|
|
|
|
| Author |
|
|
Registered
|
china swallows the interwebs
and doesn't even burp
How China swallowed 15% of 'Net traffic for 18 minutes In a 300+ page report (PDF) today, the US-China Economic and Security Review Commission provided the US Congress with a detailed overview of what's been happening in China—including a curious incident in which 15 percent of the world's Internet traffic suddenly passed through Chinese servers on the way to its destination. Here's how the Commission describes the incident, which took place earlier this year: For about 18 minutes on April 8, 2010, China Telecom advertised erroneous network traffic routes that instructed US and other foreign Internet traffic to travel through Chinese servers. Other servers around the world quickly adopted these paths, routing all traffic to about 15 percent of the Internet’s destinations through servers located in China. This incident affected traffic to and from US government (‘‘.gov’’) and military (‘‘.mil’’) sites, including those for the Senate, the army, the navy, the marine corps, the air force, the office of secretary of Defense, the National Aeronautics and Space Administration, the Department of Commerce, the National Oceanic and Atmospheric Administration, and many others. Certain commercial websites were also affected, such as those for Dell, Yahoo!, Microsoft, and IBM. The culprit here was "IP hijacking," a well-known routing problem in a worldwide system based largely on trust. Routers rely on the Border Gateway Protocol (BGP) to puzzle out the best route between two IP addresses; when one party advertises incorrect routing information, routers across the globe can be convinced to send traffic on geographically absurd paths. This happened famously in 2008, when Pakistan blocked YouTube. The block was meant only for internal use, and it relied on new routing information that would send YouTube requests not to the company's servers but into a "black hole." As we described the situation at the time, "this routing information escaped from Pakistan Telecom to its ISP PCCW in Hong Kong, which propagated the route to the rest of the world. So any packets for YouTube would end up in Pakistan Telecom's black hole instead." The mistake broke YouTube access from across much of the Internet. The China situation appears to have a similar cause. The mistaken routing information came from IDC China Telecommunications, and it was then picked up by the huge China Telecom. As other routers around the world accepted the new information, they began funneling huge amounts of US traffic through Chinese servers, for 18 minutes. As with many things involving cyberattacks and Internet security, it's hard to know if anything bad happened here. The entire thing could have been a simple mistake. Besides, Internet traffic isn't secure and already passes through many servers outside of one's control. Content that is sensitive but still suitable for the public Internet should be encrypted. Still, the Commission points out the many possible problems that such an IP hijack could cause. Although the Commission has no way to determine what, if anything, Chinese telecommunications firms did to the hijacked data, incidents of this nature could have a number of serious implications. This level of access could enable surveillance of specific users or sites. It could disrupt a data transaction and prevent a user from establishing a connection with a site. It could even allow a diversion of data to somewhere that the user did not intend (for example, to a ‘‘spoofed’’ site). Arbor Networks Chief Security Officer Danny McPherson has explained that the volume of affected data here could have been intended to conceal one targeted attack. What about encryption? Perhaps most disconcertingly, as a result of the diffusion of Internet security certification authorities, control over diverted data could possibly allow a telecommunications firm to compromise the integrity of supposedly secure encrypted sessions. The proliferation of certification authorities means that "untrustworthy" certification authorities are much harder to police, and there's speculation now that governments are involved in getting access to certificates in order to break encryption. China has openly sought all sorts of encryption information for years, including the source code for routers, network intrusion systems, and firewalls. Those rules went into effect in May 2010, and they require foreign firms to submit this information to Chinese authorities before the government will purchase any such products. But because the government review panels contain employees of rival Chinese firms, and because providing this information could make a company's worldwide products more susceptible to Chinese hacking or cyberattacks (which would in turn kill sales of said products in most countries), the Commission notes that no foreign firm has yet submitted to the new scheme. |
||
11-17-2010, 12:40 PM
|
|
|
Registered
Join Date: Oct 2003
Location: Mount Pleasant, South Carolina
Posts: 14,220
|
I started reading a book (Cyber Wars) recently about China among others doing this exact thing in a time of war or pre-war.
It's pretty scary what China, others (and ourselves) can do. |
||
|
11-17-2010, 05:34 PM
|
|
|
unindicted co-conspirator
Join Date: Jul 2007
Location: Fresno, CA
Posts: 1,660
|
see, i told you Pelican BBS was running slow
__________________
'03 996 - sport exhaust, sport seats, M030 sport suspension, stability control, IMS Solution ‘86 928S3 - barn find project car |
||
|
11-17-2010, 05:35 PM
|
|
|
Navin Johnson
Join Date: Mar 2002
Location: Wantagh, NY
Posts: 8,800
|
I have spent six weeks in China this year, and am going back and staying all of January..
The web restrictions are many.... facebook, myspace... You could not access... my bank, my companies intranet, no access... other requests equal re-directs..
__________________
Don't feed the trolls. Don't quote the trolls  http://www.southshoreperformanceny.com '69 911 GT-5 '75 914 GT-3 and others |
||
|
11-17-2010, 05:39 PM
|
|
|
Registered
|
The rank and file Chinese know perfectly well how to bypass the great firewall of China. They do it with text messaging and all of them have more than one cell phone.
__________________
2022 BMW 530i 2021 MB GLA250 2020 BMW R1250GS |
||
|
11-17-2010, 05:59 PM
|
|
|
You do not have permissi
Join Date: Aug 2001
Location: midwest
Posts: 39,908
|
(This is all fine with me. Only terrrorists try to bypass complete and centralized governmental control.)
|
||
|
11-18-2010, 12:43 PM
|
|
|
|
You do not have permissi
Join Date: Aug 2001
Location: midwest
Posts: 39,908
|
(It shouldn't matter if Facebook, Oracle, or other companies have control over my internet, e-mail, and bank accounts)
|
||
|
11-18-2010, 12:51 PM
|
|
|
Frosty the A.I.
Join Date: Mar 2009
Location: Redmond, WA
Posts: 113
|
The chances of being "accidental" are pretty slim, at least for me. I just don't trust China.
|
||
|
11-18-2010, 01:50 PM
|
|
|
Registered
Join Date: Jun 2003
Location: Calgary Alberta, CANADA
Posts: 2,113
|
Yeah right... "accidental", they're trying their cyber attack techniques and sucking all traffic to discover what sites are not encrypted and crypted and work on that.. those 18 minutes gave them everything they could've dreamed of getting..
One of these days all countries will be China's b!tches... (keep feeding them money!)
__________________
We're all in the gutter,but some of us are looking at the stars. -Oscar Wilde |
||
|
11-18-2010, 06:25 PM
|
|
1979 Porsche 911SC 3.0
Only Porsche
Only bike
