Post by ATHENE researcher on APNIC Blog: Stalloris: RPKI downgrade attack
Cybersecurity expert Prof. Haya Shulman and her team have demonstrated that RPKI deployments in the Internet are vulnerable to downgrade attacks: adversaries can disable RPKI validation exposing networks to BGP prefix hijacks attacks. Haya Shulman describes the findings and conclusions the researchers draw from their attack in her latest blog post on APNIC.
This article is based on a research paper Stalloris: RPKI Downgrade Attack, by Tomas Hlavacek, Philipp Jeitner, Donika Mirdita, Haya Shulman, and Michael Waidner that was accepted for publication at USENIX Security 2022. This research will also be presented at BlackHat USA 2022.
APNIC Blog is a tech blog hosted by APNIC, one of the five Regional Internet Registries in the world.show all news