IETF Logo Mail Archive

Re: [ntpwg] New Version Notification for draft-ietf-ntp-network-time-security-12.txt and draft-ietf-ntp-using-nts-for-ntp-03.txt

dieter.sibold@ptb.de Wed, 23 December 2015 15:50 UTC

Return-Path: <ntpwg-bounces+ntp-archives-ahfae6za=lists.ietf.org@lists.ntp.org>
X-Original-To: ietfarch-ntp-archives-ahFae6za@ietfa.amsl.com
Delivered-To: ietfarch-ntp-archives-ahFae6za@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A19301A1B11 for <ietfarch-ntp-archives-ahFae6za@ietfa.amsl.com>; Wed, 23 Dec 2015 07:50:09 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.909
X-Spam-Level:
X-Spam-Status: No, score=-6.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lxj5HjhQAuBv for <ietfarch-ntp-archives-ahFae6za@ietfa.amsl.com>; Wed, 23 Dec 2015 07:50:07 -0800 (PST)
Received: from lists.ntp.org (lists.ntp.org [149.20.68.7]) by ietfa.amsl.com (Postfix) with ESMTP id C53141A1B0B for <ntp-archives-ahFae6za@lists.ietf.org>; Wed, 23 Dec 2015 07:50:07 -0800 (PST)
Received: from lists.ntp.org (lists.ntp.org [149.20.68.7]) by lists.ntp.org (Postfix) with ESMTP id A6B5F86DB12 for <ntp-archives-ahFae6za@lists.ietf.org>; Wed, 23 Dec 2015 15:50:07 +0000 (UTC)
X-Original-To: ntpwg@lists.ntp.org
Delivered-To: ntpwg@lists.ntp.org
Received: from mail1.ntp.org (mail1.ntp.org [IPv6:2001:4f8:fff7:1::5]) by lists.ntp.org (Postfix) with ESMTP id 1E8E486D831; Wed, 23 Dec 2015 15:28:19 +0000 (UTC)
Received: from mx1.bs.ptb.de ([192.53.103.120]) by mail1.ntp.org with esmtps (TLSv1:AES256-SHA:256) (Exim 4.77 (FreeBSD)) (envelope-from <dieter.sibold@ptb.de>) id 1aBlKk-000KbH-5R; Wed, 23 Dec 2015 15:28:19 +0000
Received: from smtp-hub.bs.ptb.de (smtpint01.bs.ptb.de [141.25.87.32]) by mx1.bs.ptb.de with ESMTP id tBNFS6g6010465-tBNFS6g8010465 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA bits=256 verify=FAIL); Wed, 23 Dec 2015 16:28:06 +0100
Received: from rose.bs.ptb.de (rose.bs.ptb.de [141.25.85.201]) by smtp-hub.bs.ptb.de (Postfix) with ESMTP id 9BD13F58A; Wed, 23 Dec 2015 16:28:06 +0100 (CET)
In-Reply-To: <567AB392.8040008@ntp.org>
References: <56785CE5.6080102@ntp.org> <OFDECED69B.3FA71F92-ONC1257F22.0063AA4C-C1257F22.006401FE@ptb.de> <OF3D6DD6FA.812C6BCC-ONC1257F22.00775A28-C1257F22.00775A29@ptb.de> <567877FB.7030608@ntp.org> <OF0AC1CCBA.2E240196-ONC1257F23.00313FBA-C1257F23.0033AC80@ptb.de> <5679639D.4010906@nwtime.org> <56799A3E.3020506@ntp.org> <OFB626AB50.8283A0AC-ONC1257F24.002B274D-C1257F24.002CE30C@ptb.de> <567AB392.8040008@ntp.org>
To: mayer@ntp.org
MIME-Version: 1.0
Message-ID: <OF658FFA8B.3F275355-ONC1257F24.00546224-C1257F24.0054F811@ptb.de>
From: dieter.sibold@ptb.de
Date: Wed, 23 Dec 2015 16:28:04 +0100
X-SA-Exim-Connect-IP: 192.53.103.120
X-SA-Exim-Rcpt-To: mayer@ntp.org, ntpwg@lists.ntp.org, ntpwg-bounces+dieter.sibold=ptb.de@lists.ntp.org
X-SA-Exim-Mail-From: dieter.sibold@ptb.de
X-SA-Exim-Version: 4.2
X-SA-Exim-Scanned: Yes (on mail1.ntp.org)
Subject: Re: [ntpwg] New Version Notification for draft-ietf-ntp-network-time-security-12.txt and draft-ietf-ntp-using-nts-for-ntp-03.txt
X-BeenThere: ntpwg@lists.ntp.org
X-Mailman-Version: 2.1.20
Precedence: list
List-Id: IETF Working Group for Network Time Protocol <ntpwg.lists.ntp.org>
List-Unsubscribe: <http://lists.ntp.org/options/ntpwg>, <mailto:ntpwg-request@lists.ntp.org?subject=unsubscribe>
List-Archive: <http://lists.ntp.org/pipermail/ntpwg/>
List-Post: <mailto:ntpwg@lists.ntp.org>
List-Help: <mailto:ntpwg-request@lists.ntp.org?subject=help>
List-Subscribe: <http://lists.ntp.org/listinfo/ntpwg>, <mailto:ntpwg-request@lists.ntp.org?subject=subscribe>
Cc: ntpwg@lists.ntp.org, ntpwg <ntpwg-bounces+dieter.sibold=ptb.de@lists.ntp.org>
Content-Type: multipart/mixed; boundary="===============1998024034085952041=="
Errors-To: ntpwg-bounces+ntp-archives-ahfae6za=lists.ietf.org@lists.ntp.org
Sender: ntpwg <ntpwg-bounces+ntp-archives-ahfae6za=lists.ietf.org@lists.ntp.org>

So, the intention of the MAC extension field is to replace the current MAC 
field? And it will support the current pre-shared key authentication 
scheme?

Dieter

-------------------------------------
Dr. Dieter Sibold
Physikalisch-Technische Bundesanstalt
Q.42 - Serversysteme und Datenhaltung
QM-Verantwortlicher der Stelle IT
Bundesallee 100 
D-38116 Braunschweig
Tel:    +49-531-592-84 20
E-Mail: dieter.sibold@ptb.de




Von:    Danny Mayer <mayer@ntp.org>
An:     dieter.sibold@ptb.de
Kopie:  ntpwg@lists.ntp.org, ntpwg 
<ntpwg-bounces+dieter.sibold=ptb.de@lists.ntp.org>, Richard Welty 
<rwelty@nwtime.org>
Datum:  23.12.2015 15:45
Betreff:        Re: [ntpwg] New Version Notification for 
draft-ietf-ntp-network-time-security-12.txt and 
draft-ietf-ntp-using-nts-for-ntp-03.txt



On 12/23/2015 3:10 AM, dieter.sibold@ptb.de wrote:
> Danny, I understand your point. Yes the MAC extension field in 6.1.4.3
> has to be described more clearly. But why should we need a special draft
> for a MAC extension field. There is already the draft
> "draft-ietf-ntp-extension-field" which should me general enough for
> additional new extension fields.
> 

I know, I coauthored that draft with Tal Mizrahi. The problem is that a
MAC extension field needs to be specified so that it can replace the
existing MAC field. I'm also considering allowing for multiple MAC
extension fields in a single packet so that one MAC hashing algorithm
can be retired if found to be compromisable without disrupting NTP
infrastructure and existing implementations. It also needs some
discussion on usage by responding packets and which to use.

Danny




_______________________________________________
ntpwg mailing list
ntpwg@lists.ntp.org
http://lists.ntp.org/listinfo/ntpwg

v2.23.0 | Report a Bug | By Email