Security

Security & Incident Response

Security is part of our network operating model, including responsible disclosure, incident response, contact transparency, and route security planning.

Responsible Disclosure

Researchers may report suspected vulnerabilities with reproduction steps, affected assets, impact details, and safe proof of concept.

PGP

PGP key publication is planned for sensitive security and abuse communications.

Route Security

RPKI, IRR, prefix filtering, and route origin validation are included in the network readiness roadmap.

Responsible Disclosure Guidelines

Please avoid destructive testing, data access, service interruption, or social engineering. Reports should include the affected domain or IP, technical details, reproduction steps, and your contact information.

Security Operations

Incident Response Model

Security handling covers network incidents, vulnerability reports, route security, and operational coordination.

IdentifyConfirm affected service, asset, prefix, customer, or vulnerability.
ContainLimit impact through routing, access control, filtering, or provider coordination.
RemediateApply fixes, update policy, rotate access, or improve configuration.
ReviewDocument lessons, monitor recurrence, and update controls.
Controls

Security Controls

Controls are designed for infrastructure reliability and reviewer transparency.

RPKI Roadmap

Route origin validation and registry hygiene for future ASN operations.

PGP Roadmap

PGP key publication is planned for sensitive security and abuse communications.

Responsible Disclosure

Reports should include reproduction steps, affected assets, and impact details.

Explore More

Related Infrastructure Pages

These internal links help operators, partners, and reviewers quickly find the most relevant operational documentation.