SecurityBrief UK - Technology news for CISOs & cybersecurity decision-makers
United Kingdom
Guides
#
cloud security
#
cybersecurity
#
endpoint protection
#
firewalls
#
ransomware
Search
Story image
#
Cybersecurity
#
Telco
#
Deutsche Telekom

RtBrick unveils new peering security tools for ISPs

Today
Author image
By Kaleah Salmon, Journalist

RtBrick has introduced a set of Internet peering security features tailored for disaggregated ISP networks, addressing growing network security challenges faced by operators.

RtBrick's new security features include BGP RPKI, TCP-AO for BGP and LDP, BGP Flowspec, sFlow, and GTSM. These features are designed to secure peering and edge routers, enabling network operators to safeguard their systems against malicious attacks while maintaining the cost advantages offered by disaggregated architecture.

BGP Flowspec is intended to help networks fend off Distributed Denial of Service (DDoS) attacks. Meanwhile, Resource Public Key Infrastructure (RPKI) provides network owners with a means to validate and secure critical route updates, preventing route hijacking and misconfigurations that can compromise network integrity.

The TCP Authentication Option (TCP-AO) enhances the security and authenticity of TCP segments during BGP and LDP sessions, offering a modern alternative to legacy mechanisms such as TCP MD5. Additionally, sFlow samples packets from routers and sends them for analysis to detect abnormal traffic patterns and potential threats proactively.

Generalised TTL Security Mechanism (GTSM) works to prevent route hijacking by remote intruders and protects against CPU-utilisation-based attacks, further securing the network infrastructure.

RtBrick's approach to network disaggregation, which involves separating hardware and software traditionally offered as a single routing system, allows operators to combine different vendor technologies on low-cost hardware derived from off-the-shelf networking silicone. This facilitates the implementation of RtBrick's routing software, empowering ISPs to secure their disaggregated routers used for peering and edge services efficiently.

Hannes Gredler, Chief Technical Officer and Founder of RtBrick, commented on the necessity of these features: "As ISPs battle consumer and regulatory pressure to secure their networks against sophisticated attacks, they need robust security tools. Adding this latest feature-set will allow ISPs to take advantage of the cost-points and flexibility of network disaggregation to provide Internet peering while effectively securing their key infrastructure."

RtBrick's software is deployed by a diverse range of operators. These include large telecommunications companies like Deutsche Telekom, Europe's largest telco, and more regionally focussed ISPs such as WOBCOM. At WOBCOM, implementing the BGP Flowspec security feature has created a disaggregated multiservice edge.

Follow us on:
Follow us on LinkedIn Follow us on X
Share on:
Share on LinkedIn Share on X
Related stories
Ivanti issues patch for critical security vulnerability
WatchGuard acquires ActZero to boost cybersecurity services
Dragos names Ekta Singh-Bushell as first Chief Operating Officer
Jane Frankland awarded MBE for cyber security advocacy
Exabeam launches new security platform with Open API
Top stories
Gen Z & Millennials face higher social media compromises
Westcon-Comstor integrates AWS into 3D Lab for partners
Siemens unveils Apple Wallet access for Building X users
Mandiant reveals details of major Ivanti VPN vulnerability
Integrity360 acquires Nclose to boost global expansion plans