North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: NANOG 44 (Los Angeles): ISP Security BOF

  • From: Warren Kumari
  • Date: Mon Oct 06 14:08:13 2008

Hello all,

NANOG 44 is now less than a week away.
Here is the current program for the ISP Security BOF (NANOG 44, October 13, 2008, 4:30 PM - 6:00 PM) -- as always, the program at this point is still somewhat fluid and subject to change.

16:30 - 16:45: "Stealing the Internet" -- Anton Kapela

In "Stealing the Internet" Kapela will describe a method where an
attacker exploits the BGP routing system to facilitate transparent interception of IP packets.
The method will be shown to function at a scale previously thought by many as unavailable.
The talk highlights a new twist in sub-prefix hijacking that he demonstrated at Defcon 16:
using intrinsic BGP logic to hijack network traffic and simultaneously create a 'bgp shunt towards
the target network. This method will be shown to preserve end-to-end reachability while creating
a virtual 'wire tap' at the attackers network. He'll cover additive TTL modification and
transparent-origin-AS as a means for the attacker to obscure the interception.

There will not be a live demonstration of the hijack or interception


16:45 - 17:00: "An interim solution to the threat of DNS cache poisoning while waiting for DNSSEC". -- Rodney Joffe


17:00 - 17:15: "Next steps in IRR/X509" --Barry Raveendran Greene, Jason Schiller.


17:15 - 17:30: "Esthost's response to the 'Hostexploit report'" -- Konstantin Poltev (Esthost, Inc).

We are still waiting for the official title / abstract for this talk, so this is a temporary title....


17:30 - 17:45: "Early Survey Results and Some Attack Statistics" -- Danny McPherson.


There are 15 minutes left over at the end of the agenda as I'm sure some talks will run over their alloted time.

Hopefully this agenda is interesting and you are looking forward to the BOF....

See you there, W