Skip to Content.
Sympa Menu

ren-routing-security - [REN-Routing-Security] Luncheon meeting notes 5/8/18

Subject: REN Routing Security

List archive

[REN-Routing-Security] Luncheon meeting notes 5/8/18


Chronological Thread 
  • From: Karl Newell <>
  • To: "" <>
  • Subject: [REN-Routing-Security] Luncheon meeting notes 5/8/18
  • Date: Wed, 16 May 2018 20:05:15 +0000
  • Accept-language: en-US
  • Authentication-results: internet2.edu; dkim=none (message not signed) header.d=none;internet2.edu; dmarc=none action=none header.from=internet2.edu;
  • Ironport-phdr: 9a23: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
  • Spamdiagnosticoutput: 1:0

Meeting notes from the REN Routing Security meeting on 5/8/18

 

Upcoming meetings

-UPenn RPKI

-CAIDA BGP Artemis

 

MANRS discussion

-Dale – ESnet finalized their MANRS submission

-Need to sign up per ASN

-Participants need to complete 2 of the 4 actions

-We can document participation as a service offered

-MANRS is attractive because it’s high level with options

-Internet2 will track MANRS metrics (participants, actions, dates)

-This group can develop a cookbook of specific actions to take

-Discussed setting a goal for implementing MANRS - end of June 2018 was discussed as a possibility

 

IRR discussion

-Which IRR to use?  Depends on region.

-Data should be pulled from multiple IRRs or at least one that syncs from the others

-Internet2 Members should publish their data in ARIN or Radb

 

RPKI discussion

-need to drive the costs down for BGPmon down.  >$300K to support entire R&E route table

-members should develop a BGP hijack playbook (what to do, who to contact when your routes are hijacked)

-talk to ARIN about bulk import of ROAs for initialization

-Can upstreams maintain ROAs?  Need to discuss with ARIN

                -This parallels SSL generation and delegation

-Need toolset to ease maintenance

                -Compare to the InCommon Cert Manager and Lets Encrypt – both helped drive adoption of SSL certs

                -Can we do the same for RPKI?

 

 

REN Routing Security Agenda

-Introductions

-Agenda bash

-Discussion of MANRS

-Discussion of Internet Routing Registries

-Discussion of RPKI

-Meeting frequency

 

Attendance:

Mark Brochu, Internet2

Ryan Nobrega, Internet2

Paul Howell, Internet2

John Dundas, CENIC,

Jamie Curtis, REANNZ

David Wilde, AARnet

Karl Newell, Internet2

Matt Mullins, Indiana U

Andrew Gallo, GWU

Jeff Bartig, Internet2

Caren Litvanyi, Indiana U

Mian Usman, GÉANT

Mike Milliken, Merit

Mark Beadles, OARnet

David Marble, OSHEAN

Ryan Kocsondy, CEN

 

Remote:

Dale Carder, ESnet

Anita Nikolich

 

 

 

--

Karl Newell

Cyberinfrastructure Security Engineer

Internet2

520-344-0459

 




Archive powered by MHonArc 2.6.19.

Top of Page