Skip to main content
APRICOT 2023 logo
MANILA, PHILIPPINES
20 February – 2 March 2023
Sun Graphics

Accepted Presentations

Keynotes

Challenges to Enabling Digital Enterprise Ecosystems

  • William T. Torres

Risky BIZness: Risks Derived from Registrar Name Management

  • Gautam Akiwate

Challenges to Enabling Digital Enterprise Ecosystems

Recent developments in the application of Information and Communication Technologies (ICTs) demand that we look at new approaches to providing solutions that respond to fast-changing requirements in the marketplace. I suggest that we focus attention on the needs of small to medium-size enterprises (SMEs) and how they can be enabled to utilize available ICT resources in a more efficient and effective way.

I believe that using the “digital enterprise ecosystems approach” will help SMEs actively participate in bringing about the appropriate digital transformation in their respective enterprise ecosystems. However, ICT service providers will have to reinvent themselves if they are to benefit from this emerging opportunity.

Conference

Cloud SDN: BGP Peering and RPKI

  • Shaowen Ma

Being a Better Netizen: MANRS @ DO

  • Tim Raphael

A quick look at QUIC

  • Geoff Huston

SDM - A new (subsea) cable paradigm

  • Mark Tinka

Stairway to Anycast

  • Jan Zorz

SRv6: Beyond the hype

  • Aditya Kaul

The New, Encrypted Protocol Stack & How to deal with it

  • Bart Van de Velde

Segment routing (SRv6, SR-MPLS) and the quest for the holy grail of transport protocols

  • Paresh Khatri

Routing 2022

  • Geoff Huston

IETF Roundup for APRICOT 2023

  • Dhruv Dhody

KINDNS: Promoting DNS Operational Best Practices

  • Champika Wijayatunga

Merchant Silicon 800Gbps/1.6Tbps adaption Prediction - Golden Age of networking, driven by Moore's Law

  • Shishio Tsuchiya

Last Mile Connectivity: Addressing the Affordability Frontier

  • Jonathan Brewer

Keep Ukraine Connected after one year and my lessons learned for the community

  • Rene Fichtmuller

Cloud SDN: BGP Peering and RPKI

In this session, we will talk about Cloud SDN network evolution, and How to build global Virtual Private Cloud network. How Customer access the Cloud resource and how Cloud networking leverage RPKI/peer Lock to build a better secure internet.

Being a Better Netizen: MANRS @ DO

One of the core values at DigitalOcean is 'Our community is bigger than us' - because we're a member of the Internet community, we felt it was necessary to do better and improve our routing security posture. So during 2020, we set out to become compliant with the MANRS Cloud and CDN program. This presentation will guide you through how we interpreted the MANRS guidelines and some of the tooling we used to implement better routing security in our global network.

A quick look at QUIC

A presentation that looks at our experiences in setting up a QUIC measurement platform and some results from the measurement

SDM - A new (subsea) cable paradigm

This paper summarizes the current state-of-the-art in how submarine cable transmission technologies are evolving to support even more capacity over longer distances, not only as the content providers dominate the space, but also as older cables run out of capacity and need to be replaced with new systems.

Stairway to Anycast

A road trip: The journey of how we imagined doing anycast, built a prototype and deployed it, the lessons learned and what we think is required in terms of measurements to actually deploy a good anycast network.

SRv6: Beyond the hype

In the recent years there has been a lot of industry interest and hype around Segment Routing for IPv6 (SRv6). In this session, Aditya will attempt to separate the hype from reality and focus on the ground realities of implementing an SRv6 based network and present a case study.

The session will cover the following topics:

  • SRv6: Industry outlook
  • SRv6: Case Study - XL Axiata
  • SRv6: Deployment- experience & challenges

The New, Encrypted Protocol Stack & How to deal with it

The transition of network traffic from TCP to QUIC is happening extremely fast with measurements across the world showing QUIC has already reached nearly 50% of total traffic, doubling approximately every 18 months. The new protocol stack, comprising QUIC, encrypted over UDP, HTTP/3, DNS over HTTP (DoH) and eSNI/ECH, all over TLS (Transport Layer Security) 1.3, completely obfuscates the traffic between application nodes and simultaneously drives a phenomenal change in traffic flow behaviour with applications now fully in control of how they get delivered to end-users, disintermediating the network in the process. Large Internet & Cloud players and many emerging application players are rapidly adopting the new protocol stack and traditional TCP/IP derived technologies, combined with L4+ monitoring techniques, are proving largely insufficient in keeping up with this evolution. Application detection and visibility is significantly impaired by this stack and the key technological paradigms on which communications service providers have built their network capabilities are now being challenged and obsoleted by these new protocols. In this session, we will show how the new protocol stack is constructed, how it behaves in terms of both visibility and congestion management, the impact it has on mobile infrastructure elements including the RAN (Radio Access Network) - and not only - and an analysis of how much traffic it occupies today in mobile and fixed networks. In addition, we will discuss the techniques Communication service providers can use to evolve their network architecture and services capabilities to keep pace with this evolving protocol stack, enabling better traffic visibility, Quality of Experience and more efficient use of precious 5G spectrum.

Segment routing (SRv6, SR-MPLS) and the quest for the holy grail of transport protocols

This short talk is a personal perspective on Segment Routing and, in particular, SRv6.

I intend to dispel some of the myths around SRv6 as I see them and highlight some major concerns around its current state of development.

I also intend to bring the conversation back to one that is led from actual network requirements instead of one that starts with 'how can I deploy SRv6'

Routing 2022

What changed in the Internet's routing environment across 2022? In this presentation I look at the change in the size of the routed prefix collection in IPv4 and IPv6, and also look at the churn rate in BGP. Is BGP still able to scale efficiently as we cross the 1M routing prefix threshold?

KINDNS: Promoting DNS Operational Best Practices

This presentation will focus on the KINDNS framework to a wide variety of DNS operators to promote voluntary adherence to a clear set of security best practices and more effective DNS operations.

Merchant Silicon 800Gbps/1.6Tbps adaption Prediction - Golden Age of networking, driven by Moore's Law

Merchant silicon switch can get benefit directly from Semi Conductor development. CMOS technology now finally reached A angstrom from nanometer. Share how to adapt these technology to switching chip, and how to support 800Gbps and 1.6Tbps.

Last Mile Connectivity: Addressing the Affordability Frontier

This talk examines why new technologies are failing to deliver affordable connectivity to rural and remote populations. It explores access gaps and details technological, regulatory, and investment strategies that can help close the digital divide. Explaining how last-mile connectivity can provide affordable, resilient, and reliable solutions, it shows why it is central to building an inclusive digital future for all.

Keep Ukraine Connected after one year and my lessons learned for the community

In this presentation, I don't just want to talk about how the whole project came about. Rather, I would like to talk about our lessons learned. How we structured ourselves and what we think is important in case of a disaster. This is not a politically motivated presentation, but rather a presentation to get the colleagues out of their hamster wheel and maybe rethink things.

Peering Forum

RPKI ROA for IP Address of IX Segment - Survey and Suggestion

  • Masataka Mawatari

Manage IX RS from Git!

  • Anurag Bhatia

Panel Discussion: Home Grown vs Franchise IXPs

  • Philip Smith

Philippine Internet Landscape

  • Achie Atienza

RPKI ROA for IP Address of IX Segment - Survey and Suggestion

RPKI deployment is currently ongoing in each network operated by each ASes. On the other hand, IX also operates networks as IX segments for peering platforms, and ROA registration is important for IP addresses used as IX segments. I have surveyed the current status of IX segment, and would like to introduce the result and suggest ROA registration in the proper manner in this session.

Panel Discussion: Home Grown vs Franchise IXPs

Historically, IXPs have been developed by the local Internet industry to facilitate local peering, improving local connectivity for the members of the IXP.

Recent years has seen the emergence of Franchise IXPs, where commercial IXPs are now more involved in establishing franchises around the world.

The panel discussion aims to investigate the advantages and disadvantages of the Franchise IXPs when compared with the Home-grown IXPs, looking at the benefits and pitfalls of each model, and the general overall impacts on local peering and interconnectivity.

Philippine Internet Landscape

This material intends to provide an overview of the key Internet Infrastructure in the Philippines. It is also formatted to complement the Peering Personals information, providing visual reference of the distribution across the three major island group.

The presentation will also talk about insights influencing the local Peering ecosystem and the multiple stakeholders.

Lastly, it culminates to local perspectives that helped drive the peering landscape. (eventually moving forward)

Tutorials

SD-WAN: a conceptual overview

  • Paresh Khatri

Segment Routing: a tutorial

  • Paresh Khatri

RPKI Tutorial - ROV Hackathon

  • Aftab Siddiqui

DDoS Backtrack Investigative Task Force (DBIT) - Turning the Tables on the DDoS Miscreants

  • Barry Greene

The time has come to concentrate on Streaming Telemetry and Step back from SNMP

  • Md Rashedul Hasan
  • Terry Sweetser

SD-WAN: a conceptual overview

SD-WAN has garnered significant traction in the business services market as a credible alternative to MPLS VPNs. However, the proprietary nature of many implementations means that straightforward answers on what SD-WAN means are difficult to find. In this webinar, we will providing a high-level of SD-WAN technology and the benefits it provides over traditional enterprise VPNs. We will also briefly cover SD-WAN standardisation and some of the key use cases.

Segment Routing: a tutorial

Segment Routing is an interesting paradigm shift in routing that allows source nodes to steer a packet along an explicit route using information attached to the packet and without the need for per-path state information to be held at transit nodes.

Such a capability is of particular importance when considering SDN approaches which decouple the control plane and data plane, allowing centralised computation of optimal paths which can then be pushed down to source nodes to achieve desired traffic flow steering.

In this technology tutorial, we cover the following:

  • an introduction to the technology of segment routing: terminology, concepts and data plane behaviour
  • a discussion of the most common use cases of segment routing
  • an overview of the protocol extensions to enable segment routing
  • the use of Segment Routing to provide better IP Fast Reroute coverage
  • the use of Segment Routing with Seamless MPLS

RPKI Tutorial - ROV Hackathon

In this tutorial we will go through a quick review of the RPKI and will focus mainly on installing Relying Party Software and doing the origin validation. Participants will be able to play with the full routing table.

DDoS Backtrack Investigative Task Force (DBIT) - Turning the Tables on the DDoS Miscreants

For over a year, a community of major ASNs has been persistently pushing back on the DDoS Miscreaents operating boots, stressors, and other tools used in DDoS Reflection attacks. DBIT was based on community consultation, where the problem we rethought with the desire to shift the economic consequence of DDoS onto the criminals who are perpetrating the DDoS.

One year into DBIT's persistent tempo of action has shifted the types of DDoS to more 'bot/proxy' vs. reflection. We have a community collectively taking action along with new tools, techniques, and BCPs to protect our mutual business interests.

This TLP: RED session will be the first conference DBIT's work is being shared with a broader community. We will focus on:

  • How we put the ladder on a wall leads to desired and measurable outcomes.
  • How the community consultation via M3AAWG and several Operational/Security Trust Groups flowed into collective action.
  • The methodologies DBIT uses.
  • The significant challenges the DBIT community faces.
  • How organizations can support, contribute, and participate as DBIT moves forward, pushing back on DDoS Miscreants, the tools used for DDoS, and the ecosystem that supports DDoS.

This tutorial is in-person only. No remote (TLP: AMBER). Participants who wish DBIT briefings can request 1:1 sessions with the individual or the organization.

BoFs

NOG Operators BoF

  • Yoshinobu Matsuzaki

NOG Operators BoF

The circumstances have changed, and gradually some Network Operators Groups (NOGs) have been able to hold its events on-site. Attendees are reminded of the value and importance of NOG and such gatherings.

The purpose of this BoF is for NOG organizers to bring in each other's knowledge and experience to contribute to better NOG activities within the region.