Project description
Advanced tool to detect network threats
The constant, effective and safe routing of data is essential to secure integral functionality of the internet. The exchange of information is facilitated by the border gateway protocol (BGP) that manages the routing of data. However, BGP does not eliminate threats of hijacking attacks – be it hackers or a misconfiguration permitting the spread of fraudulent or false information to the BGP routers of other networks. The effectiveness of existing protective services is limited and insufficient. The EU-funded RAVEN project proposes an advanced tool that detects threats for networks and consequently counters and reduces these attacks. The project will develop a proof of concept for a BGP hijacking vulnerability assessment service using accurate simulations and realistic emulations.
Objective
The Internet is a critical infrastructure that is composed of The Internet is a critical infrastructure that is composed of tens of thousands of networks and is required to work reliably 24/7. An integral functionality to achieve this is stable, efficient and secure routing of data traffic across several network domains. The current inter-domain routing protocol, BGP, facilitates the exchange of control-plane information (i.e. reachability of Internet resources over network paths) in a scalable and expressive manner; however, the lack of inherent security (e.g. authentication) mechanisms in its design frequently results in routing attacks. We focus on BGP prefix hijacking attacks, where a network, either due to malicious intent or because of a misconfiguration, advertises fraudulent/invalid information to the BGP routers of other networks; this information is propagated to the entire Internet, eventually leading to traffic being directed to invalid destinations (ending up dropped or intercepted and manipulated). Available proactive defenses are typically limited and inefficient. In our previous work, we have developed an advanced production-grade detection and mitigation tool that works reactively to counter these attacks. However, in practice, network operators cannot even measure how exposed their networks are to hijacking attempts, as well as their potential impact. In this project, we address exactly this need and aim to build a Proof of Concept (PoC) of a BGP hijacking vulnerability assessment service employing real-world experimentation, accurate simulations and realistic emulations. We aim to evaluate this PoC on at least two real networks, and refine its design using feedback from its future users, i.e. the network operators. We further plan to investigate key challenges towards the commercialization of such a service, namely estimating the costs for rolling out a global peering infrastructure that is needed, and defining the associated product offering.
Fields of science (EuroSciVoc)
CORDIS classifies projects with EuroSciVoc, a multilingual taxonomy of fields of science, through a semi-automatic process based on NLP techniques. See: The European Science Vocabulary.
CORDIS classifies projects with EuroSciVoc, a multilingual taxonomy of fields of science, through a semi-automatic process based on NLP techniques. See: The European Science Vocabulary.
You need to log in or register to use this function
We are sorry... an unexpected error occurred during execution.
You need to be authenticated. Your session might have expired.
Thank you for your feedback. You will soon receive an email to confirm the submission. If you have selected to be notified about the reporting status, you will also be contacted when the reporting status will change.
Programme(s)
Multi-annual funding programmes that define the EU’s priorities for research and innovation.
Multi-annual funding programmes that define the EU’s priorities for research and innovation.
-
H2020-EU.1.1. - EXCELLENT SCIENCE - European Research Council (ERC)
MAIN PROGRAMME
See all projects funded under this programme
Topic(s)
Calls for proposals are divided into topics. A topic defines a specific subject or area for which applicants can submit proposals. The description of a topic comprises its specific scope and the expected impact of the funded project.
Calls for proposals are divided into topics. A topic defines a specific subject or area for which applicants can submit proposals. The description of a topic comprises its specific scope and the expected impact of the funded project.
Funding Scheme
Funding scheme (or “Type of Action”) inside a programme with common features. It specifies: the scope of what is funded; the reimbursement rate; specific evaluation criteria to qualify for funding; and the use of simplified forms of costs like lump sums.
Funding scheme (or “Type of Action”) inside a programme with common features. It specifies: the scope of what is funded; the reimbursement rate; specific evaluation criteria to qualify for funding; and the use of simplified forms of costs like lump sums.
ERC-POC-LS - ERC Proof of Concept Lump Sum Pilot
See all projects funded under this funding scheme
Call for proposal
Procedure for inviting applicants to submit project proposals, with the aim of receiving EU funding.
Procedure for inviting applicants to submit project proposals, with the aim of receiving EU funding.
(opens in new window) ERC-2019-PoC
See all projects funded under this callHost institution
Net EU financial contribution. The sum of money that the participant receives, deducted by the EU contribution to its linked third party. It considers the distribution of the EU financial contribution between direct beneficiaries of the project and other types of participants, like third-party participants.
700 13 IRAKLEIO
Greece
The total costs incurred by this organisation to participate in the project, including direct and indirect costs. This amount is a subset of the overall project budget.