Plenary

The RPKI currently relies on RSA signatures, which are vulnerable to attacks by powerful quantum computers. While much research is done on post-quantum cryptography (PQC) and its application in protocols like TLS and DNSSEC, no such work has been done for the RPKI. My thesis lays the groundwork for a migration to post-quantum cryptography in the RPKI.

We first show that reliance on the RPKI with insecure cryptography can be abused for severe attacks
that are even more effective than original B…

Given BGP's inherent vulnerabilities, our team began monitoring critical Internet infrastructure for potential BGP origin hijacks. Specifically, in January 2023, we started using Code BGP to monitor root DNS prefixes.
Root DNS servers are the authoritative name servers for the DNS root zone. We chose to monitor the BGP prefixes corresponding to the IP addresses of these servers for two main reasons:
First, root DNS servers sit at the top of the global DNS hierarchy and represent critical Intern…

Measurement Lab (M-Lab) is the world’s largest open Internet measurement platform, providing open-source tools, globally distributed infrastructure, and publicly accessible datasets to advance transparency, research, and policy around Internet performance. M-Lab platform has over 500 servers across 40+ countries, hosting experiments such as NDT (network diagnostic tool), with all resulting data openly available through platforms like Google BigQuery.

This presentation introduces the evolution o…

Residential proxies offer an unprecedented perspective of the Internet, with multiple providers claiming access to over 150 million real end-user vantage points. Compared to active RIPE Atlas probes, even smaller proxy providers often offer orders of magnitude more vantage points, commonly exceeding 1 million, available for use by researchers and enterprises. This raises critical questions: How are these vantage points obtained? More importantly, can we be certain that end-users have explicitly…

From the draft I-D:

This document requests the allocation of a new IPv4 special-purpose address from the IANA IPv4 Special-Purpose Address Registry. The proposed address, 192.0.0.11/32, is intended to serve as a signal to IPv4 hosts in IPv6-only networks that the link-layer resolution for the default gateway should be derived from the IPv6 default gateway learned via IPv6 Router Advertisements and Neighbor Discovery.

This approach enables IPv4 communication without requiring IPv4 subnets or the…