bgpsec interoperability test
play

BGPSec Interoperability Test QuaggaSRx and BIRD bgpsec IETF 97 - PowerPoint PPT Presentation

Oct 02, 2022 •120 likes •304 views

BGPSec Interoperability Test QuaggaSRx and BIRD bgpsec IETF 97 Trustworthy Networking Program Seoul, South Korea Nov. 17, 2016 Oliver Borchert (oliver.borchert@nist.gov) NaNonal InsNtute of Standards and Technology 1 Tested Systems:

  1. BGPSec Interoperability Test QuaggaSRx and BIRD bgpsec IETF 97 Trustworthy Networking Program Seoul, South Korea Nov. 17, 2016 Oliver Borchert (oliver.borchert@nist.gov) NaNonal InsNtute of Standards and Technology 1

  2. Tested Systems: QuaggaSRx BGPSEC-IO* (hUps://bgpsrx.antd.nist.gov) Trustworthy Networking Program BIRD bgpsec (hUps://bgpsrx.antd.nist.gov) *BGPSEC Traffic Generator 2

  3. Topology Scenario S1 AS10 AS20 AS30 AS40 AS50 QuaggaSRx BIRD bgpsec BIRD bgpsec QuaggaSRx QuaggaSRx 10.10.0.0/16 10.10.1.0/24 Trustworthy Networking Program 10.10.2.0/24 AS100 ROA’s BGPSEC-IO 10.10.0.0/16-24, 10 10.10.0.0/16 10.10.1.0/24 10.10.2.0/24 AS100 aUempts to hijack the traffic of AS10 3

  4. StarNng AS 10, 20, 30, 40, 50 Trustworthy Networking Program 4

  5. StarNng AS 10, 20, 30, 40, 50 Trustworthy Networking Program 5

  6. Trustworthy Networking Program Switching to AS40 6

  7. Trustworthy Networking Program Switching to AS40 7

  8. Adding Traffic using BGPSEC-IO Trustworthy Networking Program 8

  9. Adding Traffic using BGPSEC-IO Trustworthy Networking Program 9

  10. Adding Traffic using BGPSEC-IO RPKI Origin ValidaNon BGPSEC Path ValidaNon Trustworthy Networking Program 10

  11. Result • The Prefix Hijack was unsuccessful: Trustworthy Networking Program – Announced prefixes passed path validaNon – Announcement failed RPKI origin valida-on • Policy is prefer valid – no switch to shorter invalid route 11

  12. Topology Scenario S2 AS10 AS20 AS30 AS40 AS50 QuaggaSRx BIRD bgpsec BIRD bgpsec QuaggaSRx QuaggaSRx 10.10.0.0/16 10.10.1.0/24 Trustworthy Networking Program 10.10.2.0/24 AS10 AS100 ROA’s BGPSEC-IO 10.10.0.0/16-24, 10 10.10.0.0/16 10.10.1.0/24 10.10.2.0/24 AS100 aUempts to hijack the traffic of AS10 by pre-pending AS10 12

  13. RestarNng Traffic using BGPSEC-IO Trustworthy Networking Program 13

  14. RestarNng Traffic using BGPSEC-IO Trustworthy Networking Program 14

  15. RestarNng Traffic using BGPSEC-IO RPKI Origin ValidaNon BGPSEC Path ValidaNon Trustworthy Networking Program 15

  16. Result • The Prefix Hijack was unsuccessful: Trustworthy Networking Program – Announced prefixes failed path valida-on – Announcement passed RPKI origin validaNon • Policy is prefer valid – no switch to shorter invalid route 16

  17. QuesNons ? Trustworthy Networking Program oliver.borchert@nist.gov NaNonal InsNtute of Standards and Technology 17

Recommend

Interoperability Developmental Test & Evaluation Guidance May 2017 DT&E Interoperability

Interoperability Developmental Test & Evaluation Guidance May 2017 DT&E Interoperability

Interoperability Developmental Test & Evaluation Guidance May 2017 DT&E Interoperability Initiative Team CLEARED for Open Publication, June 01, 2017, DoD Office of Prepublication and Security Review, Case #17-S-1813 BLUF

333 views • 17 slides
Interoperability in Ten Minutes What is interoperability? How do we achieve interoperability How

Interoperability in Ten Minutes What is interoperability? How do we achieve interoperability How

Interoperability in Ten Minutes What is interoperability? How do we achieve interoperability How can TEI support interoperability? Wendell Piez Interedition Think Tank Wrzburg, Lower Franconia October 12, 2011 Costs and Benefits of

982 views • 5 slides
Multi-Vendor Carrier Ethernet Interoperability Test 2008 Carsten Rossenhvel, Managing Director

Multi-Vendor Carrier Ethernet Interoperability Test 2008 Carsten Rossenhvel, Managing Director

Multi-Vendor Carrier Ethernet Interoperability Test 2008 Carsten Rossenhvel, Managing Director European Advanced Networking Test Center (EANTC AG) Agenda Participants and Testing Goals Growth Areas Interoperability Achieved

337 views • 21 slides
Interoperability of retail DFS What is Interoperability? DFS interoperability models

Interoperability of retail DFS What is Interoperability? DFS interoperability models

Interoperability of retail DFS What is Interoperability? DFS interoperability models The essentials of interoperability State of retail DFS interoperability in Malawi Benefits of interoperability Challenges of

257 views • 10 slides
Interoperability via common Build & Test (BaT) Miron Livny Computer Sciences Department

Interoperability via common Build & Test (BaT) Miron Livny Computer Sciences Department

Interoperability via common Build & Test (BaT) Miron Livny Computer Sciences Department University of Wisconsin-Madison Thesis Interoperability of middleware can only be achieved if all components can be built and tested in a common

606 views • 49 slides
AN INTEROPERABILITY FRAMEWORK FOR TRIALS AND EXERCISES TEST-BED INFRASTRUCTURE Martijn

AN INTEROPERABILITY FRAMEWORK FOR TRIALS AND EXERCISES TEST-BED INFRASTRUCTURE Martijn

AN INTEROPERABILITY FRAMEWORK FOR TRIALS AND EXERCISES TEST-BED INFRASTRUCTURE Martijn Hendriks, XVR Simulation ITEC 2019 Conference DRIVER+ OVERALL OBJECTIVES To develop a pan- TRIALS FINAL DEMO To develop a European Test-bed for Poland,

562 views • 10 slides
Status of Delta-DOR interoperability Den Hagg Nov 06 th , 2017 Mattia Mercolino E SA/ E SOC

Status of Delta-DOR interoperability Den Hagg Nov 06 th , 2017 Mattia Mercolino E SA/ E SOC

Status of Delta-DOR interoperability Den Hagg Nov 06 th , 2017 Mattia Mercolino E SA/ E SOC Summary Ka-band Quasar catalogue activities TTCP test/deployment Development of PN DDOR Test with VLBI antennas on Cassini

127 views • 12 slides
for CAN-FD/PN Transceivers iCC 2017 1 Content Standards and their problems Consequences

for CAN-FD/PN Transceivers iCC 2017 1 Content Standards and their problems Consequences

Interoperability challenges for CAN-FD/PN Transceivers iCC 2017 1 Content Standards and their problems Consequences for multi-supplier-solutions Ways to achieve interoperability Interoperability test specification for CAN &

833 views • 17 slides
InteropNet Labs WLAN Security Initiative N+I Las Vegas 2003 802.1X Ad-hoc Interoperability

InteropNet Labs WLAN Security Initiative N+I Las Vegas 2003 802.1X Ad-hoc Interoperability

InteropNet Labs WLAN Security Initiative N+I Las Vegas 2003 802.1X Ad-hoc Interoperability Test Event Information Sheet The InteropNet Labs Wireless LAN Security Initiative is hosting an 802.1X Ad-Hoc Interoperability Test Event April 7-9,

36 views • 3 slides
Interoperability Toolkit Overview For the Supplier community presented by Richard Dobson, NHS

Interoperability Toolkit Overview For the Supplier community presented by Richard Dobson, NHS

Interoperability Toolkit Overview For the Supplier community presented by Richard Dobson, NHS Digital Test Assurance Manager What is ITK Release 2.1? 2 Interoperability Toolkit (ITK) What is it? A set of common specifications,

318 views • 30 slides
RIB Size Estimation for BGPSEC Trustworthy Networking Program K. Sriram (with O. Borchert, O.

RIB Size Estimation for BGPSEC Trustworthy Networking Program K. Sriram (with O. Borchert, O.

RIB Size Estimation for BGPSEC Trustworthy Networking Program K. Sriram (with O. Borchert, O. Kim, D. Cooper, and D. Montgomery) IETF-81 SIDR WG Meeting July 28, 2011 Contacts: ksriram@nist.gov, dougm@nist.gov Acknowledgements: Many thanks

133 views • 12 slides
INTEROPERABILITY OPPORTUNITY 1-15-19 What direction is the County taken ? The old way The new

INTEROPERABILITY OPPORTUNITY 1-15-19 What direction is the County taken ? The old way The new

PUBLIC SAFETY LAND MOBILE RADIO PROJECT INTEROPERABILITY OPPORTUNITY 1-15-19 What direction is the County taken ? The old way The new way 2 What is interoperability? Interoperability pertains to the coordination of various integral systems

316 views • 9 slides
IPsec, BGPsec, DNSSEC Lecture 20 Internet Protocol Suite TCP/IP: Developed in the 70 s IP: at

IPsec, BGPsec, DNSSEC Lecture 20 Internet Protocol Suite TCP/IP: Developed in the 70 s IP: at

IPsec, BGPsec, DNSSEC Lecture 20 Internet Protocol Suite TCP/IP: Developed in the 70 s IP: at the internet layer. Handles addressing and routing TCP: at the transport layer. Setting up channels (between ports), with traffic control, error-

292 views • 17 slides
Lack of interoperability costs the translation industry a fortune What is interoperability Do

Lack of interoperability costs the translation industry a fortune What is interoperability Do

Lack of interoperability costs the translation industry a fortune What is interoperability Do you miss interoperability with content Who responded to the survey How much does it cost you Couldn't give a figure, but I'm sure it costs a lot of

486 views • 34 slides
Interoperability Doug Fridsma, MD PhD President & CEO, AMIA Getting to Interoperability

Interoperability Doug Fridsma, MD PhD President & CEO, AMIA Getting to Interoperability

Interoperability Doug Fridsma, MD PhD President & CEO, AMIA Getting to Interoperability To get to interoperability (or to avoid information blocking) we need a common understanding of the problem Cant solve the problem all at

285 views • 24 slides
BGP Joeri de Ruiter Agenda BGP recap BGP security RPKI / ROA BGPsec

BGP Joeri de Ruiter Agenda BGP recap BGP security RPKI / ROA BGPsec

Advanced Network Security BGP Joeri de Ruiter Agenda BGP recap BGP security RPKI / ROA BGPsec Startng (almost) from scratch 2 Autonomous systems (AS) Internet is divided into Autonomous Systems (AS) Controlled by

815 views • 39 slides
IPsec, BGPsec, DNSSEC Lecture 18 And a bit of Zero-Knowledge Proofs Internet Protocol Suite

IPsec, BGPsec, DNSSEC Lecture 18 And a bit of Zero-Knowledge Proofs Internet Protocol Suite

IPsec, BGPsec, DNSSEC Lecture 18 And a bit of Zero-Knowledge Proofs Internet Protocol Suite TCP/IP: Developed in the 70 s IP: at the internet layer. Handles addressing and routing TCP: at the transport layer. Setting up channels (between

418 views • 21 slides
Introduction to HL7 and Interoperability and Interoperability Supachai Parchariyanon, M.D., MBI,

Introduction to HL7 and Interoperability and Interoperability Supachai Parchariyanon, M.D., MBI,

Introduction to HL7 and Interoperability and Interoperability Supachai Parchariyanon, M.D., MBI, BBA Informatics Division, Faculty of Medicine Ramathibodi Hospital Certified HL7 CDA Specialist 1 Supachai Kid Parchariyanon - MD Profile :

1.08k views • 25 slides
Status of Delta-DOR interoperability San Antonio th , 2017 May 11 Mattia Mercolino E SA/ E

Status of Delta-DOR interoperability San Antonio th , 2017 May 11 Mattia Mercolino E SA/ E

Status of Delta-DOR interoperability San Antonio th , 2017 May 11 Mattia Mercolino E SA/ E SOC Summary Ka-band Quasar catalogue activities TTCP test/deployment Radiometer deployments Antenna array Radio-science

440 views • 8 slides
The Need to Succeed: Tearing Down NFV Interoperability Walls Carsten Rossenhoevel, Co-Founder

The Need to Succeed: Tearing Down NFV Interoperability Walls Carsten Rossenhoevel, Co-Founder

The Need to Succeed: Tearing Down NFV Interoperability Walls Carsten Rossenhoevel, Co-Founder & CTO November 14, 2018 About the European Advanced Networking Test Center State of the art testing expertise focusing on innovative telecom

481 views • 31 slides
Examining the Practicality of Ethernet for Mobile Backhaul Through Interoperability Testing

Examining the Practicality of Ethernet for Mobile Backhaul Through Interoperability Testing

Examining the Practicality of Ethernet for Mobile Backhaul Through Interoperability Testing Carsten Rossenhvel, Managing Director European Advanced Networking Test Center EANTC Introduction Providing independent network quality assurance

486 views • 25 slides
Engineering Best Practices Test, test, test, and test some more; test as you go Start from a

Engineering Best Practices Test, test, test, and test some more; test as you go Start from a

Engineering Best Practices Test, test, test, and test some more; test as you go Start from a known working state, take small steps Make things visible (gdb, printf, logic analyzer) Methodical, systematic approach. Form hypotheses and perform

755 views • 38 slides
IPsec, BGPsec, DNSSEC Lecture 20 Internet Protocol Suite Link layer: ethernet, wifi etc. Internet

IPsec, BGPsec, DNSSEC Lecture 20 Internet Protocol Suite Link layer: ethernet, wifi etc. Internet

IPsec, BGPsec, DNSSEC Lecture 20 Internet Protocol Suite Link layer: ethernet, wifi etc. Internet layer: addressing and routing Transport layer: Setting up channels (between ports), with traffic control, error-correction etc. TCP/IP for

676 views • 16 slides
INTERACTIVE TEST TOOL FOR INTEROPERABILITY TESTING OF MULTI- VENDOR CACC Alexey Voronov ,

INTERACTIVE TEST TOOL FOR INTEROPERABILITY TESTING OF MULTI- VENDOR CACC Alexey Voronov ,

INTERACTIVE TEST TOOL FOR INTEROPERABILITY TESTING OF MULTI- VENDOR CACC Alexey Voronov , Viktoria Swedish ICT (alexey.voronov@viktoria.se) Cristofer Englund, Viktoria Swedish ICT & Halmstad Hgskola Hoai Bengtsson, Viktoria Swedish ICT

543 views • 20 slides

More recommend