E-Bay’s Romainan Deliema

Posted · Add Comment

EBay goes far to fight fraud — all the way to Romania December 26 2007 http://www.latimes.com/business/printedition/la-fi-ebay26dec26,0,2611360.story   While some may applaud E-Bay’s, the US FBI, US Secret Service, and other’s activities battling cyber-crime in Romania, this article does not paint a picture of optimism. The reality is that we’ve had NO success in Romania – [...]

Are We Ready for IP-NGN?

Posted · Add Comment

IBM’s 2007 Survey of SP’s “The State of Security in Carrier Service Delivery” is out and making the rounds of the security trade journals. While surveys like these are obvious marketing tools (i.e. buy IBM’s security consulting services and products), the results are useful data points. “… 87 percent of the curvey participants indicated that [...]

Turning the Corner?

Posted · Add Comment

Are we about to turn the corner in our battle with cybercrime? Is our threat vector about to make a dramatic change of direction? Is the really light at the end of the tunnel? A year ago, the available data would have me believe that the problem will never get better. The month all has [...]

Victimized Customers – Botnet’s Triple Edge of Crime

Posted · Add Comment

Security pundits and professionals love to extol the badness of how botnets can be used to perpetrate crime. They unhesitatingly point out how operators allow these botnets to exist unintended, taking up resources, bandwidth, server time, and contagion. For the computers infected with the bots, no sympathy. They are core to the evil of the [...]

What is your prefix filtering Policy?

Posted · Add Comment

BGP Prefix filtering is one of the essentials glues which hold the Internet together. Yet, many SPs don’t put the level of detailed thinking needed to insure all policies, security issues, and service requirements are meet. Some things I see with BGP prefix filtering policies which are often forgotten are: Comments used inside the policy. [...]

Getting Started with SP Security

Posted · Add Comment

People ask me how do I get started with safe guarding my Service Provider (SP) network. The place I point, is a tutorial we’ve created with NSP-SEC. This tutorial goes through simple things that helps a engineer in a SP gets their feet wet. Check out the latest version presented at NANOG here: ISP Security [...]

Principles of Trans-Oceanic Systems

Posted · Add Comment

Interconnecting with Services Providers (SPs) across the ocean is expensive and risky. The cost of the links are often the largest entry in the OPEX budget. All of it in hard currency which leaves the company (vs paying another department inside the SP). The risk to these links is often over looked. Oceanic telecommunications systems [...]

 
 
DMS