{"id":4333,"date":"2020-09-29T12:05:17","date_gmt":"2020-09-29T16:05:17","guid":{"rendered":"https:\/\/www.amlight.net\/?p=4333"},"modified":"2023-07-21T15:29:32","modified_gmt":"2023-07-21T19:29:32","slug":"global-experimentation-for-future-internet-gefi-2017-october-26-27-2-2-2-2-2-2-2-2-2-2-2-3-2","status":"publish","type":"post","link":"https:\/\/www.amlight.net\/?p=4333","title":{"rendered":"RNP joins the RPKI project, a worldwide network security project"},"content":{"rendered":"<div class=\"fusion-fullwidth fullwidth-box fusion-builder-row-1 hundred-percent-fullwidth non-hundred-percent-height-scrolling\" style=\"--awb-border-radius-top-left:0px;--awb-border-radius-top-right:0px;--awb-border-radius-bottom-right:0px;--awb-border-radius-bottom-left:0px;--awb-overflow:visible;--awb-flex-wrap:wrap;\" ><div class=\"fusion-builder-row fusion-row\"><div class=\"fusion-layout-column fusion_builder_column fusion-builder-column-0 fusion_builder_column_1_1 1_1 fusion-one-full fusion-column-first fusion-column-last fusion-column-no-min-height\" style=\"--awb-bg-size:cover;--awb-margin-bottom:0px;\"><div class=\"fusion-column-wrapper fusion-flex-column-wrapper-legacy\"><div class=\"fusion-text fusion-text-1\"><p>RNP reached an important milestone in network security, with the registration of all its 39 IP blocks in the RPKI (Resource Public Key Infrastructure) project.\u00a0RPKI is a resource certification system, which validates the source of IP routing advertisements and allows the user to avoid security attacks involving traffic capture, also known as\u00a0<em>hijacking<\/em>\u00a0.<\/p>\n<p>According to\u00a0<a href=\"https:\/\/rpki-monitor.antd.nist.gov\/?p=4&amp;s=0\">data from NIST<\/a>, the US National Institute for Standards and Technology, RNP is now included in the 32% of valid IP address prefixes in the Latin America and Caribbean region, managed by\u00a0the Latin America and Caribbean Network Information Center (<a href=\"https:\/\/www.lacnic.net\/\">LACNIC<\/a>).<\/p>\n<p>Being a part of the global RPKI infrastructure is considered the first step in raising the level of maturity of network security with regard to global validation, as this ensures protection of prefixes, since the other members, such as the major global providers, can block invalid prefixes.<\/p>\n<p><em>\u201cRPKI allows networks to advertise their own prefixes and validate prefixes from other networks\u201d, explains RNP Network specialist, Marcel Faria, responsible for the project.\u00a0<\/em><\/p>\n<p>In the case of RNP user organizations, their use of RNP prefixes provides an additional layer of protection against traffic hijacking attacks.<\/p>\n<p><strong><em>What are hijacking attacks and how to prevent them<\/em><\/strong><\/p>\n<p>In 2018, a hijacking attack gained worldwide notoriety for the traffic capture of an Amazon Web Services (AWS) DNS service called Route 53.\u00a0The attacker hijacked the IP blocks allocated to Amazon and diverted traffic to a malicious domain, for the theft of cryptocurrencies.<\/p>\n<p>The losses could have been greater had it not been for the prefix filters from\u00a0<a href=\"https:\/\/www.manrs.org\/\">MANRS<\/a>\u00a0(Mutually Agreed Norms for Routing Security), a global initiative for secure routing.\u00a0Supported by the\u00a0<a href=\"https:\/\/www.internetsociety.org\/\">Internet Society (ISOC)<\/a>\u00a0and a large number of providers worldwide, MANRS offers support to reduce the most common security threats in routing.<\/p>\n<p><a href=\"https:\/\/www.rnp.br\/noticias\/rnp-e-aceita-na-iniciativa-global-manrs-para-roteamento-seguro\">RNP was accepted as a network operator and follows the recommendations of MANRS<\/a>\u00a0in four sets of actions: filtering, anti-spoofing, coordination and global validation. This latter validation is provided by RPKI.<\/p>\n<p>To read this article on Portugues please <a href=\"https:\/\/www.rnp.br\/noticias\/rnp-entra-para-o-projeto-rpki-de-seguranca-de-redes-mundial\" target=\"_blank\" rel=\"noopener noreferrer\">click here<\/a>.<\/p>\n<\/div><div class=\"fusion-clearfix\"><\/div><\/div><\/div><\/div><\/div>\n","protected":false},"excerpt":{"rendered":"","protected":false},"author":1,"featured_media":3633,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6,51],"tags":[],"_links":{"self":[{"href":"https:\/\/www.amlight.net\/index.php?rest_route=\/wp\/v2\/posts\/4333"}],"collection":[{"href":"https:\/\/www.amlight.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.amlight.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.amlight.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.amlight.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4333"}],"version-history":[{"count":3,"href":"https:\/\/www.amlight.net\/index.php?rest_route=\/wp\/v2\/posts\/4333\/revisions"}],"predecessor-version":[{"id":5532,"href":"https:\/\/www.amlight.net\/index.php?rest_route=\/wp\/v2\/posts\/4333\/revisions\/5532"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.amlight.net\/index.php?rest_route=\/wp\/v2\/media\/3633"}],"wp:attachment":[{"href":"https:\/\/www.amlight.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4333"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.amlight.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=4333"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.amlight.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4333"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}