Routing Security Research – MANRS Fellowship

Overview

As a MANRS (Mutually Agreed Norms for Routing Security) Policy Fellow, I developed data-driven cybersecurity policies and analyzed Pakistan's routing infrastructure for global compliance. This research project aimed to improve the security and resilience of the country's internet infrastructure by addressing vulnerabilities in the Border Gateway Protocol (BGP).

Challenge

Pakistan's internet infrastructure had experienced several major outages and security incidents due to BGP hijacking and misconfiguration. The country lacked comprehensive policies for routing security, and many ISPs were not implementing basic security measures. There was also limited awareness among policymakers about the importance of routing security for national cybersecurity.

Approach

The project combined technical analysis of routing data with policy research and stakeholder engagement. We collected and analyzed BGP routing data to identify vulnerabilities, benchmarked Pakistan's routing security against global standards, and developed policy recommendations tailored to the local context. A key component was building a coalition of technical experts, ISPs, and government officials to drive implementation.

Technologies Used

• BGP monitoring tools and datasets
• Network analysis software
• RPKI validation tools
• Data visualization platforms
• Policy analysis frameworks

Implementation

The implementation involved three phases: assessment, engagement, and policy development. In the assessment phase, we analyzed routing data from all major Pakistani ASNs (Autonomous System Numbers) to identify security gaps. The engagement phase included workshops with ISPs, regulators, and academic institutions to build awareness and technical capacity. The policy development phase resulted in a comprehensive framework for national routing security that aligned with international best practices while addressing local challenges.

Results & Impact

• Completed the first comprehensive assessment of Pakistan's routing security posture
• Identified critical vulnerabilities in 73% of surveyed networks
• Engaged with 15+ ISPs representing over 85% of Pakistan's internet users
• Developed policy recommendations that were partially adopted by the telecom regulator
• Increased RPKI adoption among Pakistani networks by 47%
• Research findings presented at international forums including APRICOT and RIPE

Lessons Learned

This project highlighted the gap between technical solutions and policy implementation in cybersecurity. While the technical aspects of routing security are well-established, the governance and incentive structures needed for widespread adoption are complex and vary significantly by region. Building bridges between technical communities and policymakers proved essential for making progress.

Next Steps

Ongoing work includes monitoring implementation of the recommendations, providing technical assistance to ISPs, and expanding the research to include emerging threats to routing infrastructure.