Russia May Disconnect From The Internet

Uploaded on 2019-02-19 in GOVERNMENT-National, FREE TO VIEW, BUSINESS-Services-IT & Telecoms, INTELLIGENCE-Hot Spots-Russia, TECHNOLOGY--Developments

What if the world wide web suddenly went dark? No Netflix? No YouTube? No Facebook? While this may sound like bliss for some, the full extent of our reliance on Internet would quickly become evident and it would be catastrophic.

This may be why Russia has suddenly become so interested in ensuring its Internet is isolated, entirely internal and resilient.

It’s no secret that Moscow has one of the most effective cyber-attack capabilities in the world. It has been blamed for a recent spate of incidents, such as the hack of the US Democratic Party server and sabotage of Ukrainian power plants and businesses.

Recently, four Russian intelligence agents were expelled from the Netherlands after being caught attempting to hack a chemical weapons analysis facility investigating the Novichok nerve-agent attack on the UK city of Salisbury. So it really comes as no surprise that the Kremlin wants to isolate its own internet from the rest of the world. Russia is planning to briefly shutdown their Internet, as part of a testing of its cyber-defences. This is laid out in a new law which was proposed in December with the intention of making Runet, (Russia’s Internet) independent.

The test will mean data passing between Russian citizens and organisations stays inside the nation rather than being routed internationally and the government wants to test this process by April 1st this year.

How does a Country Unplug itself from the Internet? 
It's important to understand a little about how the Internet works. It is essentially a series of thousands of digital networks along which information travels. It has no central management and it relies on many different infrastructures from undersea cables, and satellites and connecting and sending systems all over the globe. These networks are connected by router points, and they are notoriously the weakest link in the chain.

What Russia wants to do is to bring those router points that handle data entering or exiting the country within its borders and under its control, so that it can then pull up the drawbridge, as it were, to external traffic if it's under threat, or if it decides to censor what outside information people can access.

China's firewall is probably the world's best known censorship tool and it has become a sophisticated operation. It also polices its router points, using filters and blocks on keywords and certain websites and redirecting web traffic so that computers cannot connect to sites the state does not wish Chinese citizens to see.

Major Disruption
The draft law, called the Digital Economy National Program, requires Russia's ISPs to ensure that it can operate in the event of foreign powers acting to isolate the country online. Nato and its allies have threatened to sanction Russia over the cyber-attacks and other online interference which it is regularly accused of instigating. The measures outlined in the law include Russia building its own version of the net's address system, known as DNS, so it can operate if links to these internationally-located servers are cut.

Currently, 12 organisations oversee the root servers for DNS and none of them are in Russia. However, many copies of the net's core address book do already exist inside Russia suggesting its net systems could keep working even if punitive action was taken to cut it off.

The test is also expected to involve ISPs demonstrating that they can direct data to government-controlled routing points. These will filter traffic so that data sent between Russians reaches its destination, but any destined for foreign computers is discarded.

Eventually the Russian government wants all domestic traffic to pass through these routing points. This is believed to be part of an effort to set up a mass censorship system akin to that seen in China, which tries to scrub out prohibited traffic. 

Russian news organisations reported that the nation's ISPs are broadly backing the aims of the draft law but are divided on how to do it. They believe the test will cause "major disruption" to Russian internet traffic, reports tech news website ZDNet.
The Russian government is providing cash for ISPs to modify their infrastructure so the redirection effort can be properly tested.

BBC:       News.Au:

You Might Also Read: 

Russia Is Building A Separate Military Cloud:

 

 

« China Accused Of A Cyber-Attack On Australia's Parliament
The US Pentagon Is Speeding-Up Its Cloud Strategy »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

GuardiCore

GuardiCore

GuardiCore is an innovator in internal data center security and breach detection and is transforming security inside data centers and clouds.

Plurilock Security Solutions

Plurilock Security Solutions

Plurilock is a real-time cybersecurity solution that uses artificial intelligence to identify, prevent, and eliminate insider threats.

Cyberra Legal Services (CLS)

Cyberra Legal Services (CLS)

Cyberra Legal Services provides cyber law advisory, cyber crime consultancy, cyber law compliance audit, cyber security, cyber forensics and cyber training services.

ClearBlade

ClearBlade

ClearBlade is the Edge Computing software company enabling enterprises to rapidly engineer and run secure, real-time, scalable IoT applications.

Innosphere Ventures

Innosphere Ventures

Innosphere Ventures is Colorado’s leading science and technology incubator, accelerating the success of high-impact startup and scaleup companies.

CUJO AI

CUJO AI

CUJO AI is the global leader in the development and application of artificial intelligence to improve the security, control and privacy of connected devices in homes and businesses.

PixelPlex

PixelPlex

PixelPlex is a blockchain and custom software development company with offices and developers in New York, Geneva, and Seoul.

Sharktech

Sharktech

Sharktech designs, develops, and supports advanced DDoS protection and web technologies.

Barikat Cyber Security

Barikat Cyber Security

Barikat is a provider of information security solution and services including security analysis and compliance, security testing, managed security services, incident response and training.

FoxTech

FoxTech

FoxTech is an independent, friendly and deeply specialised cyber security company in the UK, with expertise spanning decades of Public Sector and Government services.

GeoEdge

GeoEdge

GeoEdge is the premier provider of ad security and quality solutions for the online and mobile advertising ecosystem.

Upstack

Upstack

UPSTACK - One partner, end-to-end expertise, helping develop the solutions you need – when you need them.

Safe Decision

Safe Decision

Safe Decision is an information technology company offering Cyber Security, Network, and Infrastructure Services and Solutions.

FutureRange

FutureRange

Specialising in IT Managed Services, Cybersecurity and Digital Transformation, FutureRange experts provide professional IT services for clients throughout Ireland and beyond.

aFFirmFirst

aFFirmFirst

aFFirmFirst is a unique software solution offering a simple yet effective way for businesses to protect and control their online images and logo, as well as allowing one-click website verification.

InfoSecTrain

InfoSecTrain

InfoSecTrain are a leading training and consulting organization dedicated to providing top-tier IT security training and information security services to organizations and individuals across the globe