IRRedicator: Pruning IRR with RPKI-Valid BGP Insights
Minhyeok Kang
Network and Distributed System Security (NDSS) Symposium 2024 · Day 1 · Resource PKI
The Internet's routing infrastructure, underpinned by the Border Gateway Protocol (BGP), faces persistent security vulnerabilities due to its foundational design prioritizing stability over security. This talk introduces **IRRedicator**, a novel machine learning-based approach designed to significantly enhance the reliability of the Internet Routing Registry (IRR) by identifying and eliminating stale or inaccurate Route objects. Presented by Minhyeok Kang, this work addresses a critical challenge: while the Resource Public Key Infrastructure (RPKI) offers strong cryptographic routing security, its adoption remains limited, leaving the more widely deployed but often unreliable IRR as a primary source for BGP validation.