APNIC Security Update APSIRCC 2002 Tokyo, 25 March 2002.

Slides:

Advertisements

Similar presentations

1 First NIR Meeting Criteria for establishment of new National Internet Registries March 1st, Korea, Seoul.

Advertisements

Managing IP addresses for your private clouds 2013 ASEAN CAS Summit Bangkok, Thailand 7 February 2013 George Kuo Member Services Manager.

Handling Internet Network Abuse Reports at APNIC 21 October 2010 LAP-CNSA Workshop, Melbourne George Kuo.

IPv6: The Future of the Internet? July 27th, 1999 Auug.

1 APNIC CEOs’ Meeting APNIC 18, Nadi, Fiji 30 August 2004.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E APNIC Overview AFRINIC Meeting Accra, Ghana, May 13th 2001 Anne Lord Asia Pacific.

IPv6 Address Allocation Policies & Procedures Champika Wijayatunga, APNIC 1 st ASEAN IPv6 Summit Oct 20-22, 2003 – Kuala Lumpur, Malaysia.

1. 2 Information Document 22-E ITU-T Study Group 2 May 2003 Question:1/2 Source:TSB Title:IPv6 Address Management – Past, Present and Future (by Anne.

IP Address Management The RIR System & IP policy

Technical Area Report Bryon Ellacott, Technical Area Manager APNIC 28.

1 The Geography and Governance of Internet Addresses Paul Wilson APNIC.

Welcome! APNIC Training Proposal for the collaborative development of a common Internet educational curriculum APAN January 2007 Manila Cecil Goldstein.

AussieISP Fall ‘99 Sydney, 9 April 1999 Overview and Status Report.

APNIC Status Report RIPE September, 2003 Amsterdam.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E APNIC Introduction and Overview ITU/PITA Joint Workshop Brisbane, October 2001.

Internet Addressing and the RIR system 11 February 2004 Phnom Penh, Cambodia Paul Wilson, APNIC.

1 APNIC support for Internet development APT/PITA Regional Meeting on ICT for the Pacific August 2004, Nadi, Fiji Paul Wilson

APNIC Update Paul Wilson Director General. APNIC RIR for Asia Pacific –IP address allocation and management –Open policy development Support for Internet.

APNIC Status Report RIPE 45 Barcelona May The APNIC Region Ref

APNIC Status Report LACNIC V November 2003 Havana.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E Welcome and orientation APNIC Member Meeting 27 October 2000 Brisbane, Australia.

ARIN Update June 2000 NANOG 19Albuquerque NANOG 19Albuquerque Overview Organization & Staff Activities Regional News Membership Statistics Regional Policy.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E APNIC Update RIPE 40 Prague, 1-5 October, 2001.

RIR Status Report RIR Status Report IEPG August 2001.

Regional Internet Registries Statistics & Activities IETF 55 Atlanta Prepared By APNIC, ARIN, LACNIC, RIPE NCC.

1 APNIC Update RIPE 54 Tallinn, Estonia May 2007.

Welcome! APNIC Member Meeting 6 September 2002 Kitakyushu, Japan.

1 APNIC Status Report SANOG VI July 2005, Thimpu, Bangladesh Kapil Chawla, APNIC.

APNIC Annual Members’ Meeting Singapore, 6 March 1999 APNIC - Annual Report.

APNIC Status Report ARIN X Eugene, Oregon Oct 30-Nov 1, 2002.

APNIC Status Report LACNIC III Mexico City 11 November 2002.

APNIC Update ARIN IX Las Vegas, Nevada 7-10 April, 2002.

1 APNIC Status Report AfriNIC II Maputo. 2 About APNIC.

17 March 2002IEPG - Minneapolis RIR Update A Joint Presentation Prepared By APNIC, ARIN, RIPE NCC.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E APNIC Update ARIN-VII San Francisco, April 2001.

1 IPv4 Addressing in China CNNOG April 2006, Beijing Guangliang Pan.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E APNIC & Internet Address Policy in the Asia Pacific NZ Internet Industry Forum Auckland,

July 2002IEPG, Yokohama, Japan RIR Co-ordination and Joint Statistics IEPG, Yokohama, Japan Prepared By APNIC, ARIN, RIPE NCC.

1 APNIC Update AP* Retreat Meeting 17 July Status Update Membership –1250 ISPs –6 NIRs (CN, ID, JP, KR, TW, VN) Staff –48 staff –15+ nationalities.

1 IP Addresses, Addressing and Address Management Paul Wilson APNIC.

APNIC Report RIPE 43 Rhodes, Greece 9-13 September 2002.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E APNIC Status Report ARIN VI Public Policy Meeting 2-4 October 2000.

APNIC Internet Resource Management and Internet Infrastructure Support PITA Members Meeting 10 January 2004 Honolulu, Hawaii Save Vocea, APNIC.

IP Addressing and ICT Development in the Pacific Islands Anne Lord and Save Vocea, APNIC ICT Workshop, Fiji, November, 2002.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E APNIC History and Overview AfriNIC Meeting Cape Town, May 2000.

IP addresses and address management Miwa Fujii APNIC, Training Officer.

1 APNIC Update LACNIC X Isla Margarita, Venezuela 25 May 2007.

Internet Protocol Addresses What are they like and how are the managed? Paul Wilson APNIC.

IEPG November 1999 APNIC Status Report. Membership Resource Status Recent Developments Future Plans Questions?

APNIC Status Report ARIN XII October, 2003 Chicago.

1 APNIC Survey 2007 Summary Report May APNIC Surveys Three surveys previously… –Members and other stakeholders –Conducted independently (KPMG)

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E APNIC Update, Structure and Policies Yokohama, December 2001.

1 The Internet Registry System Mirjam Kühne RIPE NCC EC-POP Brussels 5 July 1999.

APNIC Status Report RIPE 44 Amsterdam, The Netherlands January 27-31, 2003.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E APNIC Status Report ARIN Meeting, April 2000.

APNIC Update Elly Tawhai Senior Internet Resource Analyst/Liaison Officer, Pacific, APNIC AusNOG

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E IP Addresses: A critical resource for Asia-Pacific Internet development China Inet.

IP Address Management The RIR System Nurani Nimpuno APNIC.

1 APNIC IPv6 Activities: Past, Present and Future Paul Wilson APNIC.

1 WSIS – a Stakeholder’s View from the Internet Address Community Paul Wilson Director General APNIC.

Regional Internet Registries An Overview

IEPG Minneapolis, March 1999

RIR Co-ordination and Joint Statistics

APNIC Status Report RIPE 51 Amsterdam.

APNIC Update ARIN XVI Los Angeles.

Paul Wilson Director General, APNIC

Status of IPv6 Addresses and Address Management

IPv6 distribution and policy update

IPv6 Allocation Status Report

Status Report on Policy Implementation at the APNIC Secretariat

Presentation transcript:

APNIC Security Update APSIRCC 2002 Tokyo, 25 March 2002

Contents What is APNIC? RIR security issues APNIC developments Routing system security Questions

What is APNIC? Regional Internet Registry (RIR) for the Asia Pacific Region –Regional authority for Internet Resource distribution –IP addresses (IPv4 and IPv6), AS numbers, in- addr.arpa delegation Industry self-regulatory body –In the “Internet Tradition”… –Non-profit, neutral and independent –Consensus-based, open and transparent –Open membership-based structure

What does APNIC do? 1.Internet resource management –IP address allocation and assignment –AS number assignments 2.Resource registration –Authoritative registration server: whois –Internet Routing Registry: apirr 3.DNS management –Delegate reverse DNS zones/domains –Authoritative DNS servers in-addr.arpa, ip6.arpa (ip6.int)

Where is APNIC?

What else does APNIC do? Training and Seminars –2 training courses per month in 2002 –Seminars with other AP* organisations Publication –Newsletter, web site, mailing lists etc –Regional and global statistics Policy development and coordination –Major Open Policy Meetings: 2/year SIGs, WGs, BOFs, training sessions –ASO and ICANN processes

APNIC Status Summary Location: Brisbane, Australia –Tokyo, Japan from 1993 to 1998 Staff: 33 full time Membership: over 700 –ISPs, multinationals, national NICs –Total ISPs served: over 1200 Allocations: 1.7 /8 in 2001 (28 million addresses) –More than allocated in EU (first time) Budget: USD 3.75m in 2002 –Maintain 1 year capital reserve Contact details: etc

Total APNIC Membership

IPv4 Addresses Allocated in Total

Whois Queries per Month

APNIC Security Update Issues and Developments

RIR security issues Online server security –Whois, APIRR, in-addr.arpa, ip6.arpa (ip6.int) –Standard security measures: 24x7 –Redundant distribution model under dev. “Internal” information security –Common membership concern –Member agreement, NDA, etc Registration issues –Database development, distribution etc –Handling abuse reports (security, spam etc) Routing system security –More later

APNIC certificate authority (CA) Trial service established –Public key certificates (PKI/X.509) –Started in 2000 APNIC-specific applications – security to/from APNIC –“MyAPNIC” access –Database access (whois/IRR) –Future: Resource certification Supporting routing system security –Future: Other general purposes As determined by community

Registration issues APNIC database whois.apnic.net –Primary APNIC responsibility as RIR –Covers only APNIC address space 61/8, 202/7, 210/7, 218/7 Increasing abuse report load –Often misdirected at APNIC Resulting from query of whois.arin.net –Often relate to outdated information or unresponsive ISPs –Need improved database mirror/distribution –Need improved policies/agreements

Routing system security Currently vulnerable –Routing system attacks yet to come –Currently ISPs rely on registry data, but without common auth* framework –ISP priority is to serve customers, respond quickly to route requests –Better system will be needed

Routing system security Proposed PKI-based scheme –Address space holders reliably identified –Resource allocations certified –Clear chain of trust Incomplete system –Does not eliminate need for secure routing protocols Details and procedures need to be defined… –Work in progress

Finally – you’re invited… 14 th APNIC Open Policy Meeting –3-6 Sep 2002, Kita-Kyushu, Japan –Hosted by JPNIC 15 th APNIC Open Policy Meeting –In conjunction within APRICOT 2003 –March 2003, Taipei, Taiwan

APNIC Security Update Thank you