Extended Security Risks in IP Networks
Daniel Kharitonov, Oscar Ibatullin
TL;DR
This paper explores the security vulnerabilities of IP networks, revealing that modern network devices can be hijacked to replicate and redirect traffic, posing significant infrastructure risks beyond traditional service disruptions.
Contribution
It introduces new methods for hijacking live network traffic and demonstrates the capabilities of modern network platforms to manipulate data, highlighting a previously underexplored security threat.
Findings
Modern network devices can be hijacked for traffic replication and redirection
Hijacking techniques pose greater threats than traditional service disruptions
The paper demonstrates practical methods for traffic manipulation
Abstract
Exploitation techniques targeting intermediate (transit) network nodes in public and private networks have been theoretically known and empirically proven to work for quite some time. However, very little effort has been made to look into the network-specific risks of compromising the Internet infrastructure to this date. In this publication, we describe several methods of hijacking live network traffic following a successful attack on a router or switch. We demonstrate that modern network platforms are capable of targeted traffic replication and redirection for online and offline analysis and modification, which can be a threat far greater than loss of service or other risks frequently associated with such exploits.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsNetwork Security and Intrusion Detection · IPv6, Mobility, Handover, Networks, Security · Software-Defined Networks and 5G