^ Top

NANOG Meeting Presentation Abstract

The BGP TTL Security Hack (BTSH)
Meeting: NANOG27
Date / Time: 2003-02-11 11:30am - 11:45am
Room: Anasazi Ballroom
Presenters: Speakers:

Dave Meyer, Sprint

David Meyer is currently Senior Scientist and Director of IP Technology Development at Sprint. He is also Director of the Advanced Network Technology Center at the University of Oregon. Prior to working at Sprint, Dave worked at Cisco, where he was involved in software development, working both on multicast and BGP. He is active in the IETF, where he chairs the MBONED and MSDP (Multicast Source Discovery Protocol) working groups, as well as being a member of several IETF directorates and IRTF research groups. Dave is a longtime member of the operator community, and is a member of the NANOG program committee. He is also active in other standards organizations, such as ANSI T1X1.
Abstract: In recent weeks and months, we have been seeing a large number of DoS attacks directed against port 179 (BGP). These attacks are enabled in part by the facts that (i). the TCP 4 tuple is easy to discover, and (ii). the attack doesn\'t require knowledge of the TCP sequence number. As a result, you don\'t have to directly compromise (\"own\") the attacked router to disable BGP processing.

The BGP TTL Security Hack (BTSH) is designed to protect the BGP (RFC1771) infrastructure from CPU-utilization based attacks. While BTSH is most effective in protecting directly connected BGP peers, it can also provide a lower level of protection to multi-hop sessions.

Draft authors: Vijay Gill, John Heasly, and Dave Meyer
Files: pdfDave Meyer Presentation(PDF)
youtubeThe BGP TTL Security Hack (BTSH)
Sponsors: None.

Back to NANOG27 agenda.

NANOG27 Abstracts

  • The Spread of the Sapphire/Slammer Worm
    Speakers:
    David MooreCAIDA & UCSD CSE; .
    Vern PaxsonICIR & LBNL; .
    Stefan SavageUCSD CSE; .
    Colleen ShannonCAIDA; .
    Stuart StanifordSilicon Defense; .
    Nicholas WeaverSilicon Defense & UC Berkeley EECS; .
  • The Spread of the Sapphire/Slammer Worm
    Speakers:
    David MooreCAIDA & UCSD CSE; .
    Vern PaxsonICIR & LBNL; .
    Stefan SavageUCSD CSE; .
    Colleen ShannonCAIDA; .
    Stuart StanifordSilicon Defense; .
    Nicholas WeaverSilicon Defense & UC Berkeley EECS; .
  • The Spread of the Sapphire/Slammer Worm
    Speakers:
    David MooreCAIDA & UCSD CSE; .
    Vern PaxsonICIR & LBNL; .
    Stefan SavageUCSD CSE; .
    Colleen ShannonCAIDA; .
    Stuart StanifordSilicon Defense; .
    Nicholas WeaverSilicon Defense & UC Berkeley EECS; .
  • The Spread of the Sapphire/Slammer Worm
    Speakers:
    David MooreCAIDA & UCSD CSE; .
    Vern PaxsonICIR & LBNL; .
    Stefan SavageUCSD CSE; .
    Colleen ShannonCAIDA; .
    Stuart StanifordSilicon Defense; .
    Nicholas WeaverSilicon Defense & UC Berkeley EECS; .
  • The Spread of the Sapphire/Slammer Worm
    Speakers:
    David MooreCAIDA & UCSD CSE; .
    Vern PaxsonICIR & LBNL; .
    Stefan SavageUCSD CSE; .
    Colleen ShannonCAIDA; .
    Stuart StanifordSilicon Defense; .
    Nicholas WeaverSilicon Defense & UC Berkeley EECS; .
  • The Spread of the Sapphire/Slammer Worm
    Speakers:
    David MooreCAIDA & UCSD CSE; .
    Vern PaxsonICIR & LBNL; .
    Stefan SavageUCSD CSE; .
    Colleen ShannonCAIDA; .
    Stuart StanifordSilicon Defense; .
    Nicholas WeaverSilicon Defense & UC Berkeley EECS; .

 

^ Back to Top