APNIC 29 APRICOT 2010 Banner

Local Trust Anchor Management for the RPKI

Presented by Stephen Kent (BBN Technologies)

The Resource PKI (RPKI) is being established by the RIRs and IANA to support secure attestations about resource holding (address space and AS numbers).

Like any PKI, the RPKI relies on trust anchors for certificate path validation. This presentation describes a facility for local management of trust anchors by ISPs, as a way of preserving autonomy and accommodating RFC 1918 address space certification.