Become a fan of Slashdot on Facebook

 



Forgot your password?
typodupeerror
×
The Internet Security Technology

Akamai, Amazon, Netflix, Microsoft, and Google Join Internet Routing Security Effort (theregister.co.uk) 13

A community effort to improve the internet's routing security has won the backing of some of the web's biggest names. From a report: Amazon, Google, Facebook, Microsoft, Akamai, and Netflix, among others, have signed up to the Mutually Agreed Norms for Routing Security (MANRS) group, in their roles as content delivery networks (CDNs) and cloud providers (CPs). MANRS's goal is to shore up the internet's lax security when it comes to routing people's connections around Earth. It is, essentially, depending on the circumstances, too easy for miscreants to hijack and redirect internet traffic from legit servers to malicious machines so that web browsing and other online activities can be snooped on or meddled with. This widespread issue is something that has become increasingly important in the past few years as the number and size of connectivity breakdowns and attacks on the global system have grown. Criminals and possibly government spies have realized the potential that exists in snatching people's internet traffic for surveillance, disruption, and theft. The MANRS group pushes four main approaches, two technical and two cultural: filtering, anti-spoofing, and then coordination and validation.
This discussion has been archived. No new comments can be posted.

Akamai, Amazon, Netflix, Microsoft, and Google Join Internet Routing Security Effort

Comments Filter:
  • Why are they not doing something in periods of drought?

  • by Areyoukiddingme ( 1289470 ) on Thursday April 02, 2020 @12:09PM (#59901340)

    The elephant in the room is BGP, which hasn't been updated since 1998 and still includes hardware assumptions from that era in the protocol. It also has security assumptions from that era in the protocol. After all, everyone on the network is a nice, responsible, reasonable adult with the interests of the entire network as a whole at heart, right? Yeah, no...

    BGP needs replacing entirely, but it's probably too late. There are too many competing interests and too many jackholes would see it as an opportunity for profit, turning any attempt to replace it into a shitshow of meddling attempts to inject patented algorithms into it. And so we're left with... "norms for routing security".

    I wish them luck. It'll be a minor miracle if they accomplish anything.

  • I think there is probably a standards body or three that actually can do something about this...

    All of the companies listed pretty much only exist to serve content (and datamine the last ounce of your privacy).

    Which means this is probably a bad thing.

  • there was much rejoycing

He who steps on others to reach the top has good balance.

Working...