Presentation is loading. Please wait.

Presentation is loading. Please wait.

Backbone and Campus Security Threats/Trends

Published byStephan Burgstaller Modified over 6 years ago

Similar presentations

Presentation on theme: "Backbone and Campus Security Threats/Trends"— Presentation transcript:

1 Backbone and Campus Security Threats/Trends
Craig Labovitz Danny McPherson

2 Background Monitoring anomalous routing and traffic data from 100+ tier1/2 and campus/enterprise networks Represent most of North America and EMA transit bandwidth Anonymized detailed attack statistics from 40 deployments Includes I2 backbone and several GigaPoPs Bi-annual surveys of 50+ ISP and Campus/Enterprise networks The survey was targeted at obtaining an understanding of some of the operational security aspects occurring in large Internet networks today The findings of this survey are reflects in the following slides

3 (2005 H2) Primary Threat Concerns
Brute force bandwidth (pps) remain largest threat Little perceived threat from routing or more complex attack vectors

4 Attack Targets Core infrastructure and customer links rarely targeted - specific customers primary target Services such as DNS second target choice

5 Customer Impacting Attacks
An average of 40 actionable customer impact attacks per month were reported

6 Infrastructure Impacting Attacks
Infrastructure impacting attacks were far less common, on the order of 1-2 per month on average These attacks were both directly at the infrastructure, as well as a result of collateral damage from customer attacks

7 Largest Attacks Observed
Attacks greater than 10 Gbps sustained bandwidth were reported Not a large differential in largest attack ever v. largest in past six months - perhaps indicative of worsening problem

8 Mitigation Techniques
Lack of scalable management tools and concern over card “support” for ACLs So, the primary mitigation techniques employed by operators involve effectively completing the attack!

9 Law Enforcement Referrals
Referrals limited by: Lack of forensics detail Belief in utility Customer privacy request Too many attacks to bother Only 29% of respondents believe LEOs have the power and means to to act upon information provided about attacks

10 ISPs and Future Threats
31% believe ISPs are NOT in a position to mitigate future Internet threats 69% believe are, but: “Only in limited deployment for MS customers” “Who else can do it - customers can’t” “Yes - but cost model is VERY tough” “Not with today’s margins” “$$$” “Position, yes, paid to do so - NO!”

Download ppt "Backbone and Campus Security Threats/Trends"

Similar presentations

Market Research Ms. Roberts 10/12. Definition: The process of obtaining the information needed to make sound marketing decisions.

Market Research Ms. Roberts 10/12. Definition: The process of obtaining the information needed to make sound marketing decisions.
Attackers Vs. Defenders: Restoring the Equilibrium Ron Meyran Director of Security Marketing January 2013.

Attackers Vs. Defenders: Restoring the Equilibrium Ron Meyran Director of Security Marketing January 2013.
Radware DoS / DDoS Attack Mitigation System Orly Sorokin January 2013.

Radware DoS / DDoS Attack Mitigation System Orly Sorokin January 2013.
Responding to Cybercrime in the Post-9/11 World Scott Eltringham Computer Crime and Intellectual Property Section U.S. Department of Justice (202) 353-7848.

Responding to Cybercrime in the Post-9/11 World Scott Eltringham Computer Crime and Intellectual Property Section U.S. Department of Justice (202)
Obstacles to PKI Deployment and Usage - Survey Results and Draft Action Plan Steve Hanna, Co-chair, OASIS PKI TC.

Obstacles to PKI Deployment and Usage - Survey Results and Draft Action Plan Steve Hanna, Co-chair, OASIS PKI TC.
UNITS meeting September 30, 2004 Network Security Roger Safian

UNITS meeting September 30, 2004 Network Security Roger Safian
Arbor Multi-Layer Cloud DDoS Protection

Arbor Multi-Layer Cloud DDoS Protection
Worldwide Infrastructure Security Report C F Chui, Arbor Networks.

Worldwide Infrastructure Security Report C F Chui, Arbor Networks.
Putting the Tools to Work – DDOS Attack 111. DDOS = SLA Violation! ISPCPETarget Hacker What do you tell the Boss? SP’s Operations Teams have found that.

Putting the Tools to Work – DDOS Attack 111. DDOS = SLA Violation! ISPCPETarget Hacker What do you tell the Boss? SP’s Operations Teams have found that.
Joel Maloff Phone.com February, 2012.

Joel Maloff Phone.com February, 2012.
2012 Infrastructure Security Report Darren Anstee, Arbor Solutions Architect 8 th Annual Edition.

2012 Infrastructure Security Report Darren Anstee, Arbor Solutions Architect 8 th Annual Edition.
Www.netfort.com How to monitor Windows file share activity on your network Aisling Dillon.

How to monitor Windows file share activity on your network Aisling Dillon.
Dynamic Network Emulation Security Analysis for Application Layer Protocols.

Dynamic Network Emulation Security Analysis for Application Layer Protocols.
© XchangePoint 2001 Economic Differences Between Transit and Peering Exchanges Keith Mitchell Chief Technical Officer NANOG 25 10th June 2002.

© XchangePoint 2001 Economic Differences Between Transit and Peering Exchanges Keith Mitchell Chief Technical Officer NANOG 25 10th June 2002.
Computer and Internet privacy University of Palestine University of Palestine Eng. Wisam Zaqoot Eng. Wisam Zaqoot Feb 2010 Feb 2010 ITSS 4201 Internet.

Computer and Internet privacy University of Palestine University of Palestine Eng. Wisam Zaqoot Eng. Wisam Zaqoot Feb 2010 Feb 2010 ITSS 4201 Internet.
Distributed Denial of Service CRyptography Applications Bistro Presented by Lingxuan Hu April 15, 2004.

Distributed Denial of Service CRyptography Applications Bistro Presented by Lingxuan Hu April 15, 2004.
It’s Not Just You! Your Site Looks Down From Here Santo Hartono, ANZ Country Manager March 2014 Latest Trends in Cyber Security.

It’s Not Just You! Your Site Looks Down From Here Santo Hartono, ANZ Country Manager March 2014 Latest Trends in Cyber Security.
Protect Your Business Become a Hard Target. Where Are We Going?

Protect Your Business Become a Hard Target. Where Are We Going?
ESnet Site Coordinators Committee (ESCC): IPv6 Activities & Directions Phil DeMar (ESCC Chair) HEPix IPv6 Workshop (CERN) June 22, 2011.

ESnet Site Coordinators Committee (ESCC): IPv6 Activities & Directions Phil DeMar (ESCC Chair) HEPix IPv6 Workshop (CERN) June 22, 2011.
I-Path : Network Transparency Project Shigeki Goto* Akihiro Shimoda*, Ichiro Murase* Dai Mochinaga**, and Katsushi Kobayashi*** 1 * Waseda University **

I-Path : Network Transparency Project Shigeki Goto* Akihiro Shimoda*, Ichiro Murase* Dai Mochinaga**, and Katsushi Kobayashi*** 1 * Waseda University **

Similar presentations

Ads by Google