Re: [sidr] BBN's trust anchor

Sun, 21 Nov 2010 12:33:28 -0800 

Let me provide a brief clarification on terminology. BBN's RP software uses
a database to maintain state. At the top level, there are only two types of
database events: initialization and update. Initialization is perform when one first starts using the software, and then once every few years after that. Update is performed whenever the operator wants a state update. Initialization takes 
hours; update takes < 15 minutes.

Details. Assume a total set of 300,000 digital objects. To populate an empty
database, assuming some nominal network bandwidth model, with the set of
definitely valid or possibly-might-become-valid-in-the-future objects, takes
~ 10 hours. Assuming the operator has a backup of the DB, the only reason
to re-init the database is to clean out unreachable objects. Of course the DB already handles expiration and revocation, but it does not do classic garbage 
collection where unreachable objects are removed. Therefore, after a few
years the operator might chose to re-init. The re-init operation can be done
to an offline DB, so that the current DB is not down for the entire re-init period, 
only for a few seconds at the end, where the pointer to the "current" DB is
switched.

For update, we assume a 5% turnover rate per day. That is, rsync changes
the contents of the local filesystem at a rate of 5% per day. In this model,
an update takes < 15 minutes. Therefore, the operator can update the DB
as often as once every hour.

Of course, as network transfer time goes up, performance goes down as
well, but this applies to any RP implementation, not just BBN's. In our Jan 1 release, we will provide parallelized rsync's, so one slow link won't impact the 
entire update process.

Hope this helps,

Mark Reynolds
----- Original Message ----- From: "Randy Bush" <[email protected]> 
To: "Andrew Chi" <[email protected]>
Cc: "sidr wg" <[email protected]>
Sent: Monday, November 15, 2010 11:12 AM
Subject: Re: [sidr] BBN's trust anchor



1) The "startup" cost of downloading and processing all RPKI data needs
to be on the order of hours and not days.


no, it has to be minutes not hours




_______________________________________________
sidr mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/sidr

Reply via email to