Standardization Activities

The standardization work for RPKI infrastructure is carried out by the Internet Engineering Task Force (IETF). In RFC 4593 the Routing Protocol Security Requirements (RPSEC) working group analyzed security threats to IP routing protocols. This document mentions the falsification of routing information.

In 2007, the IETF established the Secure Inter-Domain Routing (SIDR) working group to create architecture that would allow us to eliminate the threats to inter-domain (or external) routing identified in RFC 4593. The technology to be developed would have to allow incremental deployment.

Specifically, the SIDR working group documented the use of certificates for the delegation of the right to use Internet resources. Its work includes: the specification of RPKI architecture, certification policies, the profile of the certificates that will be issued and various useful cryptographic materials. Before being able to issue RPKI certificates, it was necessary to define extensions to the X.509 certificates to represent IPv4 and IPv6 addresses, and ASNs. The following RFCs are already part of the RPKI specification: RFC 6480 to RFC 6493, RCF 6810 and RFC 6811.

Further information on the work of the SIDR and SIDROPS working groups is available at the following links:

Additional References