You are here: Home > Publications > RIPE Labs

RIPE Labs

Site Administrator — 18 Jul 2013

The RPKI Observatory: A New Website Aiming to Help Reduce RPKI Misconfigurations

In this post I'll cover why it is important to take care of RPKI misconfigurations, what the impact of ignoring them is, how network operators can easily determine whether they are affected by a specific RPKI misconfiguration and how significantly the amount of RPKI unreachable IP space changed over the course of just a few weeks.

The RPKI Observatory: A New Website Aiming to Help Reduce RPKI Misconfigurations - Read More…

iSEND: IPv6 SEcure Neighbor Discovery Implementation for Android Devices

IPv6 SEcure Neighbor Discovery (SEND) is an extension to countermeasure the security threats in IPv6 Neighbor Discovery Protocol (NDP). SEND provides address ownership proof, message protection, and router authorisation capabilities. The current lack of robust implementations of SEND at the end user devices limits its deployment and leave the door open for the attacks against NDP. The main goal of iSEND project is to provide an open source implementation of SEND for Linux-based operating system especially for Android devices.

iSEND: IPv6 SEcure Neighbor Discovery Implementation for Android Devices - Read More…

RIOT in Amsterdam

The RIOT Summit is the yearly get-together of the community around the RIOT operating system for the Internet of Things (IoT). It aims at bringing together RIOTers, beginners and experts, as well as people interested in the IoT in general. We also welcome decision makers who plan to deploy RIOT in the future. After two successful events, the RIOT Summit moved out of Berlin for the first time. With the kind assistance and sponsorship of the RIPE NCC we were able to host this year's event in Amsterdam in September 2018. As always, the event combined plenary talks, hands-on tutorials, break-out sessions for community discussions and demos spread over two days.

RIOT in Amsterdam - Read More…

DOH! DNS over HTTPS explained

If you had the opportunity to re-imagine the DNS, what might it look like? Normally this would be an idle topic of speculation over a beer or two, but maybe there’s a little more to the question these days. We are walking into an entirely new world of the DNS when we start to think about what exactly might be possible when we look at DNS over HTTPS, or as it’s become more commonly known, DOH.

DOH! DNS over HTTPS explained - Read More…

Why the ITU Plenipotentiary Matters in 2018

Within the RIPE community, it’s easy to take for granted that Internet policy will continue to be developed by the technical community for the benefit of all Internet users – but the open, inclusive, bottom-up model of Internet governance is one that needs to be explained and, at times, defended on the world stage. Read more about how we do that as a Sector Member of the ITU’s Standardization (T) and Development (D) Sectors, and our role as a liaison between the RIPE community and the ITU.

Why the ITU Plenipotentiary Matters in 2018 - Read More…

Measuring the KSK Roll

When viewed as a network infrastructure, looks can be very deceiving when looking at the DNS. It appears to be a simple collection of resolvers and servers. Clients pass their DNS name resolution queries to resolvers, who then identify and ask an appropriate authoritative name server to resolve the DNS name, and the result is passed back to the client.

Measuring the KSK Roll - Read More…

Persistent DNS Connections for Reliability and Performance

For decades, the Domain Name System (DNS) has relied on UDP as its transport protocol of choice, mostly because of its simplicity. New transports such as DNS-over-TLS and DNS-over-HTTPS are now gaining popularity: they offer increased privacy while preventing the use of the DNS as a DDoS attack vector. What may be less obvious is that they can also provide increased performance compared to UDP.

Persistent DNS Connections for Reliability and Performance - Read More…

Researchers' first Encounter with the IETF Community: Measuring TCP, HTTP/2 and QUIC

As Ph.D. students, our typical encounter with the IETF community and their work is by stumbling over RFCs and Internet-Drafts that either relate to or are a fundamental basis for our research. Beyond that, for us, the Internet Engineering Task Force (IETF) has been a vague entity focused on standardisation. Therefore it was a great experience to attend the IETF 101 meeting in London earlier this year and to present our measurement results for TCP, HTTP/2 and QUIC at the Measurement and Analysis for Protocol Research Group (MAPRG)

Researchers' first Encounter with the IETF Community: Measuring TCP, HTTP/2 and QUIC - Read More…

Let's Connect! Easy to Install and Secure VPN Software that Respects your Privacy

Going online on unknown Internet hotspots - whether at a restaurant, an airport or in a restaurant - isn't actually very safe or secure for users. This is due to the open character of hotspots which makes it easy to impersonate legitimate hotspots and eavesdrop on traffic - or even serve malware. The main aim of the Let's Connect! project is to develop a secure, fast and usable open-source VPN solution that can be used by anybody on all types of devices. Thanks to the RIPE NCC Community Projects Fund this important goal is getting within reach.

Let's Connect! Easy to Install and Secure VPN Software that Respects your Privacy - Read More…

Document Actions