Cloudflare Radar's new BGP origin hijack detection system
The article discusses the development of a new BGP Hijack Detection system by Cloudflare Radar, which is now available on both their website and API portal for public use. The detection system identifies potential hijacks in real-time using various evidence tags to determine likelihoods and assign confidence scores. This tool helps network administrators monitor and respond appropriately to BGP attacks more efficiently. Users can access the detected events through Cloudflare Radar, with features such as event tables, search capabilities, and customizable alerters for webhooks or emails. The system is implemented in Rust and runs on a single binary application connected to a PostgreSQL database, making it lightweight and portable. In the future, Cloudflare plans to introduce additional routing security data to improve the detection system's capabilities further.
Company
Cloudflare
Date published
July 28, 2023
Author(s)
Mingwei Zhang, Celso Martinho
Word count
3003
Language
English
Hacker News points
13