On Mon, Jun 18, 2018 at 12:43:22PM +0000, denis walker via db-wg wrote:
Currently 4 of the 5 RIRs operate an IRR and they are all based on a version of the RIPE Database software. So we already have a common IRR database format. Add in this cross registry authorisation and we have a global IRR. I don't see the point of putting in the effort to develop a multitude of alternative/commercial IRRs when we can go the other way and have a single, authoritative, free IRR service. We have one internet, one DNS, why not one IRR?
A single IRR is a single point of failure and a single point of attack. Much preferrable would be if all IRRs mirrored the authorisation data from all other (RIR?) IRRs. Am I correct in thinking that this is now done for RPKI data in order to address the SPOF problem? rgds, Sascha Luck
