29.1k unique visitors in the last 3 days

China Telecom Misdirected US Net Traffic Through China

By Eric Priezkalns
General
For 30 months internet traffic sent from Los Angeles to Washington DC was routed via autonomous systems in China.

For two and a half years internet traffic originating in Los Angeles was misdirected through the Chinese mainland before arriving at its destination in Washington DC, wrote Doug Madory, Director of Internet Analysis for Oracle’s Dyn Global Business Unit, in a blog post last week. Madory’s illustration of what happened is reproduced above.

The routing of internet traffic is subject to the Border Gateway Protocol (BGP), as implemented through the autonomous systems (AS) managed by network operators. Madory’s analysis concluded that the bizarre routing of US domestic traffic through mainland China occurred because AS4134, an autonomous system on the China Telecom backbone, incorrectly handled routing announcements for AS703, an autonomous system belonging to Verizon. This caused other international carriers – including Tata, Telia and Vodafone – to send traffic meant for Verizon’s AS703 through China Telecom’s AS4134 in mainland China.

The impact of the misdirection was mitigated by some networks, as explained by Madory:

Over the course of several months last year, I alerted Verizon and other Tier 1 carriers of the situation and, ultimately, Telia and GTT (the biggest carriers of these routes) put filters in place to ensure they would no longer accept Verizon routes from China Telecom. That action reduced the footprint of these routes by 90% but couldn’t prevent them from reaching those who were peering directly with China Telecom.

No claims have been made about whether the misdirection was accidental or deliberate. However, routing the traffic through China has obvious implications for security. Madory is a supporter of a proposed IETF standard that would use public key cryptography to create signatures that link a BGP route announcement with the correct originating AS. The objective of this standard would be to prevent BGP hijacking and the route ‘leaks’ which occur when routing announcements are propagated which violate the policies of one of the automated systems in the relevant path. The lead author of the draft for RPKI-based AS path verification is Alexander Azimov of QRator Labs.

Eric Priezkalns
Eric Priezkalnshttp://revenueprotect.com

During his career, Eric has been a Director of Risk Management for a national telco, the Chief Executive of the Risk & Assurance Group, a Chief Marketing Officer for a software business, a consultant, a public speaker and the publisher of Commsrisk since its launch in 2006. Look here for more about the history of Commsrisk and the role played by Eric.

The comms providers that Eric has worked for include Qatar Telecom, Cable & Wireless, T‑Mobile, Sky and Worldcom. In addition to his proficiency at speaking about the current scamdemic, Eric is also a qualified chartered accountant and a subject matter expert in consumer protection, enterprise risk management, fraud prevention, data integrity and billing accuracy. Eric was the lead author of Revenue Assurance: Expert Opinions for Communications Providers, published by CRC Press. He can be reached through the contact form on this website.

Related Articles

PreviousNext

The Commsrisk Global Fraud Dashboard


Our Global Fraud Dashboard uses AI-powered search to collate, update and visualize data about scams and other network abuses from around the world. New charts are added each month. See it here.

Get Our Weekly Newsletter by Email

Articles copyright © the author, all else copyright © Revenue Protect Limited