The Internet’s foundation has cracks, and they’re growing. Every single day, dozens of incidents affect the Internet's routing system, which can lead to DDoS attacks, traffic inspection, lost revenue, reputational damage, and more.
Mutually Agreed Norms for Routing Security, or MANRS, encourages network operators, Internet Exchange Points (IXPs), Cloud Providers, and Content Delivery Networks (CDNs) to adopt routing best practices in order to mitigate these issues and improve the security and resilience of the Internet.
Routing Basics and Security Issues
The Internet is made up of thousands of independently controlled, interconnected networks called Autonomous Systems (ASes). Networks connect to each other using Border Gateway Protocol (BGP), which directs traffic across the Internet. Networks use BGP to exchange “reachability information” – networks they know how to get to - to facilitate forwarding packets of information from router to router, typically using the most optimal path.
The problem is that BGP was designed before security was a consideration, and is entirely based on unverified trust between networks - namely that an AS will only advertise address space it legitimately holds, only announce routes that it can actually reach, and only send packets with correct source IP addresses.
Routing Incidents Have Real World Consequences
Unfortunately, today’s Internet is constantly under attack from criminals, activists, and state-level actors seeking opportunities to steal data, impose censorship, undertake espionage, conduct cyberwarfare, and otherwise cause disruption.
Because BGP has no built-in security mechanisms, it is both easy and common for ASes to announce incorrect information (whether accidentally or maliciously), and/or to send packets with forged (or "spoofed") IP source addresses. This can lead to large-scale Distributed Denial-of-Service (DDoS) attacks, service disruption, and traffic interception, redirection, or modification, which all pose significant and substantial security risks.
Routing incidents are increasing as more networks have joined the Internet, often with inexperienced staff, and as bad actors have learned to exploit BGP’s limitations.
See the to learn more about types of routing incidents and real-world examples.
How MANRS Can Help
Mutually Agreed Norms for Routing Security (MANRS) is a global initiative, supported by the Internet Society, that provides crucial fixes to reduce the most common routing threats. Network operators are taking collective responsibility for the resilience and security of a critical part of the Internet infrastructure by agreeing to implement four simple actions:
How You Can Help
The MANRS Actions are well-established industry best practices, and are designed to be low-cost and non-controversial. However, many network operators still have not implemented them, and most enterprises have not yet fully realized the need to demand enhanced routing security. You can help in two ways:
As more networks adopt the MANRS Actions, it will become easier to identify these bad actors, and ultimately restrict or even completely drop traffic from those networks. Downtime costs money, and users need confidence that their data is safe and secure.
There’s over 3,500 networks in the SAMENA region, but just 17 are currently participating in the MANRS initiative with Bangladesh having the highest number of MANRS conformant networks with 6. Nevertheless, networks in the region already show high levels of conformance with the MANRS Actions and we would therefore encourage them to lead by example by publicly demonstrating their commitment to routing security.
Connectivity and the Rise of Innovation
Accelerating Fiber & IPv6+ Deployment to Catalyze New Business and GDP Growth
October 20 | Dubai UAE
Oct. 13-14 | Dubai UAE
Digital Economy Report 2021
Cross-Border Data Flows And Development: For Whom The Data Flow
The State of Broadband 2021:
People-Centred Approaches for Universal Broadband
21st Century Financing Models for Bridging Broadband Connectivity Gaps
“SAMENA Accelerator – UBBF” Calls for Action to Achieve Ultra Broadband Policy Enablement and to Timely Address Challenges Facing Fiber Deployment and IPv6 Migration in the Region
SAMENA Council Identifies Two-Pronged Challenge of Expediting 5G Development and Connecting the Still Un-connected...
UN Broadband Commission Releases Key 21st Century Recommendations to Finance Sustainable Broadband Development and Closure of the Digital Divide in the 21st Century
8th April 2021
“Championing Digital Economic Growth from Policy to Reality”
TRA Bahrain - Draft Position Paper on "the transfer of OLD fiber assets to the Bahrain National Broadband Network”
CITC - Public Consultation on “Digital Content Platform Regulations Document”
TRA Bahrain - Public Consultation on “Amendments to the Consumer Protection Regulation”
SAMENA Council CEO Bocar BA shares insights with CNBC on industry trends, needs and issues in view of expanding Digital Economy
Recognized increase of internet traffic by 740% and circuit’s voice by 800% during the stc Formula 1 Saudi Grand Prix and 67% of audience from Europe, America & Japan
Huawei’s smart railway solution and connectivity support new China-Laos high-speed train