Presentation is loading. Please wait.

Presentation is loading. Please wait.

DoS-resistant Internet Grand Strategy technical and economic measures Bob Briscoe Jun 2006.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "DoS-resistant Internet Grand Strategy technical and economic measures Bob Briscoe Jun 2006."— Presentation transcript:

1 DoS-resistant Internet Grand Strategy technical and economic measures Bob Briscoe Jun 2006

2 why goal of group to galvanise co-ordinated actions to make the Internet more resistant to denial of services attacks, without unduly blocking the emergence of innovative new applications of the Internet goal of writing a grand strategy to lay out the space of possible activity across fields in order to prioritise –identify approaches that require less co-ordination between companies, industries, disciplines, jurisdictions –identify gaps where co-ordination unavoidable –identify approaches not worth pursuing foster consensus, rather than “not invented here” audience pt I discursive: internal, members, researchers pt II conclusive: regulators, operators (regulatory, operations), vendors, researchers

3 status structure table of contents bullet point content one review pass so far on group wiki (at LINX) recruited expert authors

4 multidisciplinary contents intro technical measures economic & incentive-based measures contractual measures regulatory measures commercial realities conclusions Malcolm Hutty (LINX) Bob Briscoe (BT) Mark Handley (UCL) Bob Briscoe (BT) Scott Shenker (ICSI & UCB) Malcolm Hutty (LINX) Chris Marsden (Rand) placeholder for all Malcolm Hutty (LINX)

5 technical measures operational best common practices summary of BCP (separate thread of work) survey of proposed technical measures described through a common reference model guidance on avenues to avoid and most fruitful approaches incremental deployment issues

6 architectural component ideas candidate list for the ‘network layer’ Network Ingress Filtering of Source Address Spoofing Defeating Denial of Service Attacks that Employ IP Source Address Spoofing., IETF RFC2827 Traceback S. Savage, D. Wetherall, A. Karlin, and T. Anderson “Practical Network Support for IP Traceback” SIGCOMM (2000) Pushback R. Mahajan, S. Bellovin, S. Floyd, J. Ioannidis, V. Paxson, and S. Shenker. Controlling High Bandwidth Aggregates in the Network. Computer Communications Review, 32(3), (July 2002) Overlay Indirection Services A Keromytis, V Misra, D Rubenstein, “Secure Overlay Service” SIGCOMM (2002) Secure Internet Indirection Infrastructure (i 3 ): K. Lakshminarayanan, D. Adkins, A. Perrig, and I. Stoica, “Taming IP Packet Flooding Attacks” HotNets-II, (2003) Symmetric paths, client-server address separation, RPF checks, state set-up bit, nonce exchange, middlewalls M Handley and A Greenhalgh “Steps towards a DoS-resistant Internet architecture” FDNA (2004) Re-feedback B Briscoe et al “Policing Congestion Response in an Internetwork using Re-feedback” SIGCOMM (2005) Receiver-driven Capabilities T. Anderson, T. Roscoe, and D.Wetherall, “Preventing Internet enial of Service with Capabilities” HotNets-II, (Nov. 2003) A. Yaar, A. Perrig, and D. Song, “SIFF: A Stateless Internet Flow Filter to Mitigate DDoS Flooding Attacks” Symposium on Security and Privacy, (2004) X Yang et al, “DoS-limiting Internet architecture” SIGCOMM (2005) Routing: off by default Hitesh Ballani, Yatin Chawathey, Sylvia Ratnasamyy, Timothy Roscoey, Scott Shenker “Off by Default!” HotNets (2005) Traffic symmetry C Kreibich et al, “Using Packet Symmetry to Curtail Malicious Traffic” HotNets (2005)

7 reference model: datagram comms intent: to describe all the architectural approaches within a common reference model simple high level abstraction of datagram comms devices are the congestible resource –memory, network interface, disk, processor abstracts essential features of device addressing via explicit hierarchical addressing and implicit addressing of relays through routing process (incl DHT overlay) includes multipath access to same resource

8 (controversial) guidance: “to be avoided” intend to include ‘obvious’ guidance eventually for public policy audience avoid attack detection by what the payload says it is app identifiers, port numbers encryption & dynamic ports rule these out (cf. IP over Skype) avoid attack mitigation through hooks to real-world identity then manual intervention not credible deterrent given DoS on the legal redress service –unless last resort for rare cracks in automated system the global Internet lowest common denominator is anonymity –not even anonymity behind delegated traceability

9 (controversial) guidance perhaps not so useful stuff attack detection by claimed source identifier not without broad validation measures in place attack detection by tests of humanity most human-usable services evolve to use by unattended computers attack detection by inferring attack signature from its behaviour –perhaps promising, but perhaps war-game not worth starting attack mitigation by requiring receiver permission biggest targets are sites with most (anonymous) clients: server request floods not useful unless receiver willing to randomly select clients mitigation by push-back beyond where congestion is being caused requires uncongested router to validate push-back request rather than validation through self-evident congestion caused push-back requests become amplifying attack vector

10 (controversial) guidance: fruitful avenues attack detection & mitigation by how traffic behaves ideally by congestion response given DoS is congestion, which is a valid network layer concern hooks in network for higher layers state set-up flag, nonce exchange

11 giving research guidance: with care! too early to rule out research avenues but I’m going to follow my intuition anyway other researchers will follow their noses too our advice is there to be ignored if assumptions can be circumvented defence in depth can be useful but, then again, too many depths will stifle innovation

12 economic & incentive-based measures pricing to increase the cost of attacks more useful for interconnection charging than for retail user to localise pain to the network allowing pain to be caused internal ‘pricing’ to drive throttles and policers encouraging the clean up of zombie hosts alternatively, SLA-type penalties for breaking thresholds limits of economic approaches value of attack to attacker >> cost to attacker, irrational attackers –both avoided if only use economic approach at interconnection insurance blurs responsibility –even if localise pain to irresponsible networks insurance tends to spread risk back to responsible networks re-ECN being progressed through IETF basis for interconnection congestion charging –draft-briscoe-tsvwg-re-ecn-tcp-02 –draft-briscoe-tsvwg-re-ecn-border-cheating.01

13 recent working group activity on technical-economic measures tactical approaches BGP-based push-back distributing DNS name server records strategic approaches policing congestion response using re-feedback/re-ECN state set-up flag

14 summary setting an agenda for action towards a DoS resistant Internet getting involved edit on LINX WiKi access controlled: via Mark Handley M.Handley@cs.ucl.ac.uk first substantial draft from all authors: mid Apr snapshot www.cs.ucl.ac.uk/staff/B.Briscoe/projects/dos/DoSGrandStrategy.html Bob Briscoe bob.briscoe@bt.com

Download ppt "DoS-resistant Internet Grand Strategy technical and economic measures Bob Briscoe Jun 2006."

Similar presentations

A CGA based Source Address Authentication Method in IPv6 Access Network(CSA) Guang Yao, Jun Bi and Pingping Lin Tsinghua University APAN26 Queenstown,

A CGA based Source Address Authentication Method in IPv6 Access Network(CSA) Guang Yao, Jun Bi and Pingping Lin Tsinghua University APAN26 Queenstown,
HotNets-VI 1 Architecting Citywide Ubiquitous Wi-Fi Access Nishanth Sastry Jon Crowcroft, Karen Sollins.

HotNets-VI 1 Architecting Citywide Ubiquitous Wi-Fi Access Nishanth Sastry Jon Crowcroft, Karen Sollins.
2009-03-16 1 Countering DoS Attacks with Stateless Multipath Overlays Presented by Yan Zhang.

Countering DoS Attacks with Stateless Multipath Overlays Presented by Yan Zhang.
Internetworking II: MPLS, Security, and Traffic Engineering

Internetworking II: MPLS, Security, and Traffic Engineering
Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.

Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.
Random Flow Network Modeling and Simulations for DDoS Attack Mitigation Jiejun Kong, Mansoor Mirza, James Shu, Christian Yoedhana, Mario Gerla, Songwu.

Random Flow Network Modeling and Simulations for DDoS Attack Mitigation Jiejun Kong, Mansoor Mirza, James Shu, Christian Yoedhana, Mario Gerla, Songwu.
Overview of Distributed Denial of Service (DDoS) Wei Zhou.

Overview of Distributed Denial of Service (DDoS) Wei Zhou.
Hash-Based IP Traceback Best Student Paper ACM SIGCOMM’01.

Hash-Based IP Traceback Best Student Paper ACM SIGCOMM’01.
Why are all architectural problems from 2000 still unsolved? How would we know we had solved socio-economic problems anyway? Bob Briscoe Chief Researcher,

Why are all architectural problems from 2000 still unsolved? How would we know we had solved socio-economic problems anyway? Bob Briscoe Chief Researcher,
Firewalls and Intrusion Detection Systems

Firewalls and Intrusion Detection Systems
Zhang Fu, Marina Papatriantafilou, Philippas Tsigas Chalmers University of Technology, Sweden 1 ACM SAC 2010 ACM SAC 2011.

Zhang Fu, Marina Papatriantafilou, Philippas Tsigas Chalmers University of Technology, Sweden 1 ACM SAC 2010 ACM SAC 2011.
Panel: Current Research on Stopping Unwanted Traffic Vern Paxson, Stefan Savage, Helen J. Wang IAB Workshop on Unwanted Traffic March 10, 2006.

Panel: Current Research on Stopping Unwanted Traffic Vern Paxson, Stefan Savage, Helen J. Wang IAB Workshop on Unwanted Traffic March 10, 2006.
Security Awareness: Applying Practical Security in Your World, Second Edition Chapter 5 Network Security.

Security Awareness: Applying Practical Security in Your World, Second Edition Chapter 5 Network Security.
Security Awareness: Applying Practical Security in Your World

Security Awareness: Applying Practical Security in Your World
8-1 Internet security threats Mapping: m before attacking: gather information – find out what services are implemented on network  Use ping to determine.

8-1 Internet security threats Mapping: m before attacking: gather information – find out what services are implemented on network  Use ping to determine.
Research direction Bob Briscoe Chief Researcher, BT Group Nov 2006.

Research direction Bob Briscoe Chief Researcher, BT Group Nov 2006.
DoS-resistant Internet - progress Bob Briscoe Jun 2005.

DoS-resistant Internet - progress Bob Briscoe Jun 2005.
1 TVA: A DoS-limiting Network Architecture Xiaowei Yang (UC Irvine) David Wetherall (Univ. of Washington) Thomas Anderson (Univ. of Washington)

1 TVA: A DoS-limiting Network Architecture Xiaowei Yang (UC Irvine) David Wetherall (Univ. of Washington) Thomas Anderson (Univ. of Washington)
Future Research Directions Jennifer Rexford Advanced Computer Networks Tuesdays/Thursdays 1:30pm-2:50pm.

Future Research Directions Jennifer Rexford Advanced Computer Networks Tuesdays/Thursdays 1:30pm-2:50pm.
Secure Overlay Services Adam Hathcock Information Assurance Lab Auburn University.

Secure Overlay Services Adam Hathcock Information Assurance Lab Auburn University.

Similar presentations

Ads by Google