Why what happened to the Internet in Syria couldn't happen here
The diversity of networks and providers in the U.S. would make a shut down unlikely, if not impossible
Computerworld - The Internet shutdown in Syria likely took very little to accomplish considering the country's limited Internet infrastructure and international connectivity, network analysts said Friday.
Such a move would be much harder, if not impossible, to achieve at least from a technology standpoint, in the U.S. or other democracies with mature Internet infrastructures, they said.
Syria on Thursday suddenly dropped off the Internet, as the result of what many believe was the government's decision to pull the plug on Internet connectivity.
Internet monitoring companies, including Renesys, Arbor Networks and CloudFlare on Thursday reported seeing the drop off around 6 a.m. ET when all 84 of Syria's IP address blocks suddenly became unavailable. All Internet traffic between Syria and the rest of the world stop flowing within a period of five minutes.
Since then, the country has remained off the grid, prompting CloudFlare to describe the situation as a "more complete blackout" than any witnessed in other countries in the region over the past two years.
As unusual as such blackouts are, they are not particularly hard to pull off in a country like Syria, said Earl Zmijewski, general manager at Renesys.
"In Syria you have a situation where there is one incumbent Internet service provider," Zmijewski said. All Internet communications go through the state-run Syrian Telecommunications Establishment (STE), which has total control over them.
All it would have taken for the Syrian government to shut down the entire country's Internet was a single call to STE, he said. STE could have simply switched off the routers handling international traffic so they would stop announcing routes to the global Internet, Zmijewski said.
The same result could have just as easily been achieved through a software update changing router configurations, or by shutting off power to the building or room housing the routers and servers.
"The routers inform the world 'hey I own these networks, send me all the traffic to them,' " he said. "If they stop doing that, the routes are withdrawn. It can be done with software, by pulling the plug on the cable or by turning the power off to your facility."
The ease with which an entire country can be disconnected from the Internet depends almost entirely on the number of Internet entry and exit points it has, said Carlos Morales, vice president of global sales engineering and operations at Arbor Networks. It's easy to cut countries like Burma and Syria off the Internet because all they have is a single government-owned ISP with an international connection, he said.
Not only are such infrastructures easy to shut down, they are also much more susceptible to denial-of-service attacks and router-poisoning attacks, he said. "The Internet is all about IP routing reachability," he said. "People traveling on roads know how to get to their destination. On the Internet, at every point you need to be told where to go next." So if the routers that perform that task for a country are shut down, the country disappears from the Internet, Morales said.
- Securing Mobility, From Device to Network At one time, the process of managing and securing mobile devices and applications was fairly straightforward. Most organizations worried about one application (email)...
- Need to Replace MS Threat Management Gateway? Read this article to learn how F5's Secure Web Gateway solution provides a full set of features that can help you successfully migrate...
- The Shortfall of Network Load Balancing Applications running across networks encounter a wide range of performance, security, and availability challenges as IT department strive to deliver fast, secure access...
- Leave No App Behind with Software Defined Application Services F5 Software Defined Application Services (SDAS) is the next-generation model for delivering application services that enables service injection, consumption, automation, and orchestration across...
- Live Webcast IBM FlashSystem V840: Leveraging Software-Defined Flash to Drive Your Business With end-to-end, tightly integrated functionality and super-fast flash technology, products like IBM FlashSystem V840 Enterprise Performance Solution empower businesses to leverage the efficiency...
- DevOps with PureApplication System: Reduce cost and speed delivery with an integrated IBM Cloud solution Join this webcast to hear what ING Netherlands has been able to achieve while deploying DevOps tools from IBM Rational. An ING executive...
- What should I look for in a Next Generation Firewall? SANS Provides Guidance With so many vendors claiming to have a Next Generation Firewall (NGFW), it can be difficult to tell what makes each one different.... All Networking White Papers | Webcasts
Our new bimonthly Internet of Things newsletter helps you keep pace with the rapidly evolving technologies, trends and developments related to the IoT. Subscribe now and stay up to date!