IETF Logo Mail Archive

Re: [ntpwg] New Version Notification for draft-ietf-ntp-network-time-security-12.txt and draft-ietf-ntp-using-nts-for-ntp-03.txt

kristof.teichel@ptb.de Mon, 21 December 2015 21:50 UTC

Return-Path: <ntpwg-bounces+ntp-archives-ahfae6za=lists.ietf.org@lists.ntp.org>
X-Original-To: ietfarch-ntp-archives-ahFae6za@ietfa.amsl.com
Delivered-To: ietfarch-ntp-archives-ahFae6za@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5ABA11ACDA2 for <ietfarch-ntp-archives-ahFae6za@ietfa.amsl.com>; Mon, 21 Dec 2015 13:50:22 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.908
X-Spam-Level:
X-Spam-Status: No, score=-1.908 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, HTML_NONELEMENT_30_40=0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id M2eFfvWVgtwV for <ietfarch-ntp-archives-ahFae6za@ietfa.amsl.com>; Mon, 21 Dec 2015 13:50:20 -0800 (PST)
Received: from lists.ntp.org (lists.ntp.org [IPv6:2001:4f8:fff7:1::7]) by ietfa.amsl.com (Postfix) with ESMTP id 721CB1ACDA3 for <ntp-archives-ahFae6za@lists.ietf.org>; Mon, 21 Dec 2015 13:50:20 -0800 (PST)
Received: from lists.ntp.org (lists.ntp.org [149.20.68.7]) by lists.ntp.org (Postfix) with ESMTP id 7BE5786DB08 for <ntp-archives-ahFae6za@lists.ietf.org>; Mon, 21 Dec 2015 21:50:19 +0000 (UTC)
X-Original-To: ntpwg@lists.ntp.org
Delivered-To: ntpwg@lists.ntp.org
Received: from mail1.ntp.org (mail1.ntp.org [IPv6:2001:4f8:fff7:1::5]) by lists.ntp.org (Postfix) with ESMTP id 399E986DAD1 for <ntpwg@lists.ntp.org>; Mon, 21 Dec 2015 21:43:51 +0000 (UTC)
Received: from mx1.bs.ptb.de ([192.53.103.120]) by mail1.ntp.org with esmtps (TLSv1:AES256-SHA:256) (Exim 4.77 (FreeBSD)) (envelope-from <kristof.teichel@ptb.de>) id 1aB8F3-000OxG-Sd; Mon, 21 Dec 2015 21:43:51 +0000
Received: from smtp-hub.bs.ptb.de (smtpint01.bs.ptb.de [141.25.87.32]) by mx1.bs.ptb.de with ESMTP id tBLLhcSB020847-tBLLhcSD020847 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA bits=256 verify=FAIL); Mon, 21 Dec 2015 22:43:38 +0100
Received: from lotus.bs.ptb.de (lotus.bs.ptb.de [141.25.85.200]) by smtp-hub.bs.ptb.de (Postfix) with ESMTP id C6A8BD924; Mon, 21 Dec 2015 22:43:38 +0100 (CET)
X-Disclaimed: 1
MIME-Version: 1.0
Importance: Normal
X-Priority: 3 (Normal)
In-Reply-To: <56785CE5.6080102@ntp.org>
References: <56785CE5.6080102@ntp.org>, <OFDECED69B.3FA71F92-ONC1257F22.0063AA4C-C1257F22.006401FE@ptb.de>
From: kristof.teichel@ptb.de
To: mayer@ntp.org
Message-ID: <OF3D6DD6FA.812C6BCC-ONC1257F22.00775A28-C1257F22.00775A29@ptb.de>
Date: Mon, 21 Dec 2015 22:43:38 +0100
X-SA-Exim-Connect-IP: 192.53.103.120
X-SA-Exim-Rcpt-To: mayer@ntp.org, ntpwg@lists.ntp.org
X-SA-Exim-Mail-From: kristof.teichel@ptb.de
X-SA-Exim-Version: 4.2
X-SA-Exim-Scanned: Yes (on mail1.ntp.org)
Subject: Re: [ntpwg] New Version Notification for draft-ietf-ntp-network-time-security-12.txt and draft-ietf-ntp-using-nts-for-ntp-03.txt
X-BeenThere: ntpwg@lists.ntp.org
X-Mailman-Version: 2.1.20
Precedence: list
List-Id: IETF Working Group for Network Time Protocol <ntpwg.lists.ntp.org>
List-Unsubscribe: <http://lists.ntp.org/options/ntpwg>, <mailto:ntpwg-request@lists.ntp.org?subject=unsubscribe>
List-Archive: <http://lists.ntp.org/pipermail/ntpwg/>
List-Post: <mailto:ntpwg@lists.ntp.org>
List-Help: <mailto:ntpwg-request@lists.ntp.org?subject=help>
List-Subscribe: <http://lists.ntp.org/listinfo/ntpwg>, <mailto:ntpwg-request@lists.ntp.org?subject=subscribe>
Cc: ntpwg@lists.ntp.org
Content-Type: multipart/mixed; boundary="===============8706200215189377241=="
Errors-To: ntpwg-bounces+ntp-archives-ahfae6za=lists.ietf.org@lists.ntp.org
Sender: ntpwg <ntpwg-bounces+ntp-archives-ahfae6za=lists.ietf.org@lists.ntp.org>

Hi Danny,

since one of the past versions, we have discontinued usage of the MAC field and now use an additional extension field which carries exactly the MAC (covering everything else).
If you find any fragments in the documents that say otherwise, please let us know.

Kristof


-----"ntpwg" <ntpwg-bounces+kristof.teichel=ptb.de@lists.ntp.org> schrieb: -----
An: dieter.sibold@ptb.de, ntpwg@lists.ntp.org
Von: Danny Mayer
Gesendet von: "ntpwg"
Datum: 21.12.2015 21:20
Betreff: Re: [ntpwg] New Version Notification for draft-ietf-ntp-network-time-security-12.txt and draft-ietf-ntp-using-nts-for-ntp-03.txt

On 12/21/2015 1:12 PM, dieter.sibold@ptb.de wrote:
> Hi all,
> I've just submitted new versions of the drafts mentioned above. The most
> substantial change is the introduction of a MAC for the time_request
> message. Any comment is appreciated.
>

Please don't use the existing MAC for this. It's horribly restrictive,
inflexible and impossible to extend. I'm in the process of putting
together an extension field MAC that will allow you to specify the
algorithm to be used for the hashing, you will know the length of the
MAC data and you will be able to have multiple MAC extension fields with
different algorithms. We need to get rid of the existing MAC as it
stands (though this will be gradual) and add flexibility.

Danny

_______________________________________________
ntpwg mailing list
ntpwg@lists.ntp.org
http://lists.ntp.org/listinfo/ntpwg" rel="nofollow">http://lists.ntp.org/listinfo/ntpwg
 
_______________________________________________
ntpwg mailing list
ntpwg@lists.ntp.org
http://lists.ntp.org/listinfo/ntpwg

v2.23.0 | Report a Bug | By Email