Resource Public Key Infrastructure (RPKI) is designed to boost the security of the Internet's routing system by encrypting communication between Internet registries and network operators. The technology, developed the U.S. Department of Homeland Security (DHS), allows network operators to verify that they have the ability to route traffic for a group of Internet protocol addresses or routing prefixes, thereby preventing routing attacks and accidents.
RPKI is moving forward in the Internet Engineering Task Force, says DHS' Doug Maughan. He says the effort involves moving forward with "the standards side of things so that we are not just creating a solution that's proprietary." Maughan says the U.S. government hopes to be an early adopter of RPKI, and that federal agencies that run their own infrastructures will be required to support the system. He says RPKI pilots could be completed within a year, after which the system would be operational at several registries. However, routing security will take another couple of years.
Maughan also is optimistic about the adoption of Domain Name System Security Extensions (DNSSEC), noting that more than 60 zones have been signed with the protocol and that the implementation of DNSSEC has had less of an impact on operational performance than originally feared.
From Network World
View Full Article
Abstracts Copyright © 2010 Information Inc., Bethesda, Maryland, USA
No entries found