Slashdot Mirror

← Back to Stories (view on slashdot.org)

Growing Commercialization Threatens Net Security

Posted by ryuzaki0 on from the fewer-windows-to-jimmy dept.

dr3vil writes "The BBC is reporting that the concentration of the net's backbone in fewer hands has made it more vulnerable to attack. The report compares an attack to travel problems when traffic is disrupted at O'Hare. Hopefully someone in a position to act will pay attention."

23 of 199 comments (clear)

  1. In Soviet Russia ... by dzym · · Score: 5, Insightful
    Growing commercialization is threatened by Net Security.

    Surely you mean increased centralization, however.

    1. Re:In Soviet Russia ... by flewp · · Score: 4, Insightful

      Anytime you concentrate anything in one area, the risks are likely to be larger. If I put my money in various hiding spots, it'd be a lot safer than hiding it all under my mattress. Sure, someone may find one or two of the stash spots, but it outweighs the risk of losing it all if someone discovers it under my mattress. Okay, that analogy might have been a stretch, but I think it gets to the point of the article. I think it's only news because someone ran some tests.

      --
      WWJD.... for a Klondike bar?
  2. We can only hope by Rick+the+Red · · Score: 5, Funny
    The report compares an attack to travel problems when traffic is disrupted at O'Hare. Hopefully someone in a position to act will pay attention.
    Damn straight! Chicago needs at least two more airports, one south and the other southwest of the city.

    Oh, you were using O'Hare as an example? Nevermind.

    --
    If all this should have a reason, we would be the last to know.
    1. Re:We can only hope by rnturn · · Score: 4, Flamebait

      I'm puzzled why this was rated as ``off-topic''. Guess there wasn't enough anti-Microsoft content.

      I think the analogy with the airlines' penchant for these hub airports is right on target. (Though I think O'Hare gets an unfair level of criticism; problems in Denver -- especially in the winter -- and Dallas cause similar levels of disruption.) The airlines do it because it cuts costs. No need for as many mechanics and all the other ground personnel if you concentrate your operations in fewer sites. Same thing with data centers. C-level execs just love it when they can consolidate data centers because they can cut their leased office space costs, operations staff, etc. (Though, somehow, they never seem to catch on about the problem this causes with disaster recovery and then bawk at how much it costs to keep a second site available.) So why would we be surprised that the bean-counter mentality is found to exist within the companies that are providing the basic internet connectivity? After all they (the bean counters) are doing their job and if others in the company can't do their job of making sure the networks are available... well that's the other guy's problem. Too bad maximizing shareholder return was allowed to override the job of maintaining an available network.

      --
      CUR ALLOC 20195.....5804M
  3. Resilience to Attack by otisaardvark · · Score: 4, Insightful

    Internet access and bandwidth are very vulnerable, but remember there are lots of copies of the DNS server records, and the actual content is extremely widespread and can easily be put online again given some time - in a genuine emergency situation internet access would only be a priority to those on the periphery anyway. Fine, we need more hubs and greater decentralisation, but lets not get carried away.

  4. Commercialization ruins so many things. by vectus · · Score: 5, Insightful

    The Internet really isn't alone. Ads have really taken over society. Everywhere you look, from people's clothing to the garbage on the ground, to blatently all over every layer of packaging on the goods you buy at the local Safeway.

    I've gotten so sick of it. The reason I switched to Linux (probably the dumbest reason in a lot of people's opinions) was to escape the fact that every program I installed had huge logos and ads plastered all over.

    I remember when you were mocked and considered weird if you sold out. Now, if you don't sell out, you're considered stupid for not making money while you can.

    I get the feeling this blatent lack of ethics will be part of the downfall of our economy. You can only have so many people leeching at one time before it runs out of blood.

  5. Re:Whoa, that's big news! by Rick+the+Red · · Score: 4, Funny

    Now, now, give the Editors a break. If that particular filter worked there'd be no need for "-1 Redundant."

    --
    If all this should have a reason, we would be the last to know.
  6. But life will go on.... by SmoothOperator · · Score: 4, Insightful
    "If you destroyed a major internet hub, you would also destroy all the links that are connected to it," said Morton O'Kelly, Professor of Geography at Ohio State University.


    It would have ripple effects throughout the internet..."

    ... and the Montana rancher will still herd his cattle, and the wine-maker in Italy will still stomp his grapes, and the crossing-guard will still be out there at 7 AM... Life will go on, boys and girls, life will go on, like it has before the 'net...

    --

    Veni, vidi, vici.

  7. Eggs in one basket... by ryants · · Score: 5, Insightful
    Behold, the fool saith, `Put not all thine eggs in the one basket'--which is but a manner of saying, `Scatter your money and your attention'; but the wise man saith, `Put all your eggs in the one basket and-- watch that basket!'
    -- Mark Twain (emphasis mine)
    --

    Ryan T. Sammartino
    "Ancora imparo"

    1. Re:Eggs in one basket... by mat+catastrophe · · Score: 4, Insightful

      Unfortunately, when there is only one basket, there are suddenly many, many thieves.

      --
      sig not found
  8. It's simple: Less Security = More Convenient by dagg · · Score: 4, Insightful
    The rule of "less security = more convenient" applies in nearly all situations... and it applies here as well. The only way to increase the security in this particular situation is to de-centralize the big hubs. But that will be very inconvenient to the big companies that own the hubs. There are few reasons to do inconvenient things.

    --
    Sex Gateway

    --
    Sex - Find It
  9. Re:A Simple Internet Model by Em+Emalb · · Score: 5, Funny

    In what was considered a shocking move today, members of the Mouse Movement known as You moved my Cheese, you Rat Bastard, or YMMC,YRB for short, have declared war on the ever popular internet.

    Speaking from his private "nest" in the foothills of Santa Barbara, General Carlissimo P Rodentia had this to say:

    "You have bombarded my people for years with your unwanted peecees and aol ceedees. No longer. Your precious internet cannot stand the assault of 100 billion of my brother's and sister's teeth. Consider yourselves warned."

    A truly ominous sign of the times.

    Signing off, this is Reginald Rattus, reporting.

    --
    Sent from your iPad.
  10. Re:They do have a point... by 1984 · · Score: 4, Interesting

    Depends. A telco has a network, which carries IP traffic (perhaps other traffic, too). That may or may not have multiple routes within it connecting any two points. And it may peer with other networks at various points. But it's not necessarily a given that a) if a big network disappears that there'll be routes *besides* that network connecting everything that was connected to it, or that if such alternatives exist, that they'll have sufficient bandwidth to cope with the loss of that network.

    After all, it's notionally not economic to keep too much excess capacity around -- why bother? So it'd be a surprise if ever major route was 100% (or more) backed up by another major route.

    Also, physical separation and logical separation are different. A large logical separation may, alas, boil down to two pieces of fiber in the same conduit, two wavelengths on the same piece of fiber, that sort of thing.

    So yes, it *can* all be made to be redundant, but that's not neceesarily how it plays out. Other factors may act against redundancy.

  11. Missing Key Point by Hamstaus · · Score: 4, Insightful

    In its early days the net was as decentralised, as possible with multiple links between many of the nodes forming it. If one node disappeared, traffic could easily flow to other links and route traffic to all parts.

    I would not give this article a lot of serious thought. It describes how simulated attacks show vulnerable spots in the internet, and seeks to lay blame for it. However, comparing the current state of the Internet to it's own beginnings is obviously going to show differences (DUH!). I mean, back in the pre-web days (you remember those, folks? ah, sweet gopher. R.I.P.), if you didn't know exactly where or what you were looking for... well... none of this fancy googlin' stuff, that's all I gotta say.

    If you consider the growth of the internet from that point, which was basically a loose, random interconnection of .edu's, .gov's and .mil's, there was no need for centralization. However, suddenly, one day everyone wanted to be on the net! And out of that chaos, logical central points developed.

    I like to explain the internet to non-techie people as something like the Interstate highways in the United States. And using that metpahor... if you take out a central location... well, it'll be a lot slower and harder to get to where you need to go, but it's not like you've isolated an entire region for all eternity.

    My point is, there are centralized locations because it was efficient to do so. Eventually, as more and more high speed wire is laid out across the world, these will slowly become less important. It's just that the growth has been too fast for the present time!

    --
    I moderate "-1, Fool"
  12. You can get the PDF for the paper here: by Saint+Aardvark · · Score: 4, Informative
    Click on this link:

    http://www.elsevier.com/locate/tele

    You'll see "View their sample issue." Click on that, then click on the link for Volume 20, Issue 1. Go there. Then you'll see "A geographic perspective on commercial Internet survivability", and you can download the PDF there.

    Looks like it's meant to give you only one chance at the free issue, so I think giving the direct link would be pretty useless. Whatever; you're only three clicks away from greatness. :-)

    --
    Carousel is a lie!
  13. Re:Why not get US in on this? by Uruk · · Score: 5, Insightful

    The government is the absolute antithesis of decentralization. Look at the heirarchy - if there's anything that public servants and the government structure as a whole is known for, it's a pecking order. Government doesn't understand decentralization, because ultimately that tends to make things harder to control and administer, and governments are all about controlling and administering. That's their core goal.

    The government's primary self-chosen mission in most countries of the world today is to promote economic growth, which often is interpreted as doing whatever the industrialists ask of them. And guess where the industrialists stand on the commercialization of the internet....

    --
    -- Truth goes out the door when rumor comes innuendo. -- Groucho Marx
  14. Re:Why not get US in on this? by rnturn · · Score: 5, Funny
    ``...that governments around the world, particularly in democratic nations (so-called, more accurately 'media-cracies')''

    Shouldn't that be: mediocracies

    :-)

    --
    CUR ALLOC 20195.....5804M
  15. Monoculture Considered Harmful. Film at 11. by mudshark · · Score: 5, Insightful

    Yes, Virginia, the health of the Internet *does* depend on decentralized technologies such as multiple backbones, gegraphically distributed root name servers, and standards committees not answerable to any single political entity or product vendor.

    It's no different from a business monopoly, (or cartel, or oligopoly) which tends to create artificially high prices, poor quality of goods and services, and in the case of computing and networks a fertile breeding ground for viruses, worms and other nasty exploits.

    And the analogue these worlds share with real live ecosystems is uncanny: Plant an entire state in one strain of corn for a few seasons in a row and watch the fun.

    Didn't we already learn this crap? Why do the FCC, FTC, SEC and other god-forsaken, nutless bend-over wastes of acronyms keep rubber-stamping all the mergers?

    --
    In other news, astrophysicists have announced that they now know what all that dark matter is: it's stupidity.
  16. Re:Why not get US in on this? by sakeneko · · Score: 4, Interesting
    The government is the absolute antithesis of decentralization. Look at the heirarchy - if there's anything that public servants and the government structure as a whole is known for, it's a pecking order. Government doesn't understand decentralization....

    The Internet was developed under the watchful guidance, and using the money, of none other than Uncle Sam -- the U.S. government. Way back in the early days of the ARPAnet, it was deliberately made decentralized, and designed to treat any blockage to the free flow of information as damage, to survive a nuclear attack.

    Perhaps the government won't be willing to pay the bills to keep today's Internet from becoming overly centralized, but it knows how.

    --

    Catherine

  17. bad title by asv108 · · Score: 4, Interesting

    What does commercialization have to do with the Internet backbone being in fewer hands, shouldn't the title be "Growing Backbone Consolidation threatens Net Security. The last thing we need is G.W. thinking that their are comunists on slashdot. We will all be branded as terrorists.

  18. Back in the good old days by per+unit+analyzer · · Score: 4, Interesting
    The author of the article is waxing nostalgic about a day that never existed. Back in the NSFNET days (not the earliest days of the Internet but precommercialed nonetheless), if the NSS your regional network was connected to had problems, you would have had certainly felt it. Regional networks connected large swaths (several states) of the US to the Internet much like the author describes what is going on today. Eventually some regionals became multi-homed, but even then many were not designed to properly handle all traffic failing over to a single link to the backbone. I didn't start using the ARPAnet until it's final days, but even then I suspect the loss of a core site would isolate a number of leaf nodes.

    The design of TCP/IP allows for redundancy and survivability, however most if not all of the research backbones that evolved into the commercialized Internet never had a great deal of redundancy. Granted, later incarnations like the NSFNET T3 network were better, but most had single points of failure which could be felt across large parts of the Internet when those points had problems...

    --zawada

    --
    In Soviet Russia, the Beowulf cluster imagines you!
  19. Bell System by Detritus · · Score: 4, Informative

    If you look at network diagrams of the Bell System, when AT&T still ran everything, you will see a system that was designed to cope with disasters and excessive loads. It provided a great deal of flexibility in how calls were routed through the network. Each central office had multiple links to peer central offices and parent central offices. A call could be routed in many different ways. If a link to a peer central office was out, the call could be "kicked upstairs" to a parent central office, which would route it over a different link to the destination central office. The only single points of failure were the local central office and the wires in between the local central office and the subscriber.

    --
    Mea navis aericumbens anguillis abundat
  20. This is twaddle by ethaz · · Score: 4, Insightful
    With multiple commercial carriers, all operating their own backbones from multiple POPs the likelihood of the destruction of a building, or for that matter, an entire city having an impact on Internet connectivity overall is nonsense. The largest backbone providers, AT&T, UUNet, Sprint, Qwest, Level 3 all operate with SONET rings at the physical layer plus BGP4 routing. And all of them operate from separate physical facilities (UUNet and Sprint don't normally share a building, for example). Further, since the MAEs, the NAPs and other public peering points are, for the most part, irrelevant to the major backbones (their private peering arrangements are separate from these places), their connectivity to each other would survive. Sure, it might need to be shifted from SF to, say, Chicago, in the case of an emergency, but that could be done in a day or so, if not in hours. If anyone of them lost a major node, they continue to operate. The only effected connections would be those directly connected to that disable node.


    This is far better than the pre-1993 days when there was a single backbone, operating on non-redundant private lines.

    I guess this guy wanted some publicity. He got it.