Insights For Success

Strategy, Innovation, Leadership and Security

Google AMP

Was Google, Apple, Facebook & Microsoft traffic redirected to Russia?

GeneralEdward Kiledjian

TL;DR: Internet traffic to and from major tech companies (Apple, Facebook, Google, Microsoft, Twitch, NTT Communications and Riot Games) were redirected through a Russian provider Wednesday. This appears to have been a deliberate hijack and not an error. 

----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

BGP is a routing and reachability protocol used on internet backbones around the world. It is what allows carriers to find routing information between each other (in simple terms).

2 BGP monitoring services have reported short changes to the routing of key internet giants, and they do not believe this was a mistake. 

BGPMon recorded two three-minute hijacks affecting roughly 80 address blocks.

One of the interesting things about this incident is the prefixes that were affected are all network prefixes for well known and high traffic internet organizations. The other odd thing is that the Origin AS 39523 (DV-LINK-AS) hasn’t been seen announcing any prefixes for many years (with one exception below), so why does it all of sudden appear and announce prefixes for networks such as Google?
— BGPMon

Qrator Labs recorded a two-hour hijack affecting 40 to 80 address blocks.

Qrator dashboard for the offending AS

As mentioned in the BGPMon release, AS39523 is a Russian organization that has been inactive for years. The last time we saw them, they were involved in another BGP "incident" that involved Google.

Luckily most of the traffic that passes through these providers is encrypted at a level that is believed to be currently unbreakable. The concern is that a state-sponsored attacker could have new decryption algorithms that are not yet publicly known and it does means the traffic "could" have been decrypted (however unlikely it remains a possibility). 

Bypass Google's AMP with DeAMPify for Android

GeneralEdward Kiledjian

A handful of readers asked me to review the DeAmpify Android app and talk about it on my blog. So for those readers, here is my opinion.

Google introduced AMP in 2015 (Accelerated Mobile Pages) with the hope of speeding up the mobile web by degunking all of the junk publishers were adding to their web pages (tracking, advertising, etc.)

The CBC web page I am using for this article connects to 16 separate domains (to load content) and has eight different trackers. Obviously, this clogs up the page and makes it slower to load and less responsive.

Journalists and privacy advocates have been criticizing AMP because they claim it is another Google attempt to control content by encouraging publishers to use the search giant's AMP caching servers. Additionally, Google chooses what tags will be allowed for AMP markup on web pages. 

For those with modern high-end smartphones connected to super fast LTE networks, the difference is minor. But if you are on a mid-level phone or a slower connection, an AMP page could load in half the time. 

A crafty developer (Joao Dias) created an Android app called Deampify whose sole purpose in life is to convert AMP links back to "normal" web ones. The app is free with a small in app purchase option to unlock pro features:

  • Disable Ads
  • Ability to add exceptions so that some websites still show the AMP versions
  • Tasker integration so that you can load original pages when you’re on Wifi but load the faster AMP pages when you’re on 4G/3G for example. 

DeAMPify demonstration video

Important considerations

DeAMPify doesn’t work if you click on an AMP link inside of Chrome

Since a link clicked in Chrome does not kick off the Android intent process, you cannot redirect it to DeAMPify and this the app cannot perform its magic. The app works in any non-Chrome app (messenger, hangouts, the Google Search app, etc).

How does DeAMPify work?

When you click on an AMP enabled page, the app searches the HTML code for the original web page URL and then passes this to the browser. So in effect, it is pre-downloading the entire web page anyway.

Conclusion

So is this useful and do I recommend it? No! I tried to find a reason to like this app but I couldn't. I don't have a technical or moral issue with AMP so there is no reason for me to go out of my way to bypass it. 

Additionally, it is pre-downloading the web page to find the non-AMP URL so I am not saving bandwidth and may actually be slowing down my browsing experience. 

I'm glad the app exists in case someone does want it but it's going to be useless for most Android owners. The only reason someone would probably consider this is if they have a moral issue with Google playing manager of the AMP technology and wants to "stick it" to the man.  To me it feels like stabbing yourself to teach someone else a lesson.