DC Element | Wert | Sprache |
---|---|---|
dc.contributor.author | Wählisch, Matthias | - |
dc.contributor.author | Schmidt, Robert | - |
dc.contributor.author | Schmidt, Thomas C. | - |
dc.contributor.author | Maennel, Olaf | - |
dc.contributor.author | Uhlig, Steve | - |
dc.contributor.author | Tyson, Gareth | - |
dc.date.accessioned | 2020-08-26T09:12:42Z | - |
dc.date.available | 2020-08-26T09:12:42Z | - |
dc.date.issued | 2015-11-16 | - |
dc.identifier.isbn | 978-1-4503-4047-2 | en_US |
dc.identifier.uri | http://hdl.handle.net/20.500.12738/482 | - |
dc.description.abstract | Web content delivery is one of the most important services on the Internet. Access to websites is typically secured via TLS. However, this security model does not account for prefix hijacking on the network layer, which may lead to traffic blackholing or transparent interception. Thus, to achieve comprehensive security and service availability, additional protective mechanisms are necessary such as the RPKI, a recently deployed Resource Public Key Infrastructure to prevent hijacking of traffic by networks. This paper argues two positions. First, that modern web hosting practices make route protection challenging due to the propensity to spread servers across many different networks, often with unpredictable client redirection strategies; and, second, that we need a better understanding why protection mechanisms are not deployed. To initiate this, we empirically explore the relationship between web hosting infrastructure and RPKI deployment. Perversely, we find that less popular websites are more likely to be secured than the prominent sites. Worryingly, we find many large-scale CDNs do not support RPKI, thus making their customers vulnerable. This leads us to explore business reasons why operators are hesitant to deploy RPKI, which may help to guide future research on improving Internet security. | en |
dc.language.iso | en | en_US |
dc.publisher | Association for Computing Machinery (ACM) | en_US |
dc.subject | BGP | en_US |
dc.subject | RPKI | en_US |
dc.subject | secure inter-domain routing | en_US |
dc.subject | deployment | en_US |
dc.subject | hosting infrastructure | en_US |
dc.subject | CDN | en_US |
dc.subject.ddc | 004: Informatik | en_US |
dc.title | RiPKI: The Tragic Story of RPKI Deployment in the Web Ecosystem | en |
dc.type | inProceedings | en_US |
dc.relation.conference | ACM Workshop on Hot Topics in Networks 2015 | en_US |
dc.description.version | Unknown | en_US |
tuhh.container.endpage | 11:7 | en_US |
tuhh.container.startpage | 11:1 | en_US |
tuhh.oai.show | true | en_US |
tuhh.publication.institute | Department Informatik | en_US |
tuhh.publication.institute | Fakultät Technik und Informatik | en_US |
tuhh.publisher.doi | 10.1145/2834050.2834102 | - |
tuhh.relation.ispartofseries | Proceedings of the 14th ACM Workshop on Hot Topics in Networks | en_US |
tuhh.type.opus | InProceedings (Aufsatz / Paper einer Konferenz etc.) | - |
dc.type.casrai | Conference Paper | - |
dc.type.dini | contributionToPeriodical | - |
dc.type.driver | contributionToPeriodical | - |
dc.type.status | info:eu-repo/semantics/publishedVersion | en_US |
dcterms.DCMIType | Text | - |
item.creatorGND | Wählisch, Matthias | - |
item.creatorGND | Schmidt, Robert | - |
item.creatorGND | Schmidt, Thomas C. | - |
item.creatorGND | Maennel, Olaf | - |
item.creatorGND | Uhlig, Steve | - |
item.creatorGND | Tyson, Gareth | - |
item.fulltext | No Fulltext | - |
item.creatorOrcid | Wählisch, Matthias | - |
item.creatorOrcid | Schmidt, Robert | - |
item.creatorOrcid | Schmidt, Thomas C. | - |
item.creatorOrcid | Maennel, Olaf | - |
item.creatorOrcid | Uhlig, Steve | - |
item.creatorOrcid | Tyson, Gareth | - |
item.seriesref | Proceedings of the 14th ACM Workshop on Hot Topics in Networks | - |
item.grantfulltext | none | - |
item.cerifentitytype | Publications | - |
item.tuhhseriesid | Proceedings of the 14th ACM Workshop on Hot Topics in Networks | - |
item.languageiso639-1 | en | - |
item.openairecristype | http://purl.org/coar/resource_type/c_5794 | - |
item.openairetype | inProceedings | - |
crisitem.author.dept | Department Informatik | - |
crisitem.author.orcid | 0000-0002-0956-7885 | - |
crisitem.author.parentorg | Fakultät Technik und Informatik | - |
Enthalten in den Sammlungen: | Publications without full text |
Volltext ergänzen
Feedback zu diesem Datensatz
Export
Alle Ressourcen in diesem Repository sind urheberrechtlich geschützt.