Years back to 2005, Cogent (AS174) mysteriously announced route for 22.214.171.124/24, One of the prefixes is assigned to Google. This incident caused Google went down for almost 1 hour. Last year in 2018, Google had huge amount services unreachable and the issue had been identified that their traffic was redirected to Russia and China. Internet is composed by different autonomous systems using exterior gateway protocol - BGP to exchange routing and reachability information. Malicious actor could utilize inborn routing weakness to hijack your packets. They can let your service down or more seriously, they can fake your service to steal some credential information. This kind of attack will re-advertise affected route to poison AS path to be switched to incorrect path and is usually triggered by national-level group and hard to perform. In this talk, I will discuss about how Internet made up and what attributes, like AS_PATH will affect BGP routing decision. How do we defense this kind of attack. What is Resource Public Key infrastructure - RPKI and how RPKI could defense this kind of attack.
Network security enthusiast with network infra background. Have 10+ years working experience in IT domain. Was a network engineer at NCHC and Qualcomm before and responsible for backbone network for TWAREN (TaiWan Research and Education Network) and Qualcomm corporate network. Have rich experience in how BGP peering works and how to optimize routing decisions. Now is working for IBM on developing and testing network security products (XGS, Guardium).