- LACNIC has implemented a new system to enhance the security of its RPKI, focusing on the management of cryptographic keys.
- This initiative includes ‘RPKI Signing Ceremonies’ and a checklist to ensure auditability and transparency in critical operations.
What happened: RPKI enhancements by LACNIC improve security
In early January 2025, LACNIC announced the implementation of an advanced system to enhance the security of its Resource Public Key Infrastructure (RPKI). This initiative focuses on managing cryptographic objects associated with RPKI, introducing substantial improvements, particularly in the management of the master key. This key serves as a trust anchor for validating information and is maintained offline, activated only during specific ‘RPKI Signing Ceremonies.’ These ceremonies involve LACNIC staff temporarily accessing the master key to complete critical tasks, ensuring that the entire process is auditable and error-free. To facilitate this, LACNIC has developed a comprehensive checklist that guides staff through each step, ensuring transparency and accuracy throughout the process.
Also read: LACNIC looks at internet security through RPKI deployment
Also read: LACNIC’s NRO RPKI program: Highlights and goals
Why this is important
The enhancement of RPKI security by LACNIC is a significant development in the field of cybersecurity and internet routing. By optimising the management of cryptographic keys, LACNIC not only strengthens its own security posture but also sets a precedent for other organisations in the industry. As the internet continues to expand, the importance of secure routing protocols cannot be overstated. RPKI plays a crucial role in safeguarding against various threats, including route hijacking and other malicious activities that can disrupt internet services.
Moreover, the open-source application developed by LACNIC for managing checklists is a game-changer, promoting best practices and transparency across the community. By allowing developers to create and manage checklists effectively, it enhances operational efficiency and reliability, which are vital in today’s fast-paced digital landscape. As more organisations adopt similar practices, the overall security of the internet infrastructure will improve, benefiting users globally. This initiative not only underscores the growing emphasis on cybersecurity but also highlights LACNIC’s commitment to fostering a safer and more resilient internet environment.
