Quarterly Planning
We have three objectives in publishing our quarterly planning:
- We want to be transparent about the work we are doing with RPKI
- We want your input on that work and our planning, and we want to document that input, and let you know if and when we can add your suggestions to our planning
- We want an open dialogue with members and community on developments around RPKI
We launched this initiative in Q3 2021, and we are open to improving what we publish here and how we do that. So let us know if there are ways we can better present our plans.
We will update this page as our activities progress and continue to share updates on RIPE Labs, on the Routing Working Group (WG) mailing list and at RIPE Meetings and other events.
Q4 2023 Plans
Last Updated: 19 September 2023
| Item | Activity | Description | Status |
|---|---|---|---|
| 1 |
RPKI compliance project (ISAE3000) |
We needed a well-recognised audit framework that both encompasses all important IT security elements and can be tailored towards the design principals and RFCs of RPKI. For this purpose, we want to develop an RPKI audit framework that can potentially also be used by other Trust Anchors. This is now an ISAE3000/SOC 2 Type II audit framework. The tailored ISAE3000 control framework for RPKI has been designed, and a gap analysis against the framework has been completed. We are now in the process of further developing relevant documentation, implementing controls and gathering evidence for the first certification audit. In Q3, we will be engaging with known international audit firms to plan the execution of the first certification audit towards the end of the year. |
In progress |
| 2 |
RPKI Dashboard improvements |
We are working on the RPKI dashboard to improve its usability and extend its functionality with new object types. The first phase will be a re-implementation of the current dashboard with minor improvements. After this, we will do a redesign and add new object types. |
In progress |
| 3 |
Open source "rpki-monitoring" |
We will work on open-sourcing our internal RPKI monitoring that (1) compares if multiple rsync/rrdp repositories are in sync and (2) if objects are far enough from expiry. | In progress |
| 4 | New online HSMs | We have received new online Hardware Security Modules (HSMs). We will start migrating to these new HSMs after the vendor delivers an update for the custom library we use to store HSM-protected keys in a database. | In progress |
|
Items completed in the last quarter
More information can be found on the archived plans page. |
|||
Community Input on Planning
We want the community to contribute to our plans and suggest additional work items. Please share your comments with us or post them on the Routing Working Group mailing list. And we will be monitoring all the other channels where people talk RPKI.
We will be adding your feedback on this page as we progress with our plans.
| Reference | Input | RIPE NCC Reaction |
|---|---|---|
| RPKI-2021-#02 |
Request to add BGPsec support in Hosted RPKI. For more information, check the Routing WG mailing list archives. |
We are investigating possibilities here and will add a reaction when ready. |
| RPKI-2021-#04 |
Request to add real-time metrics and status updates of alerts or subsections to a feed. For more information, read the Q&A section of the RIPE NCC RPKI Update at RIPE 83 (presentation no.4). |
We are investigating possibilities here and will add a reaction when ready. |
| RPKI-2021-#05 |
Suggestion to allow 3rd party access to the LIR Portal to make RPKI changes. |
We are waiting for an internal SSO project to be completed, and we will add a reaction when ready. |
| RPKI-2023-#01 |
Suggestion to add RSC support |
We are aware of multiple use cases for RSC (e.g. proof of ownership of an ASN). |
| RPKI-2023-#02 |
Known routing beacons with changing RPKI validity would help researchers. |
We will support the team in implementing the routing beacons in the third quarter. |
Archived Quarterly Plans
You can find our plans from previous quarters on this page. The Q4 2023 plan will be archived once we publish the Q1 2024 planning.