Internet Infrastructure Review (IIR) Vol.54
March 2022

Download All[14.2MB]

• Executive Summary[1.31MB]
• Periodic Observation Report "SOC Report"[1.99MB]

  This report summarizes a year's worth of our SOC's observations and communicates information in a format that makes it easy to revisit past events. Section 1.2 looks at security topics that rose to prominence in Japan in 2021 in a calendar format, and Section 1.3 discusses observations our SOC analysts focused on in a variety of categories.

• Focused Research (1) "Creating a mac_apt Plugin (Part 1)"[5.68MB]

  Digital forensics is so well provided for on Windows that free and open source tools alone are sufficient for analyzing most artifacts. Yet in the case of macOS-which, like Windows, is widely used as a desktop OS-relatively few commercial products, not to mention free and open source tools, are available.
  This probably reflects the relative OS market shares and needs within the digital forensics market. But the last few years have seen the release of open source forensic analysis tools for macOS that implement just enough features to be practically useful. In my case, I have been following a tool called mac_apt closely. This has been a somewhat lengthy preamble, but I will now go over the basics of creating plugins for the mac_apt forensic analysis framework for macOS.

• Focused Research (2) "The Internet in Crimea: Changes in Connectivity Revealed by an Analysis of Routing Data"[11.1MB]

  In 2014 the Russian Federation laid claim on Crimea, causing a change of regime and reportedly profound changes in Internet regulation and connectivity on the peninsula. Those changes were evident in our Internet measurements. This report is a summary of a paper presented at the Global Internet Symposium 2020(*1).

  • (*) Romain Fontugne, Ksenia Ermoshina, Emile Aben. "The Internet in Crimea: a Case Study on Routing Interregnum", Global Internet Symposium 2020. Paris, France. June 2020.