The second quarter of the year was so busy for #MANRS and the world of #routingsecurity that this newsletter is coming out in August! Let’s catch up on the latest. We're covering all the regulation talk from the Federal Communications Commission, other US government agencies moving forward and doing their part on routing security by implementing #ROV, and highlight several #explainers and introductory posts to help you get up to speed. In non-regulatory news, we've got new research on suspicious #IRR records, new features in the MANRS Observatory, links to multiple presentations over the last few months, and pointers to our outreach materials so you can help spread the word and get more networks involved in improving routing security for us all. Happy reading!
Mutually Agreed Norms for Routing Security (MANRS)
Computer and Network Security
MANRS is a global initiative, supported by the Global Cyber Alliance, that helps reduce the most common routing threats.
About us
Mutually Agreed Norms for Routing Security (MANRS) is a global initiative, supported by the Global Cyber Alliance , that provides crucial fixes to reduce the most common routing threats. MANRS outlines four simple but concrete actions that network operators should take: Filtering – Ensure the correctness of your own announcements and of announcements from your customers to adjacent networks with prefix and AS-path granularity Anti-spoofing – Enable source address validation for at least single-homed stub customer networks, your own end-users, and infrastructure Coordination – Maintain globally accessible up-to-date contact information Global Validation – Publish your data, so others can validate routing information on a global scale A separate set of Actions applies explicitly to Internet Exchange Points and CDN and Cloud providers.
- Website
-
https://www.manrs.org/
External link for Mutually Agreed Norms for Routing Security (MANRS)
- Industry
- Computer and Network Security
- Company size
- 51-200 employees
- Type
- Nonprofit
- Founded
- 1991
- Specialties
- routing security, RPKI, and BGP
Products
MANRS Observatory
Network Traffic Analysis (NTA) Tools
The MANRS Observatory dashboard gives a high-level overview on the state of routing security, MANRS Readiness, and insights to statistics for specific global economies. The objective of the MANRS Observatory is to demonstrate the level of MANRS readiness of all networks participating in Internet routing, which also serves as an indication of the state of routing security. MANRS Observatory also presents consolidated numbers for specific regions and economies and tracks their evolution over time. Detailed statistics and reports for specific networks are available to MANRS participants only. Participants can access these reports through the Observatory. The report provides a historical overview for a specific member ASN, per Action, as well as detailed information related to a specific metric.
Employees at Mutually Agreed Norms for Routing Security (MANRS)
Updates
-
Today, Global Cyber Alliance's Head of Engineering Robert Thomas discusses updating ROAST and a new #ROA History feature in the #MANRS Observatory. Read "Cooking Up Secure Routes with ROAST" https://lnkd.in/efUv6wYe #RPKI #routingsecurity
Cooking Up Secure Routes with ROAST - MANRS
manrs.org
-
The Federal Communications Commission issued its Notice of Proposed Rulemaking (NPRM) on #BGP, and the Global Cyber Alliance has submitted comments in response. Read GCA's blog post and the full filing below. To reiterate: we believe in the power of this community to work together to improve #routingsecurity for everyone.
Last week, we filed comments in response to the Federal Communications Commission Notice of Proposed Rulemaking (NPRM) on Reporting on Border Gateway Protocol Risk Mitigation Progress. We note that: a. Routing security is improving significantly already. b. Any reporting requirements must be lightweight, flexible, and aligned with current industry-accepted best practices. c. There is no silver bullet to improve routing security. It is a complex, global system that requires commitment and collaboration that transcends national borders. d. Better than regulation: Collaboration and the availability and sustainability of open-source tools, data platforms, and community efforts are essential for advancing routing security. We’re proud to be the secretariat of Mutually Agreed Norms for Routing Security (MANRS) and we fully believe in the ability of the international community of network operators to work in a coordinated and collaborative way to continue improving routing security practices. Our full statement: https://lnkd.in/eW4Vi2xi #BGP #RPKI #ROA #ROV #routingsecurity #regulation
GCA Comments on Potential US Government Rules for Routing Security - GCA | Global Cyber Alliance | Working to Eradicate Cyber Risk
globalcyberalliance.org
-
Mutually Agreed Norms for Routing Security (MANRS) reposted this
Secure Your Research & Education Network with ARIN's Hosted RPKI – Join Us for a Free Webinar! Date: Thursday, July 18th at 2:00 PM ET Join Brad Gorman (ARIN) & Steven Wallace (Internet2) to learn: - How RPKI strengthens network security for research & education institutions. - Simple steps to create a ROA (takes less than 5 minutes!). - Key considerations and resources to support RPKI adoption in our community. Register Now! https://buff.ly/3LcKQVg #RPKI #NetworkSecurity #RoutingSecurity #RoutingIntegrity #webinar #HigherEducation #Research #Security
-
-
"Internet giant Cloudflare reports that its DNS resolver service, 1.1.1.1, was recently unreachable or degraded for some of its customers because of a combination of Border Gateway Protocol (BGP) hijacking and a route leak. The incident occurred last week and affected 300 networks in 70 countries. Despite these numbers, the company says that the impact was "quite low" and in some countries users did not even notice it." Among the long-term solutions Cloudflare presented in its postmortem write-up: "Promote the adoption of the Mutually Agreed Norms for Routing Security (MANRS) principles, which include rejecting invalid prefix lengths and implementing robust filtering mechanisms." Read the full article from Bleeping Computer: https://lnkd.in/dMBRcdrD
Cloudflare blames recent outage on BGP hijacking incident
bleepingcomputer.com
-
Mutually Agreed Norms for Routing Security (MANRS) reposted this
“Where network and security collide” Insightful session with three presentations on how the four #MANRS actions have been successfully applied in a large #NREN network. Uncovering some practical challenges and limitations of #Zero_Trust security model and presentation about the experiences of #NREN in hosting #Tor_Exit relays. #Flexoptix #AFGREN #AFNOG #TNC24 #MANRS #BelleFrance #Rennes
-
-
"While some governments may think of regulation as a way to address the #routingsecurity problem, it is instructive to consider an approach that seeks to protect the public without the burden of bureaucracy." - Andrew Gallo #MANRS Steering Committee in today's blog post "MANRS as Fire Code." https://lnkd.in/eemzpV45
MANRS as Fire Code - MANRS
manrs.org
-
Welcome aboard Karsolink - AS204471! Thanks for everything you do to make #routingsecurity better for us all.
We are happy and proud to announce that we have join Manrs - community of security-minded organizations committed to making the global routing infrastructure more robust and secure. Karsolink - AS204471 Mutually Agreed Norms for Routing Security (MANRS) https://lnkd.in/gHHyDSRW
Page 5827 – MANRS
manrs.org
-
Read more from Global Cyber Alliance and #MANRS secretariat about why this should be a wake-up call for every single network operator to improve #routingsecurity.
GCA's Leslie Daigle explains in today's post why recent US government actions from the U.S. Department of Commerce and the Federal Communications Commission should make it clear to *ALL* network operators around the world that it is time to take orderly action to improve the state of #routingsecurity. "Rather, we should continue along the path Mutually Agreed Norms for Routing Security (MANRS) started, using industry collaboration to identify workable global norms for routing security, continuing to evolve at industry’s pace, while giving governments a referenceable standard for setting expectations in their own rulemaking." https://lnkd.in/eN-T-FFy
The US Government is Making Moves on Routing Security. So Should You. - GCA | Global Cyber Alliance | Working to Eradicate Cyber Risk
globalcyberalliance.org
-
Following up on yesterday's #routingsecurity explainer, today we're sharing a quick explanation of what's happening with U.S. Department of Commerce implementing #RPKI, the Federal Communications Commission's actions on regulating #BGP, the US gov't networks' uptake so far, and a timeline of what's happened with the FCC's proposed rulemaking. https://lnkd.in/eeurUP6j
Explainer: US Government Activity and BGP Security - MANRS
manrs.org