The RIPE Labs Podcast

The White House recently announced plans to boost Internet routing security in the US through better RPKI coverage. So how does RPKI help secure BGP? How easy is it to boost coverage on a national level? And what's the future potential of the infrastructure? Our guest Tim Bruijnzeels shares his views.Tim is Principal Software Engineer for RPKI at the RIPE NCC and has worked in standards development and software implementation around RPKI for well over a decade. He talked to us about where RPKI is at today, how governments can and have aided its adoption, and how work being done on ASPA and BGPsec promise a more secure future for the Internet.Show notes:02:40 - The Dublin IETF meeting back in 2008.03:17 - Tim has contributed to a number of RFCs over the years.03:40 - NLnet Labs develops free, liberally licensed, open-source software for DNS and BGP routing.03:50 - Krill is a free, open source RPKI Certificate Authority developed by NLnet Labs that lets you run delegated RPKI under one or multiple RIRs.07:24 - You can read more on how the Internet routes around damage on RIPE Labs.10:47 - Get more information on how to manage ROAs through the RPKI Dashboard.11:36 - Check out the RIPE NCC's Routing Information Service (RIS).12:17 - Alex Band's article on the launch of the RIPE NCC Resource Certification Service back in 2011.13:51 - There are a number of RPKI validators to choose from, including Routinator from NLnet Labs.17:32 - Here's a nice explainer article on ASPA.22:07 - Plans to support ASPA and BGPsec router certificates in RIPE NCC Quarterly Planning.24:42 - Press Release: White House Office of the National Cyber Director Releases Roadmap to Enhance Internet Routing Security.26:47 - More on Dutch government measures for ensuring RPKI coverage.

For many, the Internet is essentially a black box. We connect with endpoints to send and receive data, but we have little insight into what happens in between. Dr Paola Grosso talks about how the CATRIN project seeks to provide more visibility and control so we can make more responsible decisions on how we traverse the Internet.Show notes:02:17 – Paola’s UvA profile04:21 – CATRIN project homepage04:44 – UPIN project announcement06:00 – Partners in the CATRIN project are listed at the bottom of the project homepage09:29 – The ‘main paper’ on the responsible Internet that we talk about is the article in the Journal of Network and Systems Management. There’s also a series of posts about CATRIN on the SIDN Labs blog.24:12 – See more on the Waag’s role in CATRIN26:05 – Read up on the latest developments in MANRS.

In this episode of the RIPE Labs podcast, three Internet pioneers talk about how they helped grow the Internet out of its early infancy, back when its purpose - and much of the excitement around its development - lay in the promise of connecting researchers from around the world.___Show notes:00:03:22 - Daniel Karrenberg about the EUnet, the first pan-European Internet Service Provider (ISP)00:11:18 - Dennis Jennings about his first encounter with networking and the birth EARN00:17:40 - Daniele Bovio on the first international routing tables received via EARN and BITNET00:22:48 - Daniel Karrenberg on Email gateways, email being the one application that worked across all networks00:27:06 - The first transatlantic interconnection Daniel operated00:29:18 - Dennis shares how he built NSFNET00:32:05 - Dennis on why he decided to use TCP/IP protocol on NSFNET00:35:39 - Daniel about the birth of RIPE and the need to coordinate IP addresses00:41:02 - Dennis on designing the national general-purpose network of networks beyond supercomputers and its business model00:48:29 - Daniele on EBONE, a pan-European Internet backbone00:56:48 - Daniele on his work at America Online (AOL) and leasing transatlantic capacity01:12:09 - EARN Panel at SEE 1201:12:26 - the RIPE Community today01:14:00 - Dennis Jennings shares top 3 important moments in the Internet history that he has personally overseen01:21:00 - Daniele Bovio shares top 3 important moments in the Internet history that he has personally overseen

Internet users, the companies who sell us our devices, and governments are all caught up in the struggle to protect our privacy. In this episode, Bert Hubert explains how outsourcing and other market forces determine the flow of control over online data and why we need to understand the consequences.Show notes:01:00 - PowerDNS01:04 - I highly recommend Bert’s excellent blog berthub.eu!!02:42 - Bert on joining TIB (oversight board for the Dutch intelligence and security services)02:58 - Bert on leaving TIB03:30 - Reverse Engineering the source code of the BioNTech/Pfizer SARS-CoV-2 Vaccine03:40 - George Orwell’s Why I Write05:31 - RIPE NCC’s response to the NIS2 directive10:00 - Bert talking about End to End Encryption for the European Internet Forum at the European Parliament14:27 - Trinity college research on scale of data sharing from Android devices32:31 - More on the Cyber Resilience Act (CRA) on RIPE Labs here and here34:00 - Incidentally, Bert was co-author of RFC 545234:50 - Bert and Corrine Cath on SIDN’s decision to outsource some of its services to AWS (in Dutch)41:10 - Read about recent developments with the US Foreign Intelligence Surveillance Act48:00 - Bert on climate change (again, highly recommended!)54:30 - Business for geeks at NLNOG

Starlink's megaconstellations deliver broadband Internet to customers around the globe. But while the tech promises to democratise Internet access, it's not always clear how existing protocols and regulations apply beyond the clouds. In this episode, Geoff Huston talks about the future of low-orbit Internet.Show notes:02:20 - APNIC Labs Starlink measurements and Geoff’s podcast on LEOs and TCP08:50 - Geostationary orbit09:48 - Project Iridium14:40 - Starlink29:50 - See more from Geoff on measuring Starlink performance from his talk at RIPE 8735:45 - Research on Starlink using RIPE Atlas44:30 - Atmospheric nuclear testing in the 60s45:00 - NORAD Database of satellites

The Internet is hardly foolproof in its design, and whether by accident or on purpose, the people who use and operate it sometimes don't do things they should or do do things they shouldn't. Qasim Lone talks about strange goings on he's investigated and how RIPE Atlas can help researchers in the field.01:00 - RIPE Atlas01:53 - SLAC02:59 - Read Qasim on Why SAV is Still a Problem04:37 - Other research from Qasim and colleagues on SAV06:02 - RFCs 2827 and 3704 describe SAV implementation06:35 - IPv4 lease time article07:48 - The DNS Root Manipulation article09:10 - Manu Bretelle's email to DNS-operations mailing list18:17 - Qasim on 240/423:15 - RFC 3330 describes specialised IPv4 address blocks assigned by IANA29:00 - Listen to our episode on bias in Internet measurements36:30 - SEE 12 takes place in Athens this April37:45 - ...and CAPIF 3 is coming up this September!

Quantum technologies promise all kinds of fascinating possibilities, but they also come with risks. In this episode of the RIPE Labs podcast, André Grilo, founder and CEO of QuantumNova, talks about why we need to start investing in post-quantum cryptography to protect ourselves against post-quantum threats.01:17 - QuantumNova05:08 - Shor’s algorithm11:07 - Post-quantum cryptography14:02 - NIST selected 4 post-quantum security algorithms16:00 - EU’s programme to support companies to transition to post-quantum23:26 - Quantum repeaters to overcome overcome entanglement distribution over long distances25:10 - Quantum Internet Hackathon29:28 - AI and Quantum

Understanding outages and shutdowns and how the Internet as a whole came to be vulnerable to, and also resilient against, these kinds of events requires more than a snapshot of the current state affairs. In this episode, Jim Cowie talks about how historical measurement data can help us acquire a better understanding of the Internet.01:40 - There's a nice, short introduction to Jim and his background right here.03:11 - RIPE RIS04:50 - Jim on the 2011 outage in Egypt07:05 - Jim has since confirmed that the Renesys team was indeed using RIS BGP data since September 2001, though Routeviews remains another invaluable source of BGP data.12:35 - Jim's presentation at CAPIF113:42 - Resilience of the Internet in Ukraine on RIPE Labs15:30 - Jim on the Rogers Outage over on the Pulse blog21:43 - Doug Madory on Cuba and the Geopolitics of Submarine Cables31:30 - GEODE on the RIPE Labs podcast33:30 - RIPE Atlas