SCION is a secure path-aware Internet architecture developed in Switzerland that is designed to achieve high resilience to routing attacks and offer path selection for Internet users and operators with safety critical traffic such as in the financial and healthcare sectors. RPKI/ROV is useful for origin validation but does not validate paths, ASPA is still an evolving technology, whilst BGPSEC has yet to be widely deployed and needs explicit router support along a path to achieve the full benefits.
SCION has commercial and open-source implementations and is in production use by the financial services and healthcare industry in Switzerland and internationally. It is currently supported by Swiss ISPs and SwissIX, is being evaluated for use in government, power utility, aviation, military and other applications, whilst a number of vendors are also interested in implementing it in their products.
This talk will discuss the SCION design and architecture, its trust model, how it can be deployed, as well as some deployment experiences to-date. It will also discuss the IETF/IRTF work, and the community efforts supported by the SCION Association to encourage further deployment and development.