French Internet resilience

Speaker : M. Feuillet, F. Contat, G. Valadon
ANSSI
Date: 16/01/2013
Time: 2:00 pm - 3:00 pm
Location: LINCS Meeting Room 40

Abstract

Abstract:The French Network and Information Security Agency (FNISA) and theFrench Network Information Center (AFNIC) have recently published adetailed report on the French Internet resilience. This documentis based on measures performed for two key protocols for the Internet :Border Gateway Protocol (BGP) and Domain Name System (DNS).In order to evaluate the resilience of BGP, several indicators have beenused:(i) the correct declaration of routing information to regional informationregistries which is necessary to check messages received by routers;(ii) the connectivity between operators in order to evaluate the risk ofa full disconnection;(iii) the frequency of prefix hijacking by which an operator announces orrelays illegitimate routing information.In order to estimate this indicators, the FNISA has analyzed all BGPmessages of four major French network operators over a period of 11 months.Concerning the DNS protocol, the considered indicators are:(i) the distribution of name servers among countries and operators;(ii) the number of unpatched servers still vulnerable to the Kaminskyvulnerability;(iii) the deployment of protocols such as IPv6 and DNS Security Extensions(DNSSEC).Measures have been performed in two ways: active measures on DNS serversof .fr domains and passive measures by observing the traffic onauthoritative servers of .fr administrated by AFNIC.The aim of this talk is to present the results of this first report andto introduce the new indicators and results which have been obtainedsince then. In the same time, we will introduced several opentheoritical problems linked to this study.