Re: [Ntp] New rev of the NTP port randomization I-D (Fwd: New Version Notification for draft-gont-ntp-port-randomization-01.txt)

" tglassey@earthlink.net " <tglassey@earthlink.net> Wed, 29 May 2019 11:07 UTC

Return-Path: <tglassey@earthlink.net>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E3D2B12011B for <ntp@ietfa.amsl.com>; Wed, 29 May 2019 04:07:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.135
X-Spam-Level:
X-Spam-Status: No, score=-2.135 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FROM_EXCESS_BASE64=0.979, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.415, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=earthlink.net; domainkeys=pass (2048-bit key) header.from=tglassey@earthlink.net header.d=earthlink.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NawFpODQH-Xd for <ntp@ietfa.amsl.com>; Wed, 29 May 2019 04:07:47 -0700 (PDT)
Received: from elasmtp-mealy.atl.sa.earthlink.net (elasmtp-mealy.atl.sa.earthlink.net [209.86.89.69]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C5517120111 for <ntp@ietf.org>; Wed, 29 May 2019 04:07:47 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=earthlink.net; s=dk12062016; t=1559128067; bh=+9/ffIH42V8CpvFSinSHkitqU/4nWEhTYK6j xAuhJ4Q=; h=Received:To:From:Cc:Subject:Date:MIME-Version: Content-Type:Message-ID:X-ELNK-Trace:X-Originating-IP; b=K0VbKk4Ge RrLqP4UJgQ/RMHxaU2s3zr1SDLzo2jund7oWpu3AW3gDVxiKZwERGkaEgAgjIoqYP1u 8y6R0WzCpa5+E3+AoYjhOzUybmDa+RHKvcp30DQiMgDX8Tai+/bzM7RtNoNUudrtVYj pX1i0G/F/suEj5CuT/jE5Ubw10QmSEZ0uPtWo1FQTk1CizohMiaajy6+zfnJ5G+XVmQ t0DMSMkhrxR8cwCWxpzM2WScgtIVbscXvtzY1Meh4NT/wBFGjYynxuzHnJ/icRgVK+s V73t5euyUvKsH6n36iK93ClWs5f6iu31ZtcHRRuB0DdUy3Z+nymKsDhqvuTa2g58Q==
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=dk12062016; d=earthlink.net; b=I8RUEM9TY7nhdVe1o9pgRNWEt3AIjcOh7mLqujgMvMEKJwuiRoHeZFmkDPh0QTlcYFoK4fjVQ4/TzxH1dB8sjt3KNiUKAh1eTorylh08h+rW56uVT6VdzhhhA6apd2V5tMIEYBjC3hPioQnRETnnlKMV8IrRxaMaJh21m/qbm9ShMev7vJ+vd7EOfb41QGkunZCcbYqpNbG4jbbUqBEYB1lDvC4lTFK6L2KgKjJr/GhvzyeGZZkVflVA9cM6xxJ8zWa8zbP1dZba/wk0y9sSuqiPco75PGV3g0H7jcMo+Gm+RwVIx6XPqDkkn0cyUaVIPVyWfG2ECtf11OAyhyYcKA==; h=Received:To:From:Cc:Subject:Date:MIME-Version:Content-Type:Message-ID:X-ELNK-Trace:X-Originating-IP;
Received: from [86.57.143.48] (helo=[100.96.204.22]) by elasmtp-mealy.atl.sa.earthlink.net with esmtpa (Exim 4) (envelope-from <tglassey@earthlink.net>) id 1hVwQn-0004az-Qz; Wed, 29 May 2019 07:07:42 -0400
To: "=?utf-8?B?RmVybmFuZG8gR29udA==?=" <fgont@si6networks.com>, "=?utf-8?B?TWFqZGkgUy4gQWJiYXM=?=" <msa@latt.net>
From: "=?utf-8?B?dGdsYXNzZXlAZWFydGhsaW5rLm5ldA==?=" <tglassey@earthlink.net>
Cc: ntp@ietf.org,"=?utf-8?B?R2FyeSBFLiBNaWxsZXI=?=" <gem@rellim.com>
Date: Wed, 29 May 2019 14:07:41 +0300
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_Part_0_1559128061566"
Message-ID: <E1hVwQn-0004az-Qz@elasmtp-mealy.atl.sa.earthlink.net>
X-ELNK-Trace: 01b7a7e171bdf5911aa676d7e74259b7b3291a7d08dfec799e764b2e70756b7cae62412f04c86d92350badd9bab72f9c350badd9bab72f9c350badd9bab72f9c
X-Originating-IP: 86.57.143.48
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/JCxphuVMVAdliOFfVEcTgHcqKI0>
Subject: Re: [Ntp] =?utf-8?q?New_rev_of_the_NTP_port_randomization_I-D_=28Fwd?= =?utf-8?q?=3A_New_Version_Notification_for_draft-gont-ntp-port-randomizat?= =?utf-8?q?ion-01=2Etxt=29?=
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 29 May 2019 11:07:50 -0000

No problem. It might also be interesting to propose ports as well as part of the request. 

//tsg

Sent from my HTC, so please excuse any typos.

----- Reply message -----
From: "Fernando Gont" <fgont@si6networks.com>
To: "tglassey@earthlink.net" <tglassey@earthlink.net>et>, "Majdi S. Abbas" <msa@latt.net>
Cc: <ntp@ietf.org>rg>, "Gary E. Miller" <gem@rellim.com>
Subject: [Ntp] New rev of the NTP port randomization I-D (Fwd: New Version Notification for draft-gont-ntp-port-randomization-01.txt)
Date: Wed, May 29, 2019 09:57

On 29/5/19 01:56, tglassey@earthlink.net wrote:
> Port randomization is used to block port spoofing mitm attacks as part
> of a larger audit framework. 
> 
> It is part of a delivery based assurance process not an informatioin
> integrity process like a whopping nonce is. 
> 
> Keeping the components of the trust model separate has value. 

As noted elsewhere, it also allows for other things such as filtering
attack packets in the network (stateful filtering).

Thanks,
-- 
Fernando Gont
SI6 Networks
e-mail: fgont@si6networks.com
PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492




_______________________________________________
ntp mailing list
ntp@ietf.org
https://www.ietf.org/mailman/listinfo/ntp