Slashdot Mirror

← Back to Stories (view on slashdot.org)

Oracle Says China Telecom Has Misdirected Internet Traffic, Including Out of the US, in Recent Years (zdnet.com)

Posted by msmash on from the stranger-things dept.

Oracle's Internet Intelligence division has confirmed today the findings of a recently published academic paper that accused China of "hijacking the vital internet backbone of western countries." From a report: The research paper was authored by researchers from the US Naval War College and Tel Aviv University and it made quite a few waves online after it was published. Researchers accused China Telecom, one of China's biggest state-owned internet service providers, of hijacking and detouring internet traffic through its normally-closed internet infrastructure. Some security experts contested the research paper's findings because it didn't come from an authoritative voice in the world of internet BGP hijacks, but also because the paper touched on many politically sensitive topics, such as China's cyber-espionage activities and how China used BGP hijacks as a way to circumvent the China-US cyber pact of 2015. But today, Doug Madory, Director of Oracle's Internet Analysis division (formerly Dyn), confirmed that China Telecom has, indeed, engaged in internet traffic "misdirection." "I don't intend to address the paper's claims around the motivations of these actions," said Madori. "However, there is truth to the assertion that China Telecom (whether intentionally or not) has misdirected internet traffic (including out of the United States) in recent years."

26 of 58 comments (clear)

  1. Source by Geoffrey.landis · · Score: 5, Informative

    The actual research paper being discussed is here: https://scholarcommons.usf.edu...

    --
    http://www.geoffreylandis.com
  2. Lets build a new internet already by Pinky's+Brain · · Score: 4, Interesting

    I'm getting sick of this shit. The US and the EU should just make the old internet an overlay on a new internet, with new internet traffic having priority. Fuck the globalist fairy tales. We don't need to be trivially vulnerable to DDOS's (allow IP owners to send firewall rules upstream) we don't need foreign agents redirecting internal traffic ... we can fix this, we should have fixed this.

    Much like we should have told C programmers to take a long walk off a short peer the moment the inevitability of buffer overflows and use after free became clear, we should have started fixing the internet the moment it's ridiculous weaknesses to DDOS's and hijacks became clear. Yes the costs are huge ... but I'm pretty sure that by listening to the people who say there is no alternative because of those costs the economy has suffered criminal damages upward of a trillion dollar by now, time to stop listening.

    There is an alternative, it's not easy, it is necessary.

    1. Re:Lets build a new internet already by Anonymous Coward · · Score: 3, Insightful

      Much like we should have told C programmers to take a long walk off a short peer the moment the inevitability of buffer overflows and use after free became clear

      Son, you wouldn't have an internet, UNIX, Linux, or pretty much anything else interesting without C ... period.

      That nobody predicted the growth of the internet, or the security risks it would pose, is completely unsurprising to anybody with half a brain, which apparently you don't even qualify for.

      Don't go acting like a whiny punk if you couldn't do better and weren't there. I love you idiots who look back and think you could have done better.

    2. Re:Lets build a new internet already by pgmrdlm · · Score: 1

      Lol, there always was Assembler! Remember the free firewall that use to be written in Assembler?

      --
      Anonymous comments are as pathetic as the anonymous "sources" that contaminate gutless journalism from the New York Time
    3. Re:Lets build a new internet already by Pinky's+Brain · · Score: 1, Interesting

      Oh no, not Unix. That could have meant capability based security could have been the dominant paradigm instead of ACLs ... what a disaster that would have been.

    4. Re:Lets build a new internet already by DaMattster · · Score: 2

      Better yet, let's just do a wholesale block of all Chinese IP addresses. I do this for my servers.

    5. Re:Lets build a new internet already by Anonymous Coward · · Score: 1

      Meh, we can have that stuff made anywhere. China is cheap and convenient. Nothing more.

    6. Re:Lets build a new internet already by fafalone · · Score: 2

      If the US and EU built a new internet today you can safely assume it would be designed from the ground up to make it much easier to monitor all your activities and impose direct government control and approval over content, and of course YouTube-style copyright tyranny for all. If you think it would look anything like the freer internet of days past, you've missed just how far authoritarian creep has gone.

  3. Pot and kettle, and all that by Anonymous Coward · · Score: 2, Insightful

    You're no better, America, and in no position to point fingers. And what's more, judging by what you've been up to in the world in the last 20 years, we should be far more afraid of you doing these things than China (as you claim).

    1. Re:Pot and kettle, and all that by Anonymous Coward · · Score: 1

      Because you are too stupid to know how to breath. America is a shortened version of the official name of the large nation in the middle of North America, to wit, the United States of America. Many people who live in the United States of America, as well as many people who live elsewhere, refer to the country as America for convenience. You're welcome.

    2. Re:Pot and kettle, and all that by pgmrdlm · · Score: 1

      In your tin foil wrapped mind that may be true. Otherwise, you are a fucking asshole twit. Fuck off and die.

      --
      Anonymous comments are as pathetic as the anonymous "sources" that contaminate gutless journalism from the New York Time
    3. Re:Pot and kettle, and all that by pgmrdlm · · Score: 1

      You think your petty little nation you lived in doesn't or hasn't done things against other nations. You think your nation is holier then thou. Just like your piss ant nation, you are too much of a coward to even post under an alias that you created yourself. Dumb as dirt, low life cunt that is afraid of anything and everything. Both you and where you live.

      --
      Anonymous comments are as pathetic as the anonymous "sources" that contaminate gutless journalism from the New York Time
    4. Re:Pot and kettle, and all that by aybiss · · Score: 1

      Really? So when your finest citizens roam the Earth demanding everyone they meet "talk American", we can go for Spanish?

      --
      It's OK Bender, there's no such thing as 2.
    5. Re:Pot and kettle, and all that by farble1670 · · Score: 1

      You're no better, America, and in no position to point fingers. And what's more, judging by what you've been up to in the world in the last 20 years, we should be far more afraid of you doing these things than China (as you claim).

      Hello, comrade. It's late for you to be up trolling isn't it? Do your masters give extra vodka rations for overtime?

      If you have a research paper showing the US re-routing Chinese traffic, go ahead and post it.

    6. Re:Pot and kettle, and all that by pgmrdlm · · Score: 1

      No asshole, you would talk the native language. Fucking Spanish mother fucker, was just another conquering nation. Or what dick head, it was ok for the Spanish to conquer and no other nation?

      Fucking idiot

      --
      Anonymous comments are as pathetic as the anonymous "sources" that contaminate gutless journalism from the New York Time
  4. and th NSA was happy by spacepimp · · Score: 4, Interesting

    By allowing the data to flow out of the US they could spy on it all with slightly less violation of the constitutional rights of citizens. It is doubtful they were unaware of this occurrence and probably lauded the new signal to noise it provided.

    1. Re:and th NSA was happy by rtb61 · · Score: 1

      More likely, whilst the US government with the NSA and CIA were analysing all data traffic flows, all of it, they pattern analysed divergent traffic flows and were able to trace those data flows by monitoring all data flows (ohhh wait, should we tell the public about China because the only way we could have discovered it was by doing something very illegal ourselves, nah, don't worry most Americans are lead addled fuckwits, haw, haw, haw). So how did they claim they discovered it and can not the US inject traffic straight into the cables under the sea directly, making it look like it comes from anywhere they want going to anywhere they want, kind of like, prove you did not do this, when we know you can.

      --
      Chaos - everything, everywhere, everywhen
    2. Re:and th NSA was happy by budgenator · · Score: 1

      Possibly, but I think it's more likely that they are afraid that people will realize the only way to protect your data from Chinese espionage is end-to-end encryption and a healthy dose of TOR; which would be inconvenient for the NSA.

      --
      Apocalypse Cancelled, Sorry, No Ticket Refunds
  5. Re:China is for cows. by Tablizer · · Score: 1

    You mean Moooo Shu pork.

    --
    Table-ized A.I.
  6. Enemy of enemy is... an anemone? by Trogre · · Score: 1, Funny

    Now there's two principles-to-live-by in the same room:

    1. Don't do business with Oracle.
    2. Don't do business with China.

    --
    "Nine times out of ten, starting a fire is not the best way to solve the problem." - my wife
  7. Re:How many ACTS OF WAR will it take? by ravenshrike · · Score: 2

    Hey now, we did plenty of the microplastics thing ourselves with plastic clothing that we then wash and tumble dry.

  8. Re:How many ACTS OF WAR will it take? by aybiss · · Score: 1

    Why would they do that? Your leaders have done all of those things. Don't wish for war just because you think you'll be the one declaring it.

    --
    It's OK Bender, there's no such thing as 2.
  9. Bgp needs some rework by aglider · · Score: 1

    Or maybe the whole international routing infrastructure and protocols.

    --
    Sent as ripples into the electromagnetic field. No single photon has been harmed in the process.
  10. yes and solution is easy by johnjones · · Score: 1

    the solution is easy and has a RFC 6480

    RPKI has been around since 2013

    RPKI provides a way to connect Internet number resource information (such as Autonomous System numbers and IP addresses) to a trust anchor. The certificate structure mirrors the way in which Internet number resources are distributed. That is, resources are initially distributed by the IANA to the Regional Internet Registries (RIRs), who in turn distribute them to Local Internet registries (LIRs), who then distribute the resources to their customers. RPKI can be used by the legitimate holders of the resources to control the operation of Internet routing protocols to prevent route hijacking and other attacks. In particular, RPKI is used to secure the Border Gateway Protocol (BGP) through BGPsec, as well as Neighbor Discovery Protocol (ND) for IPv6 through the Secure Neighbor Discovery Protocol (SEND).

    IP addresses and Autonomous Systems Numbers are allocated by five Regional Internet Registries (RIR): Afrinic for Africa, APNIC for Asia-Pacific, ARIN for North America, LACNIC for Central and South America and RIPE for Europe, Middle-East and Russia. Each one operates independently.

    so whats your excuse america ?

    1. Re:yes and solution is easy by farble1670 · · Score: 1

      so whats your excuse america ?

      I know right? What's the big deal with changing the way the internet backbone works for all of N. America?

  11. Re:How many ACTS OF WAR will it take? by Swave+An+deBwoner · · Score: 2

    Our leaders will stand up to Imperial China real soon now. Real soon.

    https://www.washingtonpost.com/world/asia_pacific/china-greenlights-large-batch-of-ivanka-trump-trademark-applications/2018/11/06/c085e88c-e1c8-11e8-a1c9-6afe99dddd92_story.html