Hi Fred Thanks for raising this interesting question.
Yes it has happened and will continue to do so. It will a very sensitive topic that none of the entities attack would want to be publicized at all cost. That said, it is much easier for a private institution to keep it under the wraps. Are they taking measures? Absolutely! It is pretty recent that we now have authentication based on which computer is used to login using 2 step verification. The two Step verification involving confirmation of code sent to mobile can be considered a tell tale sign. I think the difference with the latest attack is that - it involved the DNS system or other services that cannot rely on the two step verification for instance which could potentially identify it the requests are from botnets. The larger and indiscriminate you are about users to your service, the higher the risk of a DDOS attack waiting to happen. - It is harder to keep it under the wraps when you have multiple parties involved. Coming back to the mapping systems, while it may be vulnerable just as many other components of the internet, now is time for rethinking. I am really looking forward to the technical plenary. The latest attack highlights the urgency to get started on working on it. The motivation for the IDEAS problem statement is to identify these critical issues and provide a framework leveraging properties in ID enabled networks. IMHO, it is best to have a framework for all ID enabled networks rather than going about it in piecemeal, and this is the goal for IDEAS, or at least it is a starting point. Padma -----Original Message----- From: Ideas [mailto:[email protected]] On Behalf Of Dino Farinacci Sent: Monday, October 31, 2016 10:03 AM To: Templin, Fred L Cc: Padma Pillay-Esnault; [email protected]; [email protected] Subject: Re: [Ideas] [lisp] FW: Technical plenary: Attacks against the architecture - implications for the Network Mapping System > Hi, one observation and one question. The observation is that anything on the > open > Internet that provides a service can be subject to Denial of Service – and, I > am not > just talking about the LISP mapping system. The question is how is it that we > have > not yet seen DoS attacks take down critical Internet services such as online > banking; > have we just been lucky up to now? Fred, it has happened. Just hidden to avoid headlines and fear. Dino _______________________________________________ Ideas mailing list [email protected] https://www.ietf.org/mailman/listinfo/ideas _______________________________________________ lisp mailing list [email protected] https://www.ietf.org/mailman/listinfo/lisp
