BoF (Birds of a Feather)

Tuesday, 9 May 18:00 - 19:00

RACI aims to increase ties between the RIPE community and the academic/research sector. The RIPE NCC selected eight academics to attend the RIPE 74 Meeting and present their Internet-related research to, and receive feedback from, the community. At this session, those academics who have not presented in the main RIPE Meeting program will present and discuss their research.

Where: Main Room
  • Systems Anonymization of Network Traces Using Differential Privacy
    Ahmed AlEroud, Yarmouk University, Jordan
  
  • Entropy/IP: Uncovering Structure in IPv6 Addresses
    Pawel Foremski, Polish Academy of Sciences, Poland
 
 

  • Anomaly Detection on DNS Auths (DNS Measurements Hackathon)
    Wouter de Vries, University of Twente

 
 

Tuesday, 9 May 18:00 - 19:00

Security BoF: On the Linkage Between Device and Infrastructure
Marco Hogewoning, RIPE NCC

Whatever the definition of the Internet of Things is, one thing is for sure: the number of devices connected to the Internet is constantly growing. Even the traditional access markets continue to expand their number of end users and, importantly, the bandwidth available to them.

As a follow-up to the RIPE 73 Internet of Things (IoT) BoF, we plan to explore the effects of this ever-expanding network in terms of infrastructure stability and security. Botnets, including the ones made up from relatively dumb devices such as the Mirai botnet, pose a substantial threat to the very infrastructure those devices depend on for their connectivity.

Not only does the phenomenal growth in the number of poorly maintained devices increase the attack surface, but with more bandwidth available to them, the threat becomes even bigger.

Can we prevent the Internet from collapsing under its own weight? Aside from the ongoing discussions on the need to secure these devices, with options ranging from capacity building to regulation, this BoF will explore the role of access providers in the ecosystem. As the natural gatekeepers between the local networks and the global infrastructure, what are their options to protect their own and other networks from these attacks?

This BoF will tackle the following questions:
  • Is there a role for the access provider in controlling/limiting access of compromised devices to the infrastructure?
  • Are there technical means to detect and contain devices that form a potential threat?
  • Would it be feasible to limit connectivity for such unsafe devices? Are there feasible alternative means to mitigate the threat that these compromised devices form to our systems?
Where: Tutorial Room
 
 

Thursday, 11 May 18:00 - 19:00

OpenBMP Project Overview
Randy Bush, Internet Initiative Japan

Where: Main Room

What is BMP? If you try to collect BGP routes from your routers using iBGP or even eBGP, they only tell you their best routes. With BMP, the BGP Monitoring Protocol, they give you all the routes they have heard; so you know what they see. Consider how helpful this is when monitoring a peering router.

Consider an open source BMP collector which your edge routers feed; you get a view outward from your edge, not just what your edge thought were the best paths. Also, consider one or more public BMP collectors a la RIS and Route Views, where you can see other ISPs' external views not just their best paths.

The OpenBMP project, a Cisco / Linux Foundation cooperation, provides an open source public BMP collector which some large ISPs are starting to feed. In addition, it provides an open source rich GUI tool set to visualise peerings, RPKI & IRR conflicts, BGP flapping, etc.

There will be a demo, and we hope you can play with the web-based GUI on your laptops. Also we will discuss two proposals to enhance BMP now in the IETF as well as the state of router vendor implementations.

We will show examples of router configurations to export BMP to collectors, and we strongly encourage you to export to the OpenBMP project collector.

 

 
 

Thursday, 11 May 18:00 - 19:00

Regional BoF
Alexander Isavnin

This BoF is for RIPE community members that come from regions where the local Internet community isn't as well developed as those in Western Europe. There are MENOG, ENOG and SEE meetings for these parts of the community. What's next for these regions? How can the developed part of the RIPE community and the RIPE NCC help to improve the development of those communities and fully integrate into the RIPE community?

Where: Side Room