Skip to main content

Quarterly Planning

We have three objectives in publishing our quarterly planning:

  1. We want to be transparent about the work we are doing with RPKI
  2. We want your input on that work and our planning, and we want to document that input, and let you know if and when we can add your suggestions to our planning
  3. We want an open dialogue with members and community on developments around RPKI

We launched this initiative in Q3 2021, and we are open to improving what we publish here and how we do that. So let us know if there are ways we can better present our plans.

We will update this page as our activities progress and continue to share updates on RIPE Labs, on the Routing Working Group (WG) mailing list and at RIPE Meetings and other events.

Q1 2024 Plans

Last Updated: 20 December 2023

Item Activity Description Status
1

RPKI compliance project (ISAE3000)

We needed a well-recognised audit framework that both encompasses all important IT security elements and can be tailored towards the design principles and RFCs of RPKI. For this purpose, we want to develop an RPKI audit framework that can potentially also be used by other Trust Anchors. This is now an ISAE3000/SOC 2 Type II audit framework.

The tailored ISAE3000 control framework for RPKI was designed, and we completed a gap analysis against this framework. We have completed 50% of the relevant documentation, control implementation and evidence gathering for the first certification audit.

We have also engaged with known international audit firms and are planning the execution for the first half of 2024.

In progress
2

RPKI Dashboard improvements

We are working on the RPKI dashboard to improve its usability and extend its functionality with new object types. We have performed a user study of the existing dashboard and have started the implementation of the new dashboard.

In progress
3

Open source "rpki-monitoring"

We will open-source our internal RPKI repository monitoring utility after final approvals. rpki-monitoring can be used to (1) compare if multiple rsync/rrdp repositories are in sync and (2) if objects are far enough from expiry. In progress
4 New online HSMs We have received new online Hardware Security Modules (HSMs). We have prepared and practised the changes to our environment and migration for the keys and will do so in production in early 2024. Planned for 2024

Items completed in the last quarter

  1. ASPA profile 16 in pilot

More information can be found on the archived plans page.

Community Input on Planning

We want the community to contribute to our plans and suggest additional work items. Please share your comments with us or post them on the Routing Working Group mailing list. And we will be monitoring all the other channels where people talk RPKI.

We will be adding your feedback on this page as we progress with our plans.

Reference Input RIPE NCC Reaction
RPKI-2021-#02

Request to add BGPsec support in Hosted RPKI.

For more information, check the Routing WG mailing list archives.

We are investigating possibilities here and will add a reaction when ready.

RPKI-2021-#04

Request to add real-time metrics and status updates of alerts or subsections to a feed.

For more information, read the Q&A section of the RIPE NCC RPKI Update at RIPE 83 (presentation no.4).

We are investigating possibilities here and will add a reaction when ready.

RPKI-2021-#05

Suggestion to allow 3rd party access to the LIR Portal to make RPKI changes.

We are waiting for an internal SSO project to be completed, and we will add a reaction when ready.

RPKI-2023-#01

Suggestion to add RSC support

We are aware of multiple use cases for RSC (e.g. proof of ownership of an ASN).

We will investigate the possibilities and will add a full reaction when ready.

RPKI-2023-#02

Known routing beacons with changing RPKI validity would help researchers.

Changes to the routing beacons have been proposed. However, we could not yet add an RPKI beacon: the API used would allow editing ROAs for all RIPE NCC space, which was not acceptable to us.

We will investigate this together with the RIS team in the future.

Archived Quarterly Plans

You can find our plans from previous quarters on this page. The Q1 2024 plan will be archived once we publish the Q2 2024 planning.