Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Crashing the Net Steven M. Bellovin AT&T Labs Research

Published byCameron Short Modified over 8 years ago

Similar presentations

Presentation on theme: "1 Crashing the Net Steven M. Bellovin AT&T Labs Research"— Presentation transcript:

1 1 Crashing the Net Steven M. Bellovin AT&T Labs Research smb@research.att.com http://www.research.att.com/~smb

2 2 Physical Layer l Backhoes –Natural enemy of cables. –Most fibers haven't evolved strong defenses, but some are symbiotic with gas pipelines. l Squirrels –Many squirrels find insulation tasty. –Some seem to home in on electrical fields. Do these attacks scale?

3 3 Massive Fiber Cut Pauses East West Traffic (Inter@ctive Week, 29 September 1999) “At least four Internet service providers are experiencing severe traffic backlogs because of a massive fiber-optic cable cut that put out four OC-192 lines connecting data networks on the East and West Coasts. “Industry sources told Inter@ctive Week that the cut was accidentally made by an unidentified gas company in Ohio around 12:30 EST today. “The news is sending shockwaves through the networking community, with many carrier operators struggling to understand why, all of a sudden, their traffic is routed through London and Denmark. At least four Internet service providers are being affected by the outage…”

4 4 Other Risks -- Routing l Routing tables tell the traffic how to flow. l Routing tables are generated by routing protocols. l Each router believes its neighbors. l If one of them lies, it confuses all of the others...

5 5 RISKS Digest 19.12 (1 May 97) “Internet service providers lost contact with nearly all of the U.S. Internet backbone operators… some for up to 3 hours. The problem was attributed to MAI Network Services... which provided Sprint and other backbone providers with incorrect routing tables… “Furthermore, the routing tables Sprint received were designated as optimal, which gave them higher credibility than otherwise. Something like 50,000 routing addresses all pointed to MAI.”

6 6 Other Risks -- DNS l Under the hood, the Internet relies on IP addresses to identify hosts. l The Domain Name System (DNS) maps host names into IP addresses. l If the mapping is wrong, bad things happen...

7 7 RISKS Digest 19.25 (18 July 97) “[On] 17 Jul 1997, a remarkable event occurred. The 4AM update of the root nameserver database was botched - horribly. The... effect of this is that the Internet does not work right. In this episode, the top-level domains.com and.net have ceased to exist... “The problem apparently began... during the autogeneration of the NSI top-level domain zone files... Quality-assurance alarms were evidently ignored and the corrupted files were released at 2:30am EDT.”

8 8 If it can happen by mistake, it can happen by malice.

9 9 Hack Puts AOL Off Limits (CNET News.com 16 Oct 1998) “Internet users trying to send email to America Online users or get to the online giant's site have been plagued by problems due to a major glitch with the Internet's domain naming system. “The problem was caused when someone forged an email message to the InterNIC, run by Network Solutions, requesting that Network Solutions change AOL's designated name server.”

Download ppt "1 Crashing the Net Steven M. Bellovin AT&T Labs Research"

Similar presentations

Routing Routing in an internetwork is the process of directing the transmission of data across two connected networks. Bridges seem to do this function.

Routing Routing in an internetwork is the process of directing the transmission of data across two connected networks. Bridges seem to do this function.
SIP, Firewalls and NATs Oh My!. www.dynamicsoft.com SIP Summit 2001 5.01.01 SIP, Firewalls and NATs, Oh My! Getting SIP Through Firewalls Firewalls Typically.

SIP, Firewalls and NATs Oh My!. SIP Summit SIP, Firewalls and NATs, Oh My! Getting SIP Through Firewalls Firewalls Typically.
Nick Feamster Research Interest: Networked Systems Arriving January 2006 Likely teaching CS 7260 in Spring 2005 Here off-and-on until then. Email works.

Nick Feamster Research Interest: Networked Systems Arriving January 2006 Likely teaching CS 7260 in Spring 2005 Here off-and-on until then. works.
Let's say we want to access domain - reliablescribe.com First we need to buy a computer We need to subscribe to an Internet Service Provider (ISP) The.

Let's say we want to access domain - reliablescribe.com First we need to buy a computer We need to subscribe to an Internet Service Provider (ISP) The.
Media Access Control (MAC) addresses in the network access layer ▫ Associated w/ network interface card (NIC) ▫ 48 bits or 64 bits IP addresses for the.

Media Access Control (MAC) addresses in the network access layer ▫ Associated w/ network interface card (NIC) ▫ 48 bits or 64 bits IP addresses for the.
Copyright © 1999 Telcordia Technologies All Rights Reserved Christian Huitema An SAIC Company IPv6: Connecting 6 billion.

Copyright © 1999 Telcordia Technologies All Rights Reserved Christian Huitema An SAIC Company IPv6: Connecting 6 billion.
The Internet AIMS 2710 R. Nakatsu. History Of The Internet: Origins The Internet has its roots in the U.S. military, which funded a network in 1969 called.

The Internet AIMS 2710 R. Nakatsu. History Of The Internet: Origins The Internet has its roots in the U.S. military, which funded a network in 1969 called.
Application Layer At long last we can ask the question - how does the user interface with the network?

Application Layer At long last we can ask the question - how does the user interface with the network?
The internet layer Skills: None IT concepts: layered protocols, the internet layer, IP protocol, router, dumb (“end-to- end,” “neutral”) networks This.

The internet layer Skills: None IT concepts: layered protocols, the internet layer, IP protocol, router, dumb (“end-to- end,” “neutral”) networks This.
DOMAIN NAMING SYSTEM (AN OVERVIEW) By -DEEPAK. Topics --DNS What is DNS? Purpose of DNS DNS configuration files.

DOMAIN NAMING SYSTEM (AN OVERVIEW) By -DEEPAK. Topics --DNS What is DNS? Purpose of DNS DNS configuration files.
IP Routing: an Introduction. Quiz 0-31 32-63 64-95 96-127 128-159 160-191 192-223 224-255.

IP Routing: an Introduction. Quiz
1 Reminding - ARP Two machines on a given network can communicate only if they know each other’s physical network address ARP (Address Resolution Protocol)

1 Reminding - ARP Two machines on a given network can communicate only if they know each other’s physical network address ARP (Address Resolution Protocol)
Vocabulary URL = uniform resource locator: web address protocol –set of rules that networked computers follow in order to share data and coordinate communications.

Vocabulary URL = uniform resource locator: web address protocol –set of rules that networked computers follow in order to share data and coordinate communications.
How the Internet Works Jon Crowcroft,

How the Internet Works Jon Crowcroft,
1 Networking A computer network is a collection of computing devices that are connected in various ways in order to communicate and share resources. The.

1 Networking A computer network is a collection of computing devices that are connected in various ways in order to communicate and share resources. The.
Lesson 19 Internet Basics.

Lesson 19 Internet Basics.
Fundamentals of Networking Discovery 1, Chapter 9 Troubleshooting.

Fundamentals of Networking Discovery 1, Chapter 9 Troubleshooting.
The internet and the WWW

The internet and the WWW
TCP/IP (Transmission Control Protocol / Internet Protocol) : The Protocol That Made the Internet Possible. By Albert Kalim (lecture materials quoted by.

TCP/IP (Transmission Control Protocol / Internet Protocol) : The Protocol That Made the Internet Possible. By Albert Kalim (lecture materials quoted by.
Internet Outage Trends Sean Donelan Equinix Inc NANOG 21 Atlanta, Georgia.

Internet Outage Trends Sean Donelan Equinix Inc NANOG 21 Atlanta, Georgia.

Similar presentations

Ads by Google