APNIC Policy 101: How Policy Shapes Operations — and How Policy Fellows Are Making Participation Easier
At APRICOT 2026 in Jakarta, APNIC’s Policy 101 session illustrated how the region’s internet number resource (INR) policy directly shapes routing, incident response, and registry accuracy. The workshop, led by APNIC Policy Fellows, walked participants through a simulated policy development cycle, using a draft proposal to improve whois contact validation. Community feedback transformed the imperfect draft into a consensus‑ready document, highlighting the collaborative nature of the APNIC Policy Development Process (PDP). The exercise underscored that transparent, consensus‑based policy making can resolve real‑world operational challenges.
Strengthening IPv6 Collaboration: Xiong’an New Area Delegates Visit APNIC
APNIC awarded Xiong’an New Area its first city‑level IPv6 plaque, recognizing the district’s rapid rollout of IPv6 infrastructure. Delegates from Xiong’an and APNIC discussed a joint roadmap that includes IPv6 deployment training and an RPKI roadshow hosted by the city....
RPKI vs Social Engineering: A Case Study in Route Hijacking
At APRICOT 2026, APNIC and LACNIC disclosed a BGP hijack in July 2025 that combined technical spoofing with social engineering. The attacker forged identity documents to convince a multinational upstream provider to activate transit for a stolen ASN, enabling short‑lived, unauthorized route...
Demystifying Performance of eBPF Network Applications
The article examines why eBPF, despite success in network functions, has limited adoption in general networked applications such as web servers and databases. It highlights architectural constraints in the eBPF kernel runtime, APIs, and compiler that impede offloading complex, blocking...
Your Elected Leaders: Shaila Sharmin, Policy SIG Co-Chair
Shaila Sharmin, a cybersecurity architect at Prime Bank PLC, has been re‑elected as Co‑Chair of APNIC’s Policy Special Interest Group for APNIC 60, following prior terms at APNIC 52 and 56. Her career spans ISP, WiMAX and banking sectors, giving her a practical...
Getting Network Automation Right: A Practical Strategy for Enterprise Networks
Enterprise network automation hinges on strategic planning rather than just tool selection. Leaders must prioritize process maturity, governance, and skill development before deploying IaC platforms like Terraform or Ansible. A phased, high‑frequency task approach mitigates risk in brownfield environments, while...
bgproutes.io: A Next-Generation BGP Data Collection Platform
bgproutes.io launches as a next‑generation BGP data platform that aggregates routing information from RIPE RIS, RouteViews, PCH and its own peers, surpassing 5,000 worldwide VPs. It uses automated peering via PeeringDB and the BGP Monitoring Protocol to capture both best‑path and...
APNIC Routing Security SIG at APRICOT 2026: Social Engineering, RPKI, ASPA, & TA Constraints
At APRICOT 2026, APNIC’s Routing Security SIG highlighted six RPKI‑related initiatives, most notably Indonesia’s rapid climb to over 90% RPKI coverage driven by the IIX’s drop‑invalid policy. The session introduced the Autonomous System Provider Authorization (ASPA) object for path validation and...
How to Talk About the Trust in Your Devices: An IRTF Draft
The IRTF’s 14th draft, titled “A Taxonomy of operational security considerations for manufacturer‑installed keys and Trust Anchors,” offers a structured classification of trust‑bootstrapping mechanisms for IoT devices. Authored by Michael Richardson, the document distinguishes between trust anchors, trusted zones, and...
Towards an Industry Best Practice for DNSSEC Automation
DNSSEC adoption remains modest, with only 36 % of resolvers validating and 7 % of domains securely delegated in 2025, hampered by complex enrollment and manual key‑rollovers. Automation using authenticated CDS/CDNSKEY records can eliminate these hurdles, and several European ccTLDs have already...
Balancing Growth and Efficiency — APNIC 61 Policy SIG Deliberations on IPv6 and IPv4 Allocation
At APNIC 61’s Policy SIG in Jakarta, members debated two pivotal proposals: prop‑164, which would lower the minimum IPv6 allocation from a /32 to a /36, and prop‑168, which seeks to raise the maximum IPv4 delegation for account holders to a...
Reflections on a Transforming Interconnection Ecosystem
Flavio Luciani and John Souter’s new analysis shows the global peering market is not contracting but evolving. While mature regions exhibit modest dips in ASN counts, overall IXP capacity continues to rise, driven by traffic consolidation and the growth of...
On Misusing Transparent DNS Forwarders For Amplification Attacks
Researchers have identified transparent DNS forwarders as a potent, overlooked vector for reflective amplification attacks. Unlike traditional open resolvers, these forwarders relay queries without rewriting source IPs, allowing attackers to exploit shielded recursive resolvers and bypass rate‑limiting controls. Weekly Internet‑wide...
The Current State of RDAP
The IETF‑ratified Registration Data Access Protocol (RDAP) has entered a rapid growth phase after the mandatory whois sunset on 28 January 2025. Who‑is queries fell 60 % while RDAP queries surged from 7 billion to 65 billion per month, overtaking whois by June 2025. Adoption now...