Language Selection

English French German Italian Portuguese Spanish

ISPs join to 'fingerprint' Internet attacks

Filed under
Security
Web

Leading global telecommunications companies, Internet service providers and network operators will begin sharing information on Internet attacks as members of a new group called the Fingerprint Sharing Alliance, according to a published statement from the new group.

The companies, including EarthLink Inc., Asia Netcom, British Telecommunications PLC and MCI Inc., will share detailed profile information on attacks launched against their networks. Information to be shared will include the sources of attacks. The alliance will make it easier for service providers and network operators to crack down on global Internet attacks more quickly, according to Tom Schuster, president of Lexington, Mass.-based Arbor Networks Inc., which launched the new alliance.

The Fingerprint Sharing Alliance uses technology from Arbor called Peakflow to spot network attacks and automatically generate a profile, or "fingerprint," of the attack in a standard data file format called PCAP. That fingerprint information is passed along to other service providers closer to the source of the attack, which can then block the source of the traffic, Schuster said.

Arbor wrapped features that support the Fingerprint Sharing Alliance into the last release of Peakflow, which came out earlier this year. Alliance members have been using Peakflow to share attack fingerprints since then, Schuster said.

The alliance replaces an ad hoc system of e-mail messages and phone calls that operators of large networks have used to coordinate their response to attacks and threats, Arbor said. Because communication has been cumbersome, ISPs and network owners have had no incentive to share attack information.

The alliance will make it easier for them to cooperate and will lower the threshold that attacks must surpass to get the attention of ISPs. Even attacks on small ISP customers will prompt a response from large infrastructure providers. Peakflow also scrubs the data in fingerprints so alliance members can't use them to sniff sensitive information on competitors, according to Schuster.

"People are realizing that the world is a connected place. We have to empower service providers at the point of origin to have zero tolerance," he said.

Cracking down on those behind even small attacks may also improve the overall health of the Internet and quell raging problems such as "botnets" of zombie computers that are used in large-scale attacks, according to Schuster.

Membership in the alliance is not limited to Arbor customers or Peakflow users. Network owners that are not Arbor customers can generate their own fingerprints and accept PCAP-format fingerprints generated by Alliance members. However, Arbor's technology "speeds up the process considerably" by automatically creating and distributing the fingerprints.

All current members of the alliance are Peakflow customers, and the company's roster of global ISPs gives the program bite, Schuster said.

The alliance is a first step in addressing the problem of Internet attacks. Arbor hopes that the participation of leading service providers will compel competitors, as well as smaller network owners, to take part as well.

By Paul Roberts, IDG News Service.

More in Tux Machines

Wine 2.0

  • Wine Announcement
    The Wine team is proud to announce that the stable release Wine 2.0 is now available.
  • Wine 2.0 is now officially available
    I just got the announce email from the Wine team that Wine 2.0 is now officially available. It's an absolutely massive release! For those sticking with development builds, you obviously won't really see a difference, but for those sticking to stable releases it's huge.
  • Wine 2.0 Makes Its Debut
    Wine 2.0 is now officially available. Wine 2.0 is the first release from WineHQ under their new time-based (annual) release cadence, following the Wine 1.9 development series. Wine 2.0 has many new features including GStreamer 1.0 support, Direct3D 9/11 improvements, X11 improvements, Direct2D enhancements, better support for many different Windows games, support for Microsoft Office 2013, and thousands of other changes in total.
  • Wine 2.0 Released, Supports Microsoft Office 2013
    A brand new stable release of Wine, the Windows compatibility programme, is now available to download. Wine 2.0 — yes, 2.0 — follows more than a year of development effort and marks the start of a new timed-based release cadence.

BlankOn Linux explained

Hi guys, welcome to the 15th segment of "Introduction with Linux Distro". We have made quite a few introductions from the start of this website, every segment has something unique to itself. So this time we will be having a Linux distribution which have pure philosophy and creativity, as our guest. Let's get to know more about BlankOn Linux. Read more

today's leftovers

FOSS in the European Union

  • Competition authorities first to implement DMS services
    The DRS are published as open source software using the European Union’s open source software licence EUPL, and are available on Joinup. The software provides connectors for most commonly-used document management systems, and includes scripts to create a database to implement the connecting web services.
  • Czech Republic is at the forefront of an open data international project
    With the beginning of the new year, an international project “Open crowdsourcing data related to the quality of service of high-speed Internet” was launched, which aims to encourage the development of open data in the user’s measurement of high-speed Internet.