On 11/15/2010 10:30 AM, Sandra Murphy wrote:
On Mon, 15 Nov 2010, Stephen Kent wrote:
On 11/10/2010 11:55 AM, Sandra Murphy wrote:
What's your idea of when the software would be validating all 300K
entries at once, and would need to do so quickly?,
If an RTP looses state it will need to download and process all the RPKI
data.
So at startup kind of events. I get that. But what is the "fast enough"
part of Andrew's statement? I speculated that this might mean "fast
enough to avoid delaying any updates" but that seems a very strong goal.
I think there are two aspects to "fast enough".
1) The "startup" cost of downloading and processing all RPKI data needs
to be on the order of hours and not days.
2) The "update" cost of synchronizing changes to the repository must not
cause the validator to fall behind the rate of change in the repository.
I.e., once we have a large collection of objects, is the
slightly-increased marginal cost of modifying one file within acceptable
limits?
I believe our RP software is well within these goals, but it's always
good to test scalability assumptions like these.
As for the 300K estimate, I'm happy to be corrected, but the order of
magnitude ought to be similar to:
(# AS's participating in BGP routing) x (small multiplier for crls,
manifest, and tree structure)
In October 2009, RIPE published an AS count of 15,495. If anyone else
has better numbers, please feel free to chime in.
-Andrew
_______________________________________________
sidr mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/sidr
