- Engineering at ARIN has grown significantly in 2015 with 13.5 new FTEs added across operations, development, UX and other teams. Hiring has been ongoing but slow. - Positions are now full across operations, development, software integration and project management, with just two openings remaining for systems administration and security engineering. - Accomplishments in the last year include deploying RDAP, completing automation projects, improving fault tolerance, and increasing OT&E (operational testing and evaluation) capabilities. - Usage and transactions of services like ARIN Online, Reg-RWS and Whois continue increasing steadily with migration to IPv6 and other new features underway.

1. Engineering Report
Mark Kosters

2. Big changes with Engineering
starting at the beginning of 2015
• Lots of requests for development/operations support
• Engineering has grown by 13.5 FTEs in 2015
– 5 operations
– 3 developers
– 1 UX
– 4 SI
– ½ PM
• We are doing well on hiring people but it is taking
some time
2

3. Staffing Summary
• Operations
– Ten engineers + two managers ( +3 since last meeting)
– Two slots open
• Development
– Twelve engineers + UX expert + manager (+2 since last
meeting)
– FULL
• Software Integration
– Nine engineers + manager (+1 since last meeting)
– FULL
• Project Management
– One PM and one PT PM (+1/2 since last meeting)
– FULL
• CTO
– Moi
3

4. Open Positions
• Looking for two good people
– Systems Administrator
– Security Engineer
4

5. Accomplishments since
ARIN 35
• Transfers
– 8.4 (Inter-RIR) is underway
– 8.2 (Mergers & Acquisitions) released
• RDAP deployed into production (ACSP
2009.21)
• Completed a lot more ACSPs
5

6. Accomplishments - ACSP’s
• Add Links to Whois Query Responses (ACSP 2011.29)
• Show abuse contacts in Whois results by default (2014.25)
• Change Whois Output for Certain /8 Records (ACSP 2013.4)
• Add ASN activity to ARIN-issued report (2014.27)
• Add Two-factor Authentication for web accounts (2013.8)
• Send email notifications for ticketed request updates (2012.1)
• Highlight unpaid invoices in red only when past due (2012.2)
• Send initial POC validation messages to all email addresses
associated with that POC (2013.27)
• Whois-RWS and RDAP now offered over SSL (2014.1, 2014.29)
6

7. Accomplishments Cont…
• Fixed PGP to be RFC 3156 compliant
• Two new public-facing services sites turned up
– Seattle
– San Jose (really Santa Clara)
• Fault tolerance improvements
– Redundancy/failover for internal network
• Corporate help desk and IT support
• ARIN member meeting support
• Care and feeding of servers & network
• OT&E
7

8. OT&E
(Operational Test & Evaluation)
• Lots of people test in production
– Is not the best place to test
– Things do get stuck – may impact others
– Operational Test & Evaluation
• Goodness of OT&E
– Place to test code
– Place to test process
– All services now under ote.arin.net except email
– Need to register to participate
– https://www.arin.net/resources/ote.html
8

9. New Features
• Two-Factor Authentication
– Two people signed up within 30 minutes of
deployment on a Saturday afternoon
– 53 people are now using it
• RDAP
– More IPv6 than IPv4
– 121,002 queries over IPv6 since rollout
– 12,170 queries over IPv4
9

10. ARIN Online Usage
• 104,312 accounts activated since
inception through Q3 of 2015
10
2008
2009
2010
2011
2012
2013
2014
2015*
Number of Accounts Activated
5000 10000 15000 20000
* Through Q3 of 2015

11. Active Usage of ARIN Online
11
0
10000
20000
30000
40000
50000
0 1 2 - 5 6 - 10 11 - 15 >16
Logins
#ofUsers
Times logged in
• Logins from inception through Q3 of 2015
• One user logged in 1,205,887 times!

12. Reg-RWS Transactions
(cumulative)
12
408,383
595,858
846,943
1,066,037
1,311,403
1,498,204
1,749,383
2,006,440
40,374
320,197
841,105
3,524,124
4,296,734
4,715,231
5,034,717
5,662,477
0
1,000,000
2,000,000
3,000,000
4,000,000
5,000,000
6,000,000
ARIN 29 ARIN 30 ARIN 31 ARIN 32 ARIN 33 ARIN 34 ARIN 35 ARIN 36
Template REST

13. DNSSEC
ARIN 36
Number of Orgs with DNSSEC 123
Total Number of Delegations 583,442
DNSSEC Secured Zones 586
Percentage Secured 0.1 %
13

14. RPKI Usage
ARIN
XXX
ARIN
XXXI
ARIN
XXXII
ARIN33 ARIN34 ARIN 35 ARIN 36
RPAs
Signed
27 72 130 162 208 289 358
Certified
Orgs
47 68 108 153 187 220
ROAs 19 60 106 162 239 308 338
Covered
Resources
30 82 147 258 332 430 482
Up/Down
Delegated
0 0 0 1 2
14

15. Whois Queries Per Second
15
0
500
1000
1500
2000
2500
3000
3500
4000
2007-01
2007-04
2007-07
2007-10
2008-01
2008-04
2008-07
2008-10
2009-01
2009-04
2009-07
2009-10
2010-01
2010-04
2010-07
2010-10
2011-01
2011-04
2011-07
2011-10
2012-01
2012-04
2012-07
2012-10
2013-01
2013-04
2013-07
2013-10
2014-01
2014-04
2014-07
2014-10
2015-01
2015-04
2015-07
RESTful
Port 43

16. Whois via IPv6
16
Percentage of traffic over IPv6
0.00%
5.00%
10.00%
15.00%
20.00%
25.00%
V6 Percentage

17. IRR Maintainers
1726 1850
1951
2102
2322
0
500
1000
1500
2000
2500
2011 2012 2013 2014 2015
Maintainers
Maintainers
17
2015 Data through Q3

18. IRR Route / Route6
18636 19969 21204 23535 27255
242
527 698
1072 1385
1
10
100
1000
10000
100000
2011 2012 2013 2014 2015
18
2015 data through Q3

19. IRR InetNum / Inet6Num
2011 2012 2013 2014 2015
InetNum 419 481 531 621 731
Inet6Num 13 25 38 51 77
1
10
100
1000
InetNum
Inet6Num
19
2015 data through Q3

20. IRR object breakout by
Organization
20
Number of Organizations Number of Objects
34 100-1000
5 90-99
6 80-89
1 70-79
16 60-69
14 50-59
362 10-49
522 5-9

21. What we are working on
through 2016 Q1
• Complete automation on transfers
• Rollout “SWIP Easy” – a web-based tool to send in
reassignment information
• Work on various ACSPs
• Work on fully redundant services (like Reg-RWS) to
allow for rolling deployments
• Security audit
• Technical backlog
– Moving from Java6 to Java8
• Essentially done on directory service side
• Starting ARIN Online next year
21

22. 22
Comments?