Oracle Says China Telecom Has Misdirected Internet Traffic, Including Out of the US, in Recent Years (zdnet.com)

← Back to Stories (view on slashdot.org)

Oracle Says China Telecom Has Misdirected Internet Traffic, Including Out of the US, in Recent Years (zdnet.com)

Posted by msmash on Tuesday November 6, 2018 @09:00AM from the stranger-things dept.

Oracle's Internet Intelligence division has confirmed today the findings of a recently published academic paper that accused China of "hijacking the vital internet backbone of western countries." From a report: The research paper was authored by researchers from the US Naval War College and Tel Aviv University and it made quite a few waves online after it was published. Researchers accused China Telecom, one of China's biggest state-owned internet service providers, of hijacking and detouring internet traffic through its normally-closed internet infrastructure. Some security experts contested the research paper's findings because it didn't come from an authoritative voice in the world of internet BGP hijacks, but also because the paper touched on many politically sensitive topics, such as China's cyber-espionage activities and how China used BGP hijacks as a way to circumvent the China-US cyber pact of 2015. But today, Doug Madory, Director of Oracle's Internet Analysis division (formerly Dyn), confirmed that China Telecom has, indeed, engaged in internet traffic "misdirection." "I don't intend to address the paper's claims around the motivations of these actions," said Madori. "However, there is truth to the assertion that China Telecom (whether intentionally or not) has misdirected internet traffic (including out of the United States) in recent years."

58 comments

Min score:

Reason:

Sort:

Source by Geoffrey.landis · 2018-11-06 09:07 · Score: 5, Informative

The actual research paper being discussed is here: https://scholarcommons.usf.edu...

--
http://www.geoffreylandis.com
China is for cows. by Anonymous Coward · 2018-11-06 09:11 · Score: 0, Troll

You are all cows. Cows say moo. MOOOOOO! MOOOOOO! Moo cows MOOOOO! Moo say the cows. Ni shi zhongguo nainiu!!
1. Re:China is for cows. by Tablizer · 2018-11-06 10:43 · Score: 1
  
  You mean Moooo Shu pork.
  
  --
  Table-ized A.I.
2. Re:China is for cows. by Anonymous Coward · 2018-11-06 16:09 · Score: 0
  
  Excuse me, it looks like you were trying to say, "Nimendou zhonguode nainiu?" Dumbass.
3. Re:China is for cows. by Anonymous Coward · 2018-11-06 20:37 · Score: 0
  
  Fuck off, anonymous shitbag.
How many ACTS OF WAR will it take? by Anonymous Coward · 2018-11-06 09:14 · Score: 0

China has poisoned the heroin with fentanyl, our waters with microplastics, our forests with invaise destructive species, and placed spies everywhere in accademia and the corporate spaces.
China has murdered democracy protestors.
China has stolen trade secrets and now the entire internet traffic of the US.
When will our leaders stand up to Imperial China?
1. Re:How many ACTS OF WAR will it take? by Anonymous Coward · 2018-11-06 09:26 · Score: 0
  
  When will our leaders stand up to Imperial China?
  It's funny that Imperial China uses the metric system while the U.S.A. still uses the imperial system of measurement.
2. Re:How many ACTS OF WAR will it take? by ravenshrike · 2018-11-06 12:53 · Score: 2
  
  Hey now, we did plenty of the microplastics thing ourselves with plastic clothing that we then wash and tumble dry.
3. Re:How many ACTS OF WAR will it take? by aybiss · 2018-11-06 15:10 · Score: 1
  
  Why would they do that? Your leaders have done all of those things. Don't wish for war just because you think you'll be the one declaring it.
  
  --
  It's OK Bender, there's no such thing as 2.
4. Re:How many ACTS OF WAR will it take? by Swave+An+deBwoner · 2018-11-07 13:05 · Score: 2
  
  Our leaders will stand up to Imperial China real soon now. Real soon.
  https://www.washingtonpost.com/world/asia_pacific/china-greenlights-large-batch-of-ivanka-trump-trademark-applications/2018/11/06/c085e88c-e1c8-11e8-a1c9-6afe99dddd92_story.html
It's funny by Anonymous Coward · 2018-11-06 09:15 · Score: 0

how these BGP hijacks always seem to come from China or Russia. A coincidence, surely.
1. Re:It's funny by Anonymous Coward · 2018-11-06 09:48 · Score: 0
  
  I mean it's not like America and its NSA would ever do something like this, right? NSA don't even use the internet.
Lets build a new internet already by Pinky's+Brain · 2018-11-06 09:18 · Score: 4, Interesting

I'm getting sick of this shit. The US and the EU should just make the old internet an overlay on a new internet, with new internet traffic having priority. Fuck the globalist fairy tales. We don't need to be trivially vulnerable to DDOS's (allow IP owners to send firewall rules upstream) we don't need foreign agents redirecting internal traffic ... we can fix this, we should have fixed this.
Much like we should have told C programmers to take a long walk off a short peer the moment the inevitability of buffer overflows and use after free became clear, we should have started fixing the internet the moment it's ridiculous weaknesses to DDOS's and hijacks became clear. Yes the costs are huge ... but I'm pretty sure that by listening to the people who say there is no alternative because of those costs the economy has suffered criminal damages upward of a trillion dollar by now, time to stop listening.
There is an alternative, it's not easy, it is necessary.
1. Re:Lets build a new internet already by Anonymous Coward · 2018-11-06 09:42 · Score: 3, Insightful
  
  Much like we should have told C programmers to take a long walk off a short peer the moment the inevitability of buffer overflows and use after free became clear
  Son, you wouldn't have an internet, UNIX, Linux, or pretty much anything else interesting without C ... period.
  That nobody predicted the growth of the internet, or the security risks it would pose, is completely unsurprising to anybody with half a brain, which apparently you don't even qualify for.
  Don't go acting like a whiny punk if you couldn't do better and weren't there. I love you idiots who look back and think you could have done better.
2. Re:Lets build a new internet already by pgmrdlm · 2018-11-06 09:49 · Score: 1
  
  Lol, there always was Assembler! Remember the free firewall that use to be written in Assembler?
  
  --
  Anonymous comments are as pathetic as the anonymous "sources" that contaminate gutless journalism from the New York Time
3. Re:Lets build a new internet already by Pinky's+Brain · 2018-11-06 09:52 · Score: 1, Interesting
  
  Oh no, not Unix. That could have meant capability based security could have been the dominant paradigm instead of ACLs ... what a disaster that would have been.
4. Re:Lets build a new internet already by DaMattster · 2018-11-06 09:53 · Score: 2
  
  Better yet, let's just do a wholesale block of all Chinese IP addresses. I do this for my servers.
5. Re: Lets build a new internet already by Anonymous Coward · 2018-11-06 10:03 · Score: 0
  
  Well, to be fair we could have had all that with Pascal or Modula-2. But since their stdlibs were also from the same era we likely still would have been nearly as vulnerable to buffer overflows and use after free issues. Maybe less with Ada..
6. Re:Lets build a new internet already by Anonymous Coward · 2018-11-06 10:30 · Score: 0
  
  Your servers, which are made in China? Connected to your switches which are made in China? I bet you wrote this comment on a device made in China.
7. Re:Lets build a new internet already by Anonymous Coward · 2018-11-06 10:36 · Score: 0
  
  Yes, but...
  The US has also (read: NSA) redirected traffic in the US, for (assuming?) nefarious reasons. I recall discussions on this more than a decade ago...
8. Re:Lets build a new internet already by Anonymous Coward · 2018-11-06 10:59 · Score: 0
  
  Show your math, prove the ROI.. NASA decided to keep using 'english units' with the SLS because converting the old shuttle data wouldn't have been cost effective.
9. Re:Lets build a new internet already by Anonymous Coward · 2018-11-06 11:32 · Score: 0
  
  Was with you until the slight on C. Jesus, you're an idiot. You couldn't even have made your post without C. Doofus!
  Probably a Java or Python programmer. Idiots en mass.
10. Re: Lets build a new internet already by Anonymous Coward · 2018-11-06 12:12 · Score: 0
  
  "Much like we should have told C programmers to take a long walk off a short peer the moment the inevitability of buffer overflows and use after free became clear"
  The problem isn't with the C programming language itself. The problem is with the operating system that interprets the system calls given in the C program. The operating system tries to be efficient to a fault, just as the microcode in the CPU tries to be efficient to a fault.
  Just to give you a tiny example, when you request a small amount of memory from the operating system, the operating system gives you a chunk of memory that you didn't ask for, in addition to the chunk that you did ask for. That isn't the fault of your C program. It's the fault of the multi-tasking operating system that you have consented to use to run your C program.
11. Re:Lets build a new internet already by Anonymous Coward · 2018-11-06 13:27 · Score: 1
  
  Meh, we can have that stuff made anywhere. China is cheap and convenient. Nothing more.
12. Re:Lets build a new internet already by Anonymous Coward · 2018-11-06 19:52 · Score: 0
  
  And they still can redirect traffic destined for you. How's that block of yours working now?
13. Re:Lets build a new internet already by fafalone · 2018-11-06 23:50 · Score: 2
  
  If the US and EU built a new internet today you can safely assume it would be designed from the ground up to make it much easier to monitor all your activities and impose direct government control and approval over content, and of course YouTube-style copyright tyranny for all. If you think it would look anything like the freer internet of days past, you've missed just how far authoritarian creep has gone.
14. Re:Lets build a new internet already by Anonymous Coward · 2018-11-07 17:50 · Score: 0
  
  There's nothing inherent about Unix that prevents a capability based security model. The ACL model of Unix was perfectly adequate in the time it was designed and it stayed in use because it continued working for the years after. What changed is the fact that everybody got connected to the Internet which means the asshats also got connected to the Internet. Nobody predicted this when Unix was initially designed.
Re:If you're in Florida by Anonymous Coward · 2018-11-06 09:35 · Score: 0

Why would we vote for two men under investigation by the FBI?
Boycaht Tarruf BAHM by Anonymous Coward · 2018-11-06 09:35 · Score: 0

Do it know! BGP is sagrid. Must not up with which put. Durect line to TRUMP. Make a tack presently.
Pot and kettle, and all that by Anonymous Coward · 2018-11-06 09:36 · Score: 2, Insightful

You're no better, America, and in no position to point fingers. And what's more, judging by what you've been up to in the world in the last 20 years, we should be far more afraid of you doing these things than China (as you claim).
1. Re:Pot and kettle, and all that by Anonymous Coward · 2018-11-06 09:53 · Score: 1
  
  Because you are too stupid to know how to breath. America is a shortened version of the official name of the large nation in the middle of North America, to wit, the United States of America. Many people who live in the United States of America, as well as many people who live elsewhere, refer to the country as America for convenience. You're welcome.
2. Re:Pot and kettle, and all that by pgmrdlm · 2018-11-06 10:02 · Score: 1
  
  In your tin foil wrapped mind that may be true. Otherwise, you are a fucking asshole twit. Fuck off and die.
  
  --
  Anonymous comments are as pathetic as the anonymous "sources" that contaminate gutless journalism from the New York Time
3. Re:Pot and kettle, and all that by pgmrdlm · 2018-11-06 10:05 · Score: 1
  
  You think your petty little nation you lived in doesn't or hasn't done things against other nations. You think your nation is holier then thou. Just like your piss ant nation, you are too much of a coward to even post under an alias that you created yourself. Dumb as dirt, low life cunt that is afraid of anything and everything. Both you and where you live.
  
  --
  Anonymous comments are as pathetic as the anonymous "sources" that contaminate gutless journalism from the New York Time
4. Re:Pot and kettle, and all that by Anonymous Coward · 2018-11-06 10:16 · Score: 0
  
  You think your petty little nation you lived in doesn't or hasn't done things against other nations. You think your nation is holier then thou. Just like your piss ant nation, you are too much of a coward to even post under an alias that you created yourself. Dumb as dirt, low life cunt that is afraid of anything and everything. Both you and where you live.
  So, I'm not the AC you're responding to ... but honest question ... do you get punched a lot in real life? Or are you just a raging asshole on the internet?
  Because in real life if you ever spoke to me like that, you'd have a broken jaw and might still be getting stomped.
  Fuck you're a loser. A whiny little incel peckerwood who thinks he's tough on the internet.
5. Re:Pot and kettle, and all that by Anonymous Coward · 2018-11-06 11:19 · Score: 0
  
  You think your petty little nation you lived in doesn't or hasn't done things against other nations. You think your nation is holier then thou. Just like your piss ant nation, you are too much of a coward to even post under an alias that you created yourself. Dumb as dirt, low life cunt
  
  Have all Americans become such raging assholes, or is it just you?
  Either way, this is why the rest of the world no longer gives a fuck about what happens to Americans. Shoot each other, make the world a better place and fuck off.
6. Re: Pot and kettle, and all that by Anonymous Coward · 2018-11-06 11:28 · Score: 0
  
  RE: The US
  When youre the big dog, you can bite whoever you want to. So go fuck yourself chicom.
7. Re:Pot and kettle, and all that by Anonymous Coward · 2018-11-06 12:45 · Score: 0
  
  There is no continent called America. Period.
  There are two continents, North America and South America, collectively known as "The Americas" - plural.
  The nation commonly referred to as "America" is called as such because it is the only nation that is named like that.
  Now, someone like yourself might almost have a point if they were to get upset about America being referred to as "The United States", since there are other countries that use that phrase in their name... including one in North America. But trying to claim that America refers to something other than the United States of America, especially when speaking English, is the height of ignorance and jealous microdick glorygrabbing. So, please, fuck off.
  Love,
  America
8. Re:Pot and kettle, and all that by aybiss · 2018-11-06 15:15 · Score: 1
  
  Really? So when your finest citizens roam the Earth demanding everyone they meet "talk American", we can go for Spanish?
  
  --
  It's OK Bender, there's no such thing as 2.
9. Re: Pot and kettle, and all that by Anonymous Coward · 2018-11-07 02:47 · Score: 0
  
  You should post that again. On your own comment.
  WOOOO! INTERNET TOUGH GUY ALERT WOOOOOOOO!
  Somebody call that ITG a wahbulance.
10. Re:Pot and kettle, and all that by farble1670 · 2018-11-07 08:57 · Score: 1
  
  You're no better, America, and in no position to point fingers. And what's more, judging by what you've been up to in the world in the last 20 years, we should be far more afraid of you doing these things than China (as you claim).
  Hello, comrade. It's late for you to be up trolling isn't it? Do your masters give extra vodka rations for overtime?
  If you have a research paper showing the US re-routing Chinese traffic, go ahead and post it.
11. Re:Pot and kettle, and all that by pgmrdlm · 2018-11-07 16:16 · Score: 1
  
  No asshole, you would talk the native language. Fucking Spanish mother fucker, was just another conquering nation. Or what dick head, it was ok for the Spanish to conquer and no other nation?
  
  Fucking idiot
  
  --
  Anonymous comments are as pathetic as the anonymous "sources" that contaminate gutless journalism from the New York Time
and th NSA was happy by spacepimp · 2018-11-06 09:40 · Score: 4, Interesting

By allowing the data to flow out of the US they could spy on it all with slightly less violation of the constitutional rights of citizens. It is doubtful they were unaware of this occurrence and probably lauded the new signal to noise it provided.
1. Re:and th NSA was happy by rtb61 · 2018-11-06 16:49 · Score: 1
  
  More likely, whilst the US government with the NSA and CIA were analysing all data traffic flows, all of it, they pattern analysed divergent traffic flows and were able to trace those data flows by monitoring all data flows (ohhh wait, should we tell the public about China because the only way we could have discovered it was by doing something very illegal ourselves, nah, don't worry most Americans are lead addled fuckwits, haw, haw, haw). So how did they claim they discovered it and can not the US inject traffic straight into the cables under the sea directly, making it look like it comes from anywhere they want going to anywhere they want, kind of like, prove you did not do this, when we know you can.
  
  --
  Chaos - everything, everywhere, everywhen
2. Re:and th NSA was happy by budgenator · 2018-11-07 03:25 · Score: 1
  
  Possibly, but I think it's more likely that they are afraid that people will realize the only way to protect your data from Chinese espionage is end-to-end encryption and a healthy dose of TOR; which would be inconvenient for the NSA.
  
  --
  Apocalypse Cancelled, Sorry, No Ticket Refunds
nour by Anonymous Coward · 2018-11-06 09:52 · Score: 0

https://awa2lksa.com/%d8%b4%d8%b1%d9%83%d8%a9-%d8%aa%d9%86%d8%b8%d9%8a%d9%81-%d8%a8%d8%a7%d9%84%d8%b7%d8%a7%d8%a6%d9%81/
Herrow Tiananmen Square Tankman! by Anonymous Coward · 2018-11-06 09:53 · Score: 0

We can smell your chopsuey breath through your post. Try again chinky!
LOL by Anonymous Coward · 2018-11-06 10:12 · Score: 0

First of all, lol it is fucking Oracle. Probably the last IT company that I would trust. No scratch that, Oracle is probably the company that wouldn't give ever a 2nd thought on turning your traffic to the highest bidder. Secondly, NSA/Five Eyes has been doing this constantly; if you don't encrypt your traffic it is already being tapped ALL THE TIME.
Re: If you're in Florida by Anonymous Coward · 2018-11-06 11:04 · Score: 0

Because we only care when it is Trump
Not nearly as bad.. by Anonymous Coward · 2018-11-06 11:21 · Score: 0

Not nearly as bad as the contract rape Oracle engages in.
"hey look at that rapist calling out the knife assailant!"
Enemy of enemy is... an anemone? by Trogre · 2018-11-06 11:29 · Score: 1, Funny

Now there's two principles-to-live-by in the same room:
1. Don't do business with Oracle.
2. Don't do business with China.

--
"Nine times out of ten, starting a fire is not the best way to solve the problem." - my wife
Bgp needs some rework by aglider · 2018-11-06 18:02 · Score: 1

Or maybe the whole international routing infrastructure and protocols.

--
Sent as ripples into the electromagnetic field. No single photon has been harmed in the process.
yes and solution is easy by johnjones · 2018-11-06 20:47 · Score: 1

the solution is easy and has a RFC 6480
RPKI has been around since 2013
RPKI provides a way to connect Internet number resource information (such as Autonomous System numbers and IP addresses) to a trust anchor. The certificate structure mirrors the way in which Internet number resources are distributed. That is, resources are initially distributed by the IANA to the Regional Internet Registries (RIRs), who in turn distribute them to Local Internet registries (LIRs), who then distribute the resources to their customers. RPKI can be used by the legitimate holders of the resources to control the operation of Internet routing protocols to prevent route hijacking and other attacks. In particular, RPKI is used to secure the Border Gateway Protocol (BGP) through BGPsec, as well as Neighbor Discovery Protocol (ND) for IPv6 through the Secure Neighbor Discovery Protocol (SEND).
IP addresses and Autonomous Systems Numbers are allocated by five Regional Internet Registries (RIR): Afrinic for Africa, APNIC for Asia-Pacific, ARIN for North America, LACNIC for Central and South America and RIPE for Europe, Middle-East and Russia. Each one operates independently.
so whats your excuse america ?
1. Re:yes and solution is easy by farble1670 · 2018-11-07 08:53 · Score: 1
  
  so whats your excuse america ?
  I know right? What's the big deal with changing the way the internet backbone works for all of N. America?