AIPUB归智期刊联盟

WeChat

Mobile website

2025-4-15- 0
Home > Archive>Volume 34, Issue 4, 2025 >125-135. DOI:10.15888/j.cnki.csa.009818
PDF HTML XML Export Cite reminder
RPKI Relying Party Distributed Synchronization System
Author:
  • Article
    • | |
  • Metrics
    • |
  • Reference [14]
    • |
  • Related
    • |
  • Cited by
    • | |
  • Comments
    Abstract:

    In recent years, the deployment rate of resource public key infrastructure (RPKI) has been increasing year by year, which challenges the performance and efficiency of the original monolithic synchronization architecture of the relying party software. Hence, its architectural design needs to be reevaluated to adapt to the evolution of RPKI technology. This study sorts out and analyzes the RPKI synchronization tasks, and then designs an RPKI relying party synchronization system based on the above analysis. Compared with the monolithic architecture, this distributed architecture boasts higher synchronization performance and node fault tolerance. At the same time, this study designs a variety of scheduling algorithms for the system. To further optimize the performance of the system, this study carries out groups of control analysis experiments of these scheduling algorithms and task scheduling strategies. From the experimental results, the dynamic scheduling algorithm under the large job first (LJF) task scheduling strategy has the best performance in this distributed system.

    Reference
    [1] White House Office of the National Cyber Director. Roadmap to enhancing internet routing security. https://bidenwhitehouse.archives.gov/wp-content/uploads/2024/09/Roadmap-to-Enhancing-Internet-Routing-Security.pdf. [2024-09-24].
    [2] Kristoff J, Bush R, Kanich C, et al. On measuring RPKI relying parties. Proceedings of the 2020 ACM Internet Measurement Conference. 2020. 484–491.
    [3] Friedemann PH, Rodday N, Rodosek GD. Assessing the RPKI validator ecosystem. Proceedings of the 13th International Conference on Ubiquitous and Future Networks. Barcelona: IEEE, 2022. 295–300.
    [4] Mirdita D, Shulman H, Vogel N, Waidner M. The CURE to vulnerabilities in RPKI validation. arXiv:2312.01872v1, 2024.
    [5] Lepinski M, Kent S, Kong D. A profile for route origin authorizations (ROAs). RFC 6482, 2012.
    [6] Snijders J, Madory D. The latest RPKI ROV deployment metrics. NANOG. https://nanog.org/stories/articles/rpki-rov-deployment-reaches-major-milestone/. (2024-05-01).
    [7] 秦超逸, 张宇, 方滨兴. RPKI去中心化安全增强技术综述. 通信学报, 2024, 45(7): 196–205.
    [8] 马迪. 构建可扩展的RPKI依赖方系统部署机制. 中兴通讯技术, 2023, 29(1): 40–44.
    [9] 詹子林. RPKI数据同步及验证优化机制研究与实现 [硕士学位论文]. 北京: 中国科学院大学, 2023.
    [10] Bruijnzeels T, Muravskiy O, Weber B, et al. The RPKI repository delta protocol (RRDP). RFC 8182, 2017.
    [11] Rodday N, Cunha Í, Bush R, et al. The resource public key infrastructure (RPKI): A survey on measurements and future prospects. IEEE Transactions on Network and Service Management, 2024, 21(2): 2353–2373.
    [12] van Hove K, van der Ham J, van Rijswijk-Deij R. Rpkiller: Threat analysis from an RPKI relying party perspective. arXiv:2203.00993, 2022.
    [13] Mirdita D, Schulmann H, Vogel N, et al. The CURE to vulnerabilities in RPKI validation. arXiv:2312.01872, 2023.
    [14] Mirdita D, Schulmann H, Waidner M. SoK: An introspective analysis of RPKI security. arXiv:2408.12359, 2024.
    Related
    Cited by
Get Citation

邵晴,包卓,马迪. RPKI依赖方分布式同步系统.计算机系统应用,2025,34(4):125-135

Copy
Share
Article Metrics
  • Abstract:
  • PDF:
  • HTML:
  • Cited by:
History
  • Received:September 27,2024
  • Revised:October 23,2024
  • Online: February 28,2025
Article QR Code
Links:Journal of Software中国科学院软件研究所中国计算机学会中国科学院国家自然科学基金委员会
You are the firstVisitors
Copyright: Institute of Software, Chinese Academy of Sciences Beijing ICP No. 05046678-3
Address:4# South Fourth Street, Zhongguancun,Haidian, Beijing,Postal Code:100190
Phone:010-62661041 Fax: Email:csa (a) iscas.ac.cn
Technical Support:Beijing Qinyun Technology Development Co., Ltd.

Beijing Public Network Security No. 11040202500063