Hello all, NANOG 44 is now less than a week away. Here is the current program for the ISP Security BOF (NANOG 44, October 13, 2008, 4:30 PM - 6:00 PM) -- as always, the program at this point is still somewhat fluid and subject to change. ------------------------------------ 16:30 - 16:45: "Stealing the Internet" -- Anton Kapela In "Stealing the Internet" Kapela will describe a method where an attacker exploits the BGP routing system to facilitate transparent interception of IP packets. The method will be shown to function at a scale previously thought by many as unavailable. The talk highlights a new twist in sub-prefix hijacking that he demonstrated at Defcon 16: using intrinsic BGP logic to hijack network traffic and simultaneously create a 'bgp shunt towards the target network. This method will be shown to preserve end-to-end reachability while creating a virtual 'wire tap' at the attackers network. He'll cover additive TTL modification and transparent-origin-AS as a means for the attacker to obscure the interception. There will not be a live demonstration of the hijack or interception methods. -------------------------------------- 16:45 - 17:00: "An interim solution to the threat of DNS cache poisoning while waiting for DNSSEC". -- Rodney Joffe -------------------------------------- 17:00 - 17:15: "Next steps in IRR/X509" --Barry Raveendran Greene, Jason Schiller. ------------------------------------- 17:15 - 17:30: "Esthost's response to the 'Hostexploit report'" -- Konstantin Poltev (Esthost, Inc). We are still waiting for the official title / abstract for this talk, so this is a temporary title.... ------------------------------------ 17:30 - 17:45: "Early Survey Results and Some Attack Statistics" -- Danny McPherson. ------------------------------------- There are 15 minutes left over at the end of the agenda as I'm sure some talks will run over their alloted time. Hopefully this agenda is interesting and you are looking forward to the BOF.... See you there, W