National Research Center for Applied Cybersecurity ATHENE: Severe Vulnerabilities Discovered in Software to Protect Internet Routing

12.4.2024 08:49:14 CEST | news aktuell GmbH | Press release

A research team from the National Research Center for Applied Cybersecurity ATHENE led by Prof. Dr. Haya Schulmann has uncovered 18 vulnerabilities in crucial software components of Resource Public Key Infrastructure (RPKI). RPKI is an Internet standard meant to protect Internet traffic from being hijacked by hackers. By now, all affected vendors provided patches for their products. The vulnerabilities could have had devastating consequences: Internet hijacks have already been exploited, e.g., for phishing passwords and other sensitive information, tricking certificate authorities into issuing fraudulent Web certificates, stealing cryptocurrency, distributing malware, and poisoning caches of DNS servers.

Frankfurt and Darmstadt, April 2024

The ATHENE team consisting of Prof. Dr. Haya Schulmann and Niklas Vogel, both from Goethe University of Frankfurt, Donika Mirdita from TU Darmstadt, and Prof. Dr. Michael Waidner from TU Darmstadt and Fraunhofer SIT uncovered and disclosed 18 vulnerabilities. The National Vulnerability Database (NVD), operated by the US National Institute of Standards and Technology (NIST), assigned five Common Vulnerabilities and Exposures (CVE) entries to these vulnerabilities, some critical with a score of 9.3 out of 10. The team used a testing tool, CURE, which they developed specifically for this project and which ATHENE makes available free of charge to all developers of RPKI software. The researchers found vulnerabilities in all popular implementations of the validator component of RPKI. They range between crashes, violation of standard behavior, and even severe bugs that allow a network adversary to completely take over an RPKI certificate hierarchy in order to inject its own trust anchor – effectively being able to forge authentic and valid yet bogus routing information (i.e., BGP announcements). It is unknown whether any of the vulnerabilities were already exploited by hackers in the wild.

RPKI is a relatively new standard. Today, about 50% of the Internet’s network prefixes are covered by RPKI certificates, and 37.8% of all Internet domains validate RPKI certificates. In particular, many large providers and operators support RPKI, e.g., Amazon Web Services, Cogent, Deutsche Telekom, Level 3, and Zayo.

The research work was carried out in the ATHENE research area Analytic Based Cybersecurity (ABC) (more information at https://abc.athene-center.de/en/ ) and appeared at the 2024 Network and Distributed System Security (NDSS) Symposium in San Diego, California, USA. The research paper can be downloaded from https://www.ndss-symposium.org/ndss-paper/the-cure-to-vulnerabilities-in-rpki-validation/. The testing tool CURE developed and used by the researchers to uncover the vulnerabilities can be downloaded from https://github.com/rp-cure/rp-cure.

The National Research Center for Applied Cybersecurity ATHENE is a research center of the Fraunhofer Society that brings together the Fraunhofer Institutes for Secure Information Technology (SIT) and for Computer Graphics Research (IGD), Technische Universität Darmstadt, Goethe-Universität Frankfurt am Main, and Darmstadt University of Applied Sciences. With more than 600 scientists, ATHENE is Europe's most prominent cybersecurity research center and Germany’s leading scientific research institution in this domain. ATHENE is supported by the German Federal Ministry of Education and Research (BMBF) and the Hessian Ministry for Higher Education, Research, Science and the Arts (HMWK). Further information about ATHENE can be found at https://www.athene-center.de/en/.

Press Contact: Mrs. Cornelia Reitz, cornelia.reitz@athene-center.de

Subscribe to releases from news aktuell GmbH

Subscribe to all the latest releases from news aktuell GmbH by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from news aktuell GmbH

Slovak outlet Denník N republishes numerous false allegations about Alisher Usmanov that courts have already held to be unlawful13.3.2026 08:48:33 CET | Press release

(Hamburg, Germany - 12 March 2026) On 11 March 2026, the Slovak news outlet Denník N published an article concerning the alleged efforts of the Slovak government to secure the removal of two Russian nationals from the EU sanctions list. The article contained an extensive passage concerning our client, Mr Alisher Burkhanovich Usmanov. By letter dated 12 March 2026, Denník N was requested, in order to avoid court proceedings, to provide a cease-and-desist undertaking backed by a contractual penalty. “The article was published on the eve of the European Commission’s decision on the extension of the sanctions. It reads as if its authors had taken particular care to assemble, in a single piece, every factual allegation that courts have previously found to be unlawful,” said Mr Usmanov’s lawyer, Joachim Nikolaus Steinhöfel. The article contained a dozen such statements about Alisher Usmanov, even though these very allegations have for years been prohibited, retracted, deleted or corrected in

Ship parades, evening shows and partner region Liverpool The 837th HAMBURG PORT ANNIVERSARY with a top programme11.3.2026 14:02:16 CET | Press release

(Hamburg, 11 March 2026) From 8 to 10 May 2026, Hamburg is celebrating its 837th HAMBURG PORT ANNIVERSARY. The programme includes traditional highlights such as the arrival and departure parades and the unique tugboat ballet, as well as several evening shows and the fascinating fireworks display. The programme will be supplemented by new events on the water and on land. The Big Arrival Parade on Friday, 8 May, at 1:30 p.m. marks the start of the festivities and is always an unforgettable experience: more than 100 impressive ships sail up the Elbe right before the eyes of the spectators. The majestic tall ship, the Norwegian three-masted barque Statsraad Lehmkuhl, is particularly stunning. The floating Elbe stage in front of the Landungsbrücken is THE artistic anchor of the HAMBURG PORT ANNIVERSARY: Elbe in Concert presents visitors with rousing live music and impressive performances, creating a unique atmosphere against the backdrop of the harbour skyline at night. This year’s partner

fiskaltrust Launches Portugal’s only Certified Fiscalisation Middleware and CashBox10.3.2026 08:30:00 CET | Press release

Integration Partners and Commercial Partners can now access the Portuguese market through fiskaltrust's POS System API, covering full AT (Autoridade Tributária e Aduaneira) compliance.

WELEDA x Stella McCartney: Paris Fashion Week / Skin Food: 100 years of loving skin9.3.2026 13:53:38 CET | Press release

Arlesheim, 09th March 2026 During this season’s Paris Fashion Week, WELEDA is backstage at the Stella McCartney show ensuring radiant skin: make-up artists draw specifically on the trusted nurturing power of the WELEDA Skin Food range to prep and prime the runway models’ skin perfectly for make-up and create a natural glow.

Grünenthal licenses exclusive South Korean rights to Qutenza® to BCWorld Pharm5.3.2026 08:54:06 CET | Press release

Aachen, Germany & Yeoju, South Korea, 5 March 2026 – Grünenthal, a global leader in pain management and related diseases, and BCWorld Pharm Co., Ltd. ("BCWP"), a specialty company actively expanding and diversifying its pain management portfolio through global open innovation partnerships, announced today that they have entered into a definitive agreement whereby BCWP will have the exclusive South Korean rights to Qutenza®, a topical, non-systemic, non-opioid patch treatment. In Europe, the product is indicated for the management of peripheral neuropathic pain.

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom