Google accidentally leaked BGP prefixes it learned from peering relationships, essentially becoming a transit provider instead of simply exchanging traffic […]

The post Google leaked prefixes – and knocked Japan off the Internet appeared first on Internet Society.

]]>