Tech Companies Endorse MANRS Routing Security Actions Thumbnail
Mutually Agreed Norms for Routing Security (MANRS) 9 August 2018

Tech Companies Endorse MANRS Routing Security Actions

Grant Gross
By Grant GrossGuest AuthorTechnology Reporter

A coalition of more than 40 companies focused on protecting online users has endorsed a global community initiative, coordinated by the Internet Society, to improve the security of the Internet’s routing system.

The Cybersecurity Tech Accord, whose members include Facebook, Microsoft, Oracle, and Hewlett Packard Enterprise, will support the Mutually Agreed Norms for Routing Security (MANRS) initiative.

The goal of MANRS is to ensure a secure and resilient Internet by protecting its routing infrastructure. In 2017 alone, more than 14,000 routing outages or attacks – such as hijacking, leaks, or spoofing – resulted in stolen data, lost revenue, and reputational damage.

“The new endorsement is a good first step,” said Salam Yamout, Internet Society Lead for the MANRS initiative.

“It is not enough to talk about routing security; it is time for action,” Yamout added. “Because the Internet’s routing system was built on the principles of collaboration and shared responsibility, this endorsement from the Cybersecurity Tech Accord and our new partnership is a major step forward. It clearly reflects the will of industry to be proactive in implementing safe routing practices.”

MANRS focuses on four defensive actions that can reduce the most common routing threats:

  • Filtering, to help combat the propagation of incorrect routing information and to ensure the correct operator and customer routing announcements to adjacent networks
  • Anti-spoofing, a measure allowing network operators to validate source addresses, with the goal of preventing packets with an incorrect source IP address from entering and leaving the network
  • Coordination, to ensure that network operators maintain globally accessible up-to-date contact information in common routing databases
  • Global validation, to encourage network operators to publish their routing data, so others can validate routing information on a global scale

The Cybersecurity Tech Accord called MANRS a “fantastic example” of a partnership working toward the common good of a more secure online environment. Signatories “strongly believe that a more robust and secure global routing infrastructure demands shared responsibility and coordinated actions from the community of security-minded organizations,” said Tech Accord.

Two of Tech Accord’s signatories – KPN and Swisscom – already participate in the MANRS initiative, and many others are considering steps to become more involved, the group said.

Cybersecurity Tech Accord and MANRS have also established a working group to investigate how companies beyond network operators and IXPs can contribute to routing security.

Watch the video to learn more about MANRS, read MANRS Actions for Network Operators, and join today!

 

Disclaimer: Viewpoints expressed in this post are those of the author and may or may not reflect official Internet Society positions.

Related Posts

Strengthening the Internet 6 September 2024

US Government Networks Get a Security Boost: White House Roadmap Tackles Routing Vulnerabilities

The White House's Roadmap to Enhancing Routing Security is an important step toward strengthening routing security in the United...

Strengthening the Internet 14 May 2024

The US Makes a Big Step Toward Better Routing Security

The US Department of Commerce began implementing better routing security practices—a step in the right direction for wider MANRS...

Securing Border Gateway Protocol (BGP) 18 April 2024

The US FCC Signals a Dangerous New Course on BGP Security

The US Federal Communications Commission recently released a draft Declaratory Ruling and Order in the Open Internet Proceeding. However,...