Donate
MANRS Observatory: Monitoring the State of Internet Routing Security Thumbnail
‹ Back
Mutually Agreed Norms for Routing Security (MANRS) 13 August 2019

MANRS Observatory: Monitoring the State of Internet Routing Security

Andrei Robachevsky
By Andrei RobachevskySenior Technology Programme Manager

Routing security is vital to the future and stability of the Internet, but it’s under constant threat. Which is why we’ve launched a free online tool so that network operators can see how they’re doing, and what they can improve, while anyone can see the health of the Internet at a glance. The MANRS Observatory measures networks’ adherence to MANRS – their “MANRS readiness” – a key indicator of the state of routing security and resiliency of the Internet.

Here’s what the MANRS Observatory is in a nutshell:

  • Performance Barometer: MANRS participants can easily monitor how well they adhere to the requirements of this initiative and make any necessary adjustments to their security controls.
  • Business Development: Participants can see how they and their peers are performing. They can leverage the MANRS Observatory to determine whether potential partners’ security practices are up to par.
  • Government: Policymakers can better understand the state of routing security and resilience and help improve it by calling for MANRS best practices.
  • Social Responsibility: MANRS implementation is simple, voluntary, and non-disruptive. The Observatory can help participants ensure they and their peers are keeping their networks secure, which helps improve routing security of the Internet as a whole.

The Observatory has two views: public, open to everyone, and private, available to MANRS participants. The public view user can look at the routing security metrics and statistics on a global, regional, and economic level, while MANRS participants can see performance of individual networks (of more than 64,000!) and even drill down to a detailed monthly incident report for the networks they operate.

  • The public view is aimed at anyone interested in routing security. Users can see the status at a glance for every country on an interactive global map and drill down into data for a chosen country.
  • The private view is intended for network operators. It lets them measure their MANRS readiness and quickly identify problematic areas to help them improve the security of their networks. It also adds an element of accountability where networks can see how well others are keeping their side of the street clean, which helps improve routing security of the Internet as a whole.

The metrics and statistics to measure MANRS readiness are calculated by tracking the number of incidents and networks involved, their anti-spoofing capabilities, and completeness of routing information in public repositories, such as IRRs and RPKI. This data is gathered from trusted third-party sources. (For more information on how MANRS readiness is measured, read “Measurement Framework.”) The Observatory was developed jointly with the MANRS community but still has to pass the test of real-life usage and validation by MANRS participants.

One of the main objectives of the Observatory was to report on cases of MANRS non-compliance, and it provides reliable information on that. But measuring network security from the outside is difficult, and even with highly-reputed data sources there are sometimes false positives or false negatives (an incident that went unnoticed by the data collection systems). To put it into context, in 2018 alone, there were more than 12,000 routing outages or attacks, such as hijacking, leaks, and spoofing. We’re working with our partners to continuously improve the quality of incident data.

While MANRS is seeing steady adoption – worldwide, there are now over 200 network operators and more than 30 IXPs supporting our initiative – we need more networks to implement the actions and more customers to demand routing security best practices. The more organizations applying MANRS actions, the fewer security and related incidents happening, the more secure and resilient the Internet!

Explore the MANRS Observatory.

‹ Back

Disclaimer: Viewpoints expressed in this post are those of the author and may or may not reflect official Internet Society positions.

Related articles

Routing Security is a Serious Problem – and MANRS Can Help. A Report from APRICOT 2018.
Routing Security is a Serious Problem – and MANRS Can Help. A Report from APRICOT 2018.
Mutually Agreed Norms for Routing Security (MANRS)6 March 2018

Routing Security is a Serious Problem – and MANRS Can Help. A Report from APRICOT 2018.

Last week, at APRICOT 2018 in Kathmandu, Nepal, there were a lot of talks and discussions focused on routing security...

U.S. R&E Community Embraces Routing Security
U.S. R&E Community Embraces Routing Security
Mutually Agreed Norms for Routing Security (MANRS)14 November 2018

U.S. R&E Community Embraces Routing Security

The Internet Society participated in a Routing Security Workshop that was held during the Internet2 Technology Exchange 2018 on 15...

Taking MANRS on the Road Going North
Taking MANRS on the Road Going North
Improving Technical Security19 October 2015

Taking MANRS on the Road Going North

Two weeks ago, we organized a panel discussion on the Mutually Agreed Norms for Routing Security (“MANRS”) document at NANOG65...

Join the conversation with Internet Society members around the world