Response playbook development¶

BGP hijack response playbook¶

• Detection → Validation → Containment → Remediation

• Using simulator timelines as playbook templates

• Decision trees for different hijack types

Control plane attack response¶

• Identifying affected prefixes

• Emergency BGP session shutdown procedures

• Communication templates

Tabletop/simulation exercises¶

• Running scenarios in “training mode”

• Team coordination practice

• Decision-making under pressure