A framework to differentiate erroneous ROAs from prefix hijacks. It enables network operators to avoid blocking legitimate traffic and keep preventing prefix hijacking attacks.
As part of our research at Fraunhofer Institute for Secure Information Technology we develop the smart Route Origin Validator (smartROV) to enjoy security benefits of RPKI without the concerns of legitimate traffic loss due to erroneous or outdated ROAs. smartROV employs heuristics to detect ROA errors.
To simplify and speed up the ROV adoption process and bring the benefits of RPKI to network operators we set up a global service, we call Routing Sentry (ROSE), based on smartROV, which identifies misconfigurations and then notifies the relevant ASes of the errors with recommendations for mitigations.
You can contact us via email@example.com.
The chart shows current number of routes in DFZ divided into classes based on ROV status of each route. The routes that fall into one of Invalid classes could suffer from path degradation or lower visibility due to partial filtering. Once ROV becomes a norm these routes will not propagate at all.
Invalid (but) Harmless class consists of routes that could be filtered out by ROV, but for each of them there is another valid route with the same origin and path that covers the blocked IP space.
The chart shows current number of ROV validation conflicts divided into types.
The chart shows history of ROV validation result classes (history of P/O resolutions chart).
The chart shows history of ROV validation result classes for conflicts (history of conflict types chart).
The chart shows history of the ROSE conflict resolutions.
The chart shows distribution (histogram) of ROV conflicting route announcement duration. Bins contain number of ROV conflicting routes that falls within the time frame of the bin.
The chart shows distribution (CDF) of ROV conflicting route announcement duration in days.
The chart shows current number of ROV conflicting routes in DFZ divided into classes based on ROSE classifier resolution. The classifier sets a cut-off duration. Conflicting routes that are visible for longer period than the cut-off are whitelisted.