Tutorial

Securing Internet Routing with RPKI

Start
09:00 - 09 November 2021
End
17:00 - 09 November 2021
Location
Australia
times shown in Australian Western Standard Time (AWST)
Perth
Cliftons Perth, Parmelia House, 191 St Georges Terrace, Perth WA 6000

Synopsis

Registration for this event has now closed – please send enquiries to training@apnic.net

  • Why do we keep seeing news headlines about major networks not being reachable because traffic got rerouted to somewhere else? BGP mishaps are very common and frighteningly very easy. Examples are malicious route hijacking, mis-origination (fat fingers), and bad filters (route leaks). We need better mechanism(s) to ensure no one can inject false information into the global routing system that easily.
  • This tutorial will look at current route filtering tools/techniques, how RPKI is just a piece in the puzzle, and what we should do to secure the internet routing.

 

Fees

$44.00AUD (including GST) APNIC Members
$88.00 AUD (including GST) Non APNIC members
For more information on APNIC Training fees and terms , please visit https://training.apnic.net/fees/ 

Target audience

Anyone interested to understand the RPKI framework and how it helps secure the Internet Routing.

Prerequisites

For those who manage IP resources for your organisations (technical or corporate contacts), please do come with MFA (OTP) enabled for your MyAPNIC account, as well as ensure you have permission from your Corporate Contacts to certify your resources – let us create ROAs for your prefixes!

This tutorial is not an introduction. It is assumed that the participants have a working knowledge of:

  • IP Routing (esp BGP)
  • How to use a router command line interface (IOS syntax).
  • Basic Linux command line (CLI) skills.

We recommend the following Academy courses be completed before the start of the tutorial:

    Course outline

    • Recent Routing Incidents
    • Current BGP Filtering techniques
    • Resource PKI fundamentals
    • Signing your routing intent (ROAs)
    • Installation/configuration of RPKI Validators
    • BGP Filtering with ROA (Route Origin Validation)
    • Overview of BGPsec and ASPA

    Other requirements

    • Participants are advised to bring their own laptop computers with high-speed Wi-Fi (802.11a/g/n/ac) and administrative access to system. 
    • Software: SSH Client

    Maximum number of attendees

    40 people max

    Please note

    APNIC has implemented a COVID-19 Safety Management Plan in alignment with the Australian government and local state authorities guidelines to ensure the safety of participants and prevent the spread of COVID-19. 
    For further information on APNIC’s COVID-19 face-to face & Hybrid Event Attendance Policy, please click here 
    As this is a face-to-face event, please consider any COVID-19 travel restrictions that may be applicable to you prior to registering.