Tweet
The Internet is composed of thousands of Autonomous Systems (ASes) which route between each other using the Border Gateway Protocol (BGP). In recent years the size of the BGP routing table has been exponentially ballooning in size... breaking over one million entries and still continuing to grow. Even with routing hardware exponentially increasing in power, it is barely able to keep the pace with the ever-expanding size of the BGP routing table.
One major problem has been a lack of input validation on new entries in the BGP table inserted by a given AS. Several redundant or useless entries have been spotted in the BGP table, and are partially blamed for the BGP table's exponential growth. The other major problem is that any AS is trusted implicitly and is allowed to insert entries in the BGP table. This is further compounded by the fact that several vulnerabilities have been found in several key BGP implementations utilized by the Internet's routing architecture.
I certainly think the day will come when we see the release of an exploit (or worse, a worm) which can be used to compromise one or more AS routers, at which point the attacker will be free to spam the BGP routing table with malicious or garbage entries. With hardware barely able to keep pace with the requirements as is, if the BGP routing table were spammed/corrupted with a large number of malicious entries it could lead to a global Internet meltdown, at least until the compromized AS routers could be secured and the BGP table preened of malicious entries or reconstructed from scratch.
While I'm certainly not the first person to be worried about this possibility, considering few security enhancements or input validation improvements have been added to BGP since its introduction following the conversion to CIDR addressing in 1994, it certainly doesn't seem to be a problem which has been seriously addressed to any large degree.
Is anyone else worried?
One major problem has been a lack of input validation on new entries in the BGP table inserted by a given AS. Several redundant or useless entries have been spotted in the BGP table, and are partially blamed for the BGP table's exponential growth. The other major problem is that any AS is trusted implicitly and is allowed to insert entries in the BGP table. This is further compounded by the fact that several vulnerabilities have been found in several key BGP implementations utilized by the Internet's routing architecture.
I certainly think the day will come when we see the release of an exploit (or worse, a worm) which can be used to compromise one or more AS routers, at which point the attacker will be free to spam the BGP routing table with malicious or garbage entries. With hardware barely able to keep pace with the requirements as is, if the BGP routing table were spammed/corrupted with a large number of malicious entries it could lead to a global Internet meltdown, at least until the compromized AS routers could be secured and the BGP table preened of malicious entries or reconstructed from scratch.
While I'm certainly not the first person to be worried about this possibility, considering few security enhancements or input validation improvements have been added to BGP since its introduction following the conversion to CIDR addressing in 1994, it certainly doesn't seem to be a problem which has been seriously addressed to any large degree.
Is anyone else worried?
Comment