Cyber Security Seminar by Dr. Yury Zhauniarovich

Place for max. 10 people or please join through zoom:
https://tudelft.zoom.us/j/93189540160?pwd=UDZ6MENadXpzMW5kQ1ZHMzI0VEVydz09
Meeting ID: 931 8954 0160
Passcode: 909702

Measuring the Adoption of an Internet-wide BGP RTBH Service

Distributed denial of service (DDoS) attacks continue to threaten the availability of Internet-based services. UTRS (Unwanted Traffic Removal Service), being one of the oldest community-based anti-DDoS services, has become a global free collaborative service that aims at mitigating major DDoS attacks through the Border Gateway Protocol (BGP). Once the BGP session with UTRS is established, UTRS members can advertise part of the prefixes belonging to their AS to UTRS. UTRS will forward them to all other participants, who, in turn, should start blocking traffic to the advertised IP addresses.

In this work, we present the first Internet-wide investigation of participation in UTRS as a popular DDoS mitigation technique based on RTBH. We designed a methodology for inferring UTRS participation based on active measurements, allowing any UTRS participant to identify who are the other participants. Our analysis shows that at least 550 networks worldwide actively participate in this RTBH community service to protect their customers and peers. UTRS participants’ characteristics show that both large and small networks can benefit from this service.
This heterogeneity of participants is also proved by the different sectors in which the participants operate, ranging from education to construction and real estate.

 

Short Bio of presenter

Dr. Yury Zhauniarovich (https://zhauniarovich.com) is an Assistant Professor in Cybersecurity at the Technology, Policy and Management (https://tudelft.nl/tbm) faculty at the Delft University of Technology.
Previously, he worked both in the industry as an R&D Engineer at Vertx (https://vertx.ai), a Lead Data Scientist at AI Superior (https://aisuperior.com/), and a Head of R&D at Perfect Equanimity; and in academia as a Scientist at Qatar Computing Research Institute
(https://hbku.edu.qa/en/about-qcri) and a Postdoc at the University of Trento (https://unitn.it/). In April 2014, Yury received his PhD degree in Computer Security from the University of Trento working under the guidance of Prof. Bruno Crispo (https://disi.unitn.it/~crispo/).

Yury's research interests include design, implementation and evaluation of security enhancements of Android operating systems, mobile applications security and mobile malware. In addition to that, he is also interested in companies' security posture evaluation, DDoS attacks analysis, network measurements, state censorship, malicious domains detection and applied blockchain data analysis.