John Kristoff, Randy Bush, Chris Kanich, George Michaelson, Amreesh Phokeer, Thomas C. Schmidt, Matthias Wählisch,
On Measuring RPKI Relying Parties,
In: Proc. of ACM Internet Measurement Conference (IMC), pp. 484--491, New York: ACM, 2020.
PDF   Video   Website   Code   BibTeX   Abstract  

Abstract: In this paper, we introduce a framework to observe RPKI relying parties (i.e., those that fetch RPKI data from the distributed repository) and present insights into this ecosystem for the first time. Our longitudinal study of data gathered from three RPKI certification authorities (AFRINIC, APNIC, and our own CA) identifies different deployment models of relying parties and (surprisingly) prevalent inconsistent fetching behavior that affects Internet routing robustness. Our results reveal nearly 90% of relying parties are unable to connect to delegated publication points under certain conditions, which leads to erroneous invalidation of IP prefixes and likely widespread loss of network reachability.

Themes: Network Security , Internet Measurements and Analysis


This page generated by bibTOhtml on Di 20. Apr 12:42:11 CEST 2021