DENOG16

Kevin Meynell

Kevin Meynell is the Community Engagement Manager at the SCION Association where he supports the SCION technical community and standardisation efforts. He previously led the MANRS programme that promoted the implementation of better routing security practices on the Internet, led the Deploy360 programme to encourage IPv6 and DNS security deployment, and worked on South-East Europe and Central Asia IXP development.

Prior to that he was the Training Manager at APNIC, Manager of the Shibboleth Consortium, and spent 16 years as a Project Development Officer at TERENA (now the GÉANT Association). This included working on IPv6 deployment, eduroam, the Global Lambda Interconnect Facility, the European R&E PKI Service and TF-CSIRT, as well as NREN Development Support in Eastern and Southern Europe, Central Asia, and the Middle East.

Kevin is also a member of the RIPE and APRICOT Programme Committees, and previously served on the CAPIF, ENOG, TNC and APAN Programme Committees.


Session

11-18
15:10
10min
SCION: Secure Path-Aware Internet Routing
Kevin Meynell

SCION is a secure path-aware Internet architecture, designed to achieve high resilience to routing attacks and path selection for Internet users and operators with safety critical traffic such as in financial and healthcare sectors. RPKI/ROV is useful for origin validation but does not validate paths, ASPA is still an evolving technology, whilst BGPSEC has yet to be widely deployed and needs explicit router support along a path to achieve the full benefits.

SCION has commercial and open-source implementations and is in production use by the financial services and healthcare industry in Switzerland and internationally. This includes the SCION Research & Education Network (SCIERA) which includes connections to OVGU Magdeburg. It is also currently being evaluated for use in government, power utility, aviation, military and other applications, with a number of vendors interested in implementing it in their products.

This talk will discuss the SCION design and architecture, its trust model, how it can be deployed, as well as some deployment experiences to-date. It will also discuss the IETF/IRTF work, and the community efforts supported by the SCION Association to encourage further deployment and development.

Auditorium