Three of the best: RPKI
Securing routing by adopting RPKI is now an essential practice in the modern Internet — here are three of 2021’s top posts.
Tag: RPKI
Improving the resiliency of RPKI Relying Party software
Guest Post: Is it possible to disrupt RPKI Relying Party software by introducing a malicious CA/repository into the tree?
Checking prefix filtering in IXPs with BIRD and OpenBGPD
Guest Post: How to configure the two most common routing daemons used in IXP environments.
Exploring an idea: Can spreading out repositories speed up RPKI?
Guest Post: RPKI updates need to work their way through certificate chains to a handful of ASes. What if they were more spread out?
Basic routing concepts, part 3: Trust but verify BGP
The third post in this series examines the risks in BGP that make it important to ‘trust but verify’.
Twitter has introduced ROA. What does this change?
Twitter has begun Route Origin Authorization. Here’s what that actually means.
RPKI: (My)Lab environment
Guest Post: Follow this network operator’s test environment to learn how to set up RPKI.
What’s your wish list for the perfect RPKI validator?
There are many RPKI validators to choose from. If you could mix and match features, what would your ideal validator look like?
Solo effort to clean up RPKI invalids across a region
Guest Post: What happens when one person tries to convince network operators to apply MANRS actions across the AFRINIC region?
Event Wrap: vPhNOG 2.0
APNIC provided training on RPKI and presented on APNIC’s activities at vPhNOG 2.0, held online from 12 to 16 July 2021.