trust in anarchy? · rpki trust anchor(s) rpki security and governance dns? trust vs. assurance...
TRANSCRIPT
![Page 1: Trust in Anarchy? · RPKI Trust Anchor(s) RPKI Security and Governance DNS? Trust vs. Assurance Structures Host Names BGP. Author: Ashwin Mathew Created Date: 11/2/2011 10:30:43 AM](https://reader036.vdocuments.us/reader036/viewer/2022081613/5fbcbbd72d98441ccb1bb343/html5/thumbnails/1.jpg)
Trust in Anarchy?Problems in the Governance of Distributed Computing Systems
Ashwin J. [email protected]
School of InformationUC Berkeley
![Page 2: Trust in Anarchy? · RPKI Trust Anchor(s) RPKI Security and Governance DNS? Trust vs. Assurance Structures Host Names BGP. Author: Ashwin Mathew Created Date: 11/2/2011 10:30:43 AM](https://reader036.vdocuments.us/reader036/viewer/2022081613/5fbcbbd72d98441ccb1bb343/html5/thumbnails/2.jpg)
Hosts → DNS : Decentralization?
NSFNET NICHosts file
DNSRoot
![Page 3: Trust in Anarchy? · RPKI Trust Anchor(s) RPKI Security and Governance DNS? Trust vs. Assurance Structures Host Names BGP. Author: Ashwin Mathew Created Date: 11/2/2011 10:30:43 AM](https://reader036.vdocuments.us/reader036/viewer/2022081613/5fbcbbd72d98441ccb1bb343/html5/thumbnails/3.jpg)
YouTube Goes to Pakistan
~ 2 hours on 24th February 2008
![Page 4: Trust in Anarchy? · RPKI Trust Anchor(s) RPKI Security and Governance DNS? Trust vs. Assurance Structures Host Names BGP. Author: Ashwin Mathew Created Date: 11/2/2011 10:30:43 AM](https://reader036.vdocuments.us/reader036/viewer/2022081613/5fbcbbd72d98441ccb1bb343/html5/thumbnails/4.jpg)
BGP: Inter-Domain Routing
AT&TAS7132
CENICAS2152
UC BerkeleyAS25
YouTubeAS15169
I am YouTubeThese are my IP addresses
I am AT&TI can carry your traffic to YouTube
These are YouTube's IP addresses
I am CENICAT&T told me it can get to YouTubeI can carry your traffic to YouTube
through AT&TThese are YouTube's IP addresses
● Routing Claims
● Identity Claims
● Resource Claims
● No Warrants
![Page 5: Trust in Anarchy? · RPKI Trust Anchor(s) RPKI Security and Governance DNS? Trust vs. Assurance Structures Host Names BGP. Author: Ashwin Mathew Created Date: 11/2/2011 10:30:43 AM](https://reader036.vdocuments.us/reader036/viewer/2022081613/5fbcbbd72d98441ccb1bb343/html5/thumbnails/5.jpg)
● ~39,000 autonomous systems
● ~380,000 prefixes
![Page 6: Trust in Anarchy? · RPKI Trust Anchor(s) RPKI Security and Governance DNS? Trust vs. Assurance Structures Host Names BGP. Author: Ashwin Mathew Created Date: 11/2/2011 10:30:43 AM](https://reader036.vdocuments.us/reader036/viewer/2022081613/5fbcbbd72d98441ccb1bb343/html5/thumbnails/6.jpg)
Trust Models
A BRisk, Uncertainty
Problem
Solution:AssuranceStructure
Solution:Trust
Relation
A BRisk, Uncertainty
Trust
A BRisk, Uncertainty
AssuranceStructure ConfidenceConfidence
![Page 7: Trust in Anarchy? · RPKI Trust Anchor(s) RPKI Security and Governance DNS? Trust vs. Assurance Structures Host Names BGP. Author: Ashwin Mathew Created Date: 11/2/2011 10:30:43 AM](https://reader036.vdocuments.us/reader036/viewer/2022081613/5fbcbbd72d98441ccb1bb343/html5/thumbnails/7.jpg)
Trust in Networks
TrustRelations:Reputation
AssuranceStructure
TrustAnchor
GeneralizedTrust
![Page 8: Trust in Anarchy? · RPKI Trust Anchor(s) RPKI Security and Governance DNS? Trust vs. Assurance Structures Host Names BGP. Author: Ashwin Mathew Created Date: 11/2/2011 10:30:43 AM](https://reader036.vdocuments.us/reader036/viewer/2022081613/5fbcbbd72d98441ccb1bb343/html5/thumbnails/8.jpg)
NSFNET
![Page 9: Trust in Anarchy? · RPKI Trust Anchor(s) RPKI Security and Governance DNS? Trust vs. Assurance Structures Host Names BGP. Author: Ashwin Mathew Created Date: 11/2/2011 10:30:43 AM](https://reader036.vdocuments.us/reader036/viewer/2022081613/5fbcbbd72d98441ccb1bb343/html5/thumbnails/9.jpg)
From NSFNET to Internet
Tier 1
Tier 1
Tier 1
Tier 2 Tier 2
StubStub Stub
RouteArbiter
“... to establish and maintain databases and routing services which may be used by attached networks to obtain routing information ...
... will provide for an unbiased routing scheme which will be available (but not mandatory) for all attached networks.”
- 1993 NSF solicitation
![Page 10: Trust in Anarchy? · RPKI Trust Anchor(s) RPKI Security and Governance DNS? Trust vs. Assurance Structures Host Names BGP. Author: Ashwin Mathew Created Date: 11/2/2011 10:30:43 AM](https://reader036.vdocuments.us/reader036/viewer/2022081613/5fbcbbd72d98441ccb1bb343/html5/thumbnails/10.jpg)
Trust and Distrust: BCP38
Tier 1
Tier 1
Tier 1
Tier 2 Tier 2Tier 2
StubStub Stub
StubStub
Trusted Core
Filters
![Page 11: Trust in Anarchy? · RPKI Trust Anchor(s) RPKI Security and Governance DNS? Trust vs. Assurance Structures Host Names BGP. Author: Ashwin Mathew Created Date: 11/2/2011 10:30:43 AM](https://reader036.vdocuments.us/reader036/viewer/2022081613/5fbcbbd72d98441ccb1bb343/html5/thumbnails/11.jpg)
Network Topologies, Network Communities
Tier 1Tier 1
Tier 1
Tier 2 Tier 2 Tier 2
StubStub
Stub Stub Stub
APRICOTRIPE
NANOG
SANOG
AfNOG MENOG Social Organization
Technical/Commercial Organization
![Page 12: Trust in Anarchy? · RPKI Trust Anchor(s) RPKI Security and Governance DNS? Trust vs. Assurance Structures Host Names BGP. Author: Ashwin Mathew Created Date: 11/2/2011 10:30:43 AM](https://reader036.vdocuments.us/reader036/viewer/2022081613/5fbcbbd72d98441ccb1bb343/html5/thumbnails/12.jpg)
Tier 1
Securing BGP: Trustworthy Computing?
Tier 1
Tier 1
Tier 2 Tier 2
StubStub Stub
RPKITrust Anchor(s)
![Page 13: Trust in Anarchy? · RPKI Trust Anchor(s) RPKI Security and Governance DNS? Trust vs. Assurance Structures Host Names BGP. Author: Ashwin Mathew Created Date: 11/2/2011 10:30:43 AM](https://reader036.vdocuments.us/reader036/viewer/2022081613/5fbcbbd72d98441ccb1bb343/html5/thumbnails/13.jpg)
RPKI
Security and Governance
DNS
?Trust vs. Assurance Structures
Host Names
BGP