MPIC Experiment Methodology

Definitions

MPIC Deployment: A unique configuration of:

  • Cloud provider
  • Vantage point count
  • Vantage point locations
  • Quorum policy

Resilience: The measure of effectiveness of an MPIC deployment for a given victim. It represents the proportion of attacks successfully prevented.

Median Resilience: The median of the resiliences of several victims.

Setup

Victims/ Adversaries

These are the nodes that will engage in BGP hijacks against each other, representing potential victims and adversaries.

AWS Datacenters

These are the potential perspectives that can be deployed using AWS.

Google Cloud Platform Datacenters

These are the potential perspectives that can be deployed using Google Cloud Platform.

Experiment

1234567
Step 0 of 6

Before the attack begins, we have our network of perspectives in both Google Cloud Platform (GCP) and AWS ready to perform domain validation. For this animation, we only show 7 perspectives under one cloud provider.

Analysis

In post-processing, we analyze resilience across an extensive search space of ~300 million possible deployments. For each unique combination of:

  • Cloud provider
  • Vantage point count
  • Quorum policy

we compute the median and average resilience across all qualifying vantage point sets.

Through this large-scale evaluation, we determine the most resilient vantage point sets for any given set of constraints,which are conveniently presentedhere.