The security of a network infrastructure, particularly an extensive one, relies on the proper management of the network address space, routes, and external connections. If network managers don't know what they have, how it's connected, and what else it's connected to, they can't know if it is secure. The Internet Mapping Project, started by Bill Cheswick at Bell Labs, has been collecting intriguing topological information about the Internet since August of 1998. In the last year, this technology has been applied to large corporate intranets and ISPs with equally illuminating results.

The presentation introduces the analysis and interpretation of such maps and what can be determined from such analysis. The larger the network, the more useful we find this analysis to be for identifying single points of failure, address squatting (the use of another organization's address space within one's own network), legacy connections to divested networks or former business partners, and outright security violations. Real-world anonymized examples will be part of the presentation.

About the Presenter
Karl Siil, Director of Professional Services at Lumeta Corporation, has been working in network and system security for the past 20 years. Prior to Lumeta, Mr. Siil spent over 10 years at AT&T Bell Labs developing secure operating systems and networks for commercial and government clients, and three more years running the security practices of various global consulting companies.