Re: [Ntp] Danny's Review (was Re: draft-ietf-ntp-roughtime-05: tag change makes implementation more complex)

"Salz, Rich" <rsalz@akamai.com> Wed, 29 September 2021 15:30 UTC

Return-Path: <rsalz@akamai.com>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 531713A1AD8 for <ntp@ietfa.amsl.com>; Wed, 29 Sep 2021 08:30:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.55
X-Spam-Level:
X-Spam-Status: No, score=-2.55 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.452, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=akamai.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OIRhP62pFHGu for <ntp@ietfa.amsl.com>; Wed, 29 Sep 2021 08:30:17 -0700 (PDT)
Received: from mx0a-00190b01.pphosted.com (mx0a-00190b01.pphosted.com [IPv6:2620:100:9001:583::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CD8F23A0DC1 for <ntp@ietf.org>; Wed, 29 Sep 2021 08:30:17 -0700 (PDT)
Received: from pps.filterd (m0122333.ppops.net [127.0.0.1]) by mx0a-00190b01.pphosted.com (8.16.1.2/8.16.1.2) with SMTP id 18TEJqgd005677; Wed, 29 Sep 2021 16:30:09 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=akamai.com; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : mime-version; s=jan2016.eng; bh=H7bx1hOp76hO78ozr3sg8Gi1VvfLpXvHUjma1uEuX08=; b=ohYj8Ylb8fBGEXei/jBChde3aHFihT4k516oDcnu+yLRRlVger1t8ACtv7P/tdxrJG+D nqaBGWcm+UpQPEYuCMh+JPBG+OxX9RAkUdByOizSmkHkBoT8NmIWPKzyVz19oxzTj792 q5rkdyIBTxccxbuE1FRysQZ/JoEgS9RG3NZsqfrea5d4RgiDGte0JPbKd3w91TXHIVY2 KNyYxjF3NdkoZyGNSEBnVLWGP6csm7/y+LZ4/sA7v8ZsqrDQ2juu0QtxJY3yjKa2AYWP x6ICmt/O6lSL3EFZKbH/hGAhqiIDF2T7JoLOk7Ve41iBqyEDZl+pBT79Vyi2TQbI/Ro7 VA==
Received: from prod-mail-ppoint6 (prod-mail-ppoint6.akamai.com [184.51.33.61] (may be forged)) by mx0a-00190b01.pphosted.com with ESMTP id 3bcbnnd94q-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 29 Sep 2021 16:30:08 +0100
Received: from pps.filterd (prod-mail-ppoint6.akamai.com [127.0.0.1]) by prod-mail-ppoint6.akamai.com (8.16.1.2/8.16.1.2) with SMTP id 18TFK8aX018413; Wed, 29 Sep 2021 11:30:03 -0400
Received: from email.msg.corp.akamai.com ([172.27.123.33]) by prod-mail-ppoint6.akamai.com with ESMTP id 3bcc0995pb-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Wed, 29 Sep 2021 11:30:03 -0400
Received: from USMA1EX-DAG1MB1.msg.corp.akamai.com (172.27.123.101) by usma1ex-dag1mb6.msg.corp.akamai.com (172.27.123.65) with Microsoft SMTP Server (TLS) id 15.0.1497.23; Wed, 29 Sep 2021 11:30:03 -0400
Received: from USMA1EX-DAG1MB1.msg.corp.akamai.com ([172.27.123.101]) by usma1ex-dag1mb1.msg.corp.akamai.com ([172.27.123.101]) with mapi id 15.00.1497.023; Wed, 29 Sep 2021 11:30:03 -0400
From: "Salz, Rich" <rsalz@akamai.com>
To: Danny Mayer <mayer@pdmconsulting.net>, JP Sugarbroad <taralx@gmail.com>
CC: Watson Ladd <watsonbladd@gmail.com>, NTP WG <ntp@ietf.org>, "Marcus Dansarie" <marcus@dansarie.se>
Thread-Topic: [Ntp] Danny's Review (was Re: draft-ietf-ntp-roughtime-05: tag change makes implementation more complex)
Thread-Index: AQHXtAsFAzIxA/3amUyAh8LAi9D9yKu52ieAgAAPwQCAADhTAP//8n8AgAFO7AD//8IAgA==
Date: Wed, 29 Sep 2021 15:30:02 +0000
Message-ID: <14983DF9-548C-4AE7-9AC6-8506745DE183@akamai.com>
References: <CAGZkp1-ZCuSvMyQyWCnE511O8-WL=OXfsTdraKsByMmWC3spVA@mail.gmail.com> <CACsn0ckZmR=k2NAmdyhVOA=V_XQ18AnBUBSTOu+bDXS1YsPpUg@mail.gmail.com> <CAGZkp18eASaF7qvubYpDgzvg643ZXuPwDs9qsiC1P_AVLcywLA@mail.gmail.com> <CACsn0cnjHFwxHT13nMavRFzRteWJ=SORY8v4RCZjdjYP0H3oaw@mail.gmail.com> <7dde7eb3-4dc7-94d3-e63a-6d5d0736b1c2@pdmconsulting.net> <54baf1fa-b138-4eb8-6f4e-99168cf2db7b@dansarie.se> <0a95d35f-f708-4a3c-4ecf-77597c42a7a4@pdmconsulting.net> <CACsn0c=gdQWDumfzeHYYWzXPV4sz4J9mTUtYW+4=KueaHHbGdQ@mail.gmail.com> <79dfd56c-54e8-8b85-ed9d-da9fac71d1f1@pdmconsulting.net> <c95eaafb-f294-a54e-d495-0cf74e574686@pdmconsulting.net> <CACsn0cmks2fdwem1rS+QNzCL1WhNR4890Fi1zpjQrL=E3Y=3fQ@mail.gmail.com> <684af837-0713-9293-168b-8b140bf15d22@pdmconsulting.net> <CAGZkp183CgJJOd5O5dDdeKtAzgCobwBzpZe3ixBWJ-ZLQXB6bg@mail.gmail.com> <edee8b51-47b4-3a33-436e-b235fdcf6b99@pdmconsulting.net> <981D597A-2484-47C9-AA99-F95E6623F51D@akamai.com> <aba9eb26-31dd-2a6e-2146-9e271c90a9ab@pdmconsulting.net>
In-Reply-To: <aba9eb26-31dd-2a6e-2146-9e271c90a9ab@pdmconsulting.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.53.21091200
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [172.27.164.43]
Content-Type: multipart/alternative; boundary="_000_14983DF9548C4AE79AC68506745DE183akamaicom_"
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.391, 18.0.790 definitions=2021-09-29_06:2021-09-29, 2021-09-29 signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 mlxscore=0 adultscore=0 phishscore=0 malwarescore=0 bulkscore=0 suspectscore=0 mlxlogscore=999 spamscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2109230001 definitions=main-2109290092
X-Proofpoint-ORIG-GUID: sPu8VIwkIjZ2IFLz-BlLuUGkRoQRDe5D
X-Proofpoint-GUID: sPu8VIwkIjZ2IFLz-BlLuUGkRoQRDe5D
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.182.1,Aquarius:18.0.790,Hydra:6.0.391,FMLib:17.0.607.475 definitions=2021-09-29_06,2021-09-29_01,2020-04-07_01
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 malwarescore=0 impostorscore=0 lowpriorityscore=0 clxscore=1015 suspectscore=0 priorityscore=1501 mlxlogscore=999 mlxscore=0 spamscore=0 phishscore=0 adultscore=0 bulkscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2109230001 definitions=main-2109290092
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/JWqmpnk3XFnayz_HzTi46OqGN1U>
Subject: Re: [Ntp] Danny's Review (was Re: draft-ietf-ntp-roughtime-05: tag change makes implementation more complex)
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Network Time Protocol <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 29 Sep 2021 15:30:23 -0000

  *   Can you point to an existing RFC where the protocol name is in the header? Is there something useful about it that the security folks think it would be a good addition? Any other references to make sense of this?

Does ALPN count?  It’s a protocol identifier in the TLS clientHello message.  There’s lots of ALPN identifiers picked, https://www.iana.org/assignments/tls-extensiontype-values/tls-extensiontype-values.xhtml#alpn-protocol-ids

For HTTP, the h2 identifier when connecting over TCP.

Any ASN1-based protocol (SNMP, PKIX, etc) has an identifier.