Mutually Agreed Norms for Routing Security (MANRS)

MANRS compliance

What is it?

MANRS introduced a set of actions - some compulsory, others recommended. The actions come in the form of industry best practices and technical solutions for involved parties, such as network operators and Internet Exchange Points (IXPs), and more recently cloud providers, Content Delivery Networks (CDNs) and equipment vendors. The results presented here concern network operators only.

Network operators are encouraged to implement the following actions to address the most common threats against routing. The 3 compulsory actions defined by MANRS are:

• Filtering: preventing propagation of incorrect routing information
• Coordination: facilitating global operational communication and coordination
• Global validation with Internet Routing Registry (IRR): facilitating routing information on a global scale through the Internet Routing Registry (IRR)

The 2 recommended actions are:

• Anti-spoofing: preventing the propagation of traffic with spoofed source IP addresses
• Global validation with Resource Key Infrastructure (RPKI): facilitating routing information on a global scale through the Resource Public Key Infrastructure (RPKI)

What is the current situation?

In the EU, the network operators that participate in the initiative show a quite high compliance rate, especially for the compulsory actions.