ARTEMIS
ARTEMIS (Automatic and Real-Time dEtection and MItigation System), is a research effort between the INSPIRE group, FORTH, Greece (www.inspire.edu.gr) and the Center for Applied Internet Data Analysis (CAIDA), University of California San Diego, USA (www.caida.org).
ARTEMIS is a defense approach versus BGP prefix hijacking attacks (a) based on accurate and fast detection operated by the AS itself, leveraging the pervasiveness of publicly available BGP monitoring services and their recent shift towards real-time streaming, thus (b) enabling flexible and fast mitigation of hijacking events. Compared to existing approaches/tools, ARTEMIS combines characteristics desirable to network operators such as comprehensiveness, accuracy, speed, privacy, and flexibility. With the ARTEMIS approach, prefix hijacking can be neutralized within a minute!
News
- Public release of the ARTEMIS BGP prefix hijacking detection tool, as open-source software!
- Our paper titled "ARTEMIS: Neutralizing BGP Hijacking within a Minute" has been accepted for publication in ACM/IEEE Transactions on Networking (ToN)!
- We have been awarded a grant from the RIPE NCC Community Projects 2017 to build an open-source tool of ARTEMIS!
Software
Publications
"ARTEMIS: Neutralizing BGP Hijacking within a Minute"
Pavlos Sermpezis, Vasileios Kotronis, Petros Gigis, Xenofontas Dimitropoulos, Danilo Cicalese, Alistair King, and Alberto Dainotti, "ARTEMIS: Neutralizing BGP Hijacking within a Minute", in ACM/IEEE Transactions on Networking (ToN), vol. 26, iss. 6, 2018. (https://arxiv.org/abs/1801.01085 )"A survey among Network Operators on BGP Prefix Hijacking"
Pavlos Sermpezis, Vasileios Kotronis, Alberto Dainotti, and Xenofontas Dimitropoulos, "A survey among Network Operators on BGP Prefix Hijacking", in ACM SIGCOMM Computer Communications Review (CCR), vol. 48, no. 1, January 2018. (https://arxiv.org/abs/1801.02918 )"ARTEMIS: Real-Time Detection and Automatic Mitigation for BGP Prefix Hijacking (demo)"
Gavriil Chaviaras, Petros Gigis Pavlos Sermpezis, Xenofontas Dimitropoulos, “ARTEMIS: Real-Time Detection and Automatic Mitigation for BGP Prefix Hijacking (demo),” Proceedings of the 2016 conference on ACM SIGCOMM 2016 Conference, 625-626. (demo/poster) Florianopolis, Brazil, 2016.
Presentations / Blog Articles / Videos
- Presentations "ARTEMIS: Neutralizing BGP Hijacking Within a Minute"
- ACM SIGCOMM, ERC Networking workshop, presentation, August 2018.
- RIPE 76, Routing Working Group, presentation, May 2018.
- IETF-102 meeting, ANRW workshop, presentation, July 2018.
- Dagstuhl "Secure Routing for the Internet" Seminar, presentation and discussion, June 2018.
- GRNOG 7 Meeting, presentation, July 2018.
- GRNET Digital Technology Symposium, November 2018.
- LINX-103 member conference, November 2018.
- Blog articles "ARTEMIS: Neutralizing BGP Hijacking Within a Minute"
- Blog articles (by others)
- Hasura Case Study: ARTEMIS, blog.hasura.io, 2019
- Why You Need a BGP Hijack Response Plan, securityintelligence.com, 2018
- Open-source tool aims to curb BGP hijacking amid Chinese espionage concerns, cyberscoop.com, 2018
- Net boffins brew poison for BGP hijacks, theregister.co.uk, 2018
- Three of the best: Cybersecurity, apnic.net, 2018
- Poster
- Demo video
ARTEMIS over ONOS
ARTEMIS over ONOS is an implementation of ARTEMIS for SDN-controlled networks, as a multi-module application running on top of the Open Network Operating System (ONOS).
ARTEMIS over ONOS source and documentation
Contact Us
{vkotronis, sermpezis, fontas} (at) ics_dot_forth_dot_gr {alberto, alistair} (at) caida_dot_org
Acknowledgements
This work was supported by the European Research Council grant agreement no. 338402 (NetVolution Project), the European Research Council grant agreement no. 790575 (PHILOS Project), the RIPE NCC Community Projects Fund, the National Science Foundation (NSF) grant CNS-1423659 and OAC-1848641, the Department of Homeland Security (DHS) Science and Technology Directorate, Cyber Security Division (DHS S&T/CSD) via contract number HHSP233201600012C, and the Comcast Innovation Fund.