IETF Logo Mail Archive

Re: [Ntp] NTPv5: big picture

James Browning <jamesb.fe80@gmail.com> Tue, 05 January 2021 16:00 UTC

Return-Path: <jamesb.fe80@gmail.com>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CA34B3A110A for <ntp@ietfa.amsl.com>; Tue, 5 Jan 2021 08:00:17 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.847
X-Spam-Level:
X-Spam-Status: No, score=-1.847 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id v9KUxVsA07Rt for <ntp@ietfa.amsl.com>; Tue, 5 Jan 2021 08:00:15 -0800 (PST)
Received: from mail-vs1-xe36.google.com (mail-vs1-xe36.google.com [IPv6:2607:f8b0:4864:20::e36]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C25D43A10B5 for <ntp@ietf.org>; Tue, 5 Jan 2021 08:00:15 -0800 (PST)
Received: by mail-vs1-xe36.google.com with SMTP id u7so146347vsg.11 for <ntp@ietf.org>; Tue, 05 Jan 2021 08:00:15 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=wFD3nKJ+xyimtB1flSbtE5A7SUPXQgamgmUMD1C+l/8=; b=s3CjVMHKmqv9sSNeCDIGk/jEeV+fPLiS/yFhRq+eOqp4Z7282e6OpbDL2bItvmVS1i M7AUWC1S4dbJtCpmY4hcLCRlfnmMjFiXCOr5Dwy68hncfvfZM4h2mSWcrP5r/TDQRKNA rZZguH1cozXBXc4lXW32LlYQEXBXODGtVNH7JMFinp8HXKRTlOLFigN6Np+ipL/ITrHr 8dffond1Bny66tnQzecra6Oh6C1mFArFnCQABi1YIIAwiq+3OFpxFsHOXFekl6fm/+zI ai+Ke/rlUvonWFgq5EfJqQ/qFtwdwPsYV80H6Wbci/GtpQMxNBbuU3hcUPRh2VsGuJpR TCrA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=wFD3nKJ+xyimtB1flSbtE5A7SUPXQgamgmUMD1C+l/8=; b=c6JifPEyP59YM1grZdQ3yW253YwfmMnphOBRU4bMtgAo5FJy7LmbNkFM6H3jrEwxVy PBCiATu1A9QDh121X6GT4rodXir39SREhPhnCWRMVWlD0SoZjToW92rAGcw6pGOc/jPo nX1wiJWx0cvvvtun94uhO3QIFI5BdSK0Np6ToH6ZV6x4kFMaqrZ7DAMu0c167ZHpdcqm OA/cajw2ABiCOPRF4uaO7tE2GFT3IEaLugVh2S7tpImR7cgSV/XDTEoOq4B9iBD4aaZk +WTXdfzHWKRjKvn47+CofCPz9VK3f1dewB9j0vZqWTAiZnJT3t/cZkMOQRAIhp5I0vm3 HACA==
X-Gm-Message-State: AOAM531WOl6C7jvnpTt8QK4Jb/OI5d5p1s523Ep7PkYBQSRizLUr1sgN RO95G/8XkqX5+/s6TxYY5b22/XAjz9uIsk2cI6UclgG5DQ==
X-Google-Smtp-Source: ABdhPJxllyrGu8MjMQ/khov1acMbDoabx1491JhKDZTcOzGyp+Ak0LmK259MMbYIYbhEr8Vp0yxRbnxGIyvQ/UW5fVI=
X-Received: by 2002:a05:6102:2413:: with SMTP id j19mr30035vsi.17.1609862414479; Tue, 05 Jan 2021 08:00:14 -0800 (PST)
MIME-Version: 1.0
References: <20210101025440.ECE3340605C@ip-64-139-1-69.sjc.megapath.net>
In-Reply-To: <20210101025440.ECE3340605C@ip-64-139-1-69.sjc.megapath.net>
From: James Browning <jamesb.fe80@gmail.com>
Date: Tue, 05 Jan 2021 08:00:00 -0800
Message-ID: <CAFTY+dChQ5pX2w9tqz=ORsorfFVNCeeherrBjuRLP77iSLKCag@mail.gmail.com>
To: NTP WG <ntp@ietf.org>
Cc: James Browning <jamesb.fe80@gmail.com>
Content-Type: multipart/alternative; boundary="0000000000005a37c505b8294d43"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/OkBqNGFC_MrFsIZ0StncEe9ftoM>
Subject: Re: [Ntp] NTPv5: big picture
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Jan 2021 16:00:23 -0000

On Thu, Dec 31, 2020, at 6:54 PM Hal Murray <hmurray@megapathdsl.net> wrote:

>
> Do we have a unifying theme?  Can you describe why we are working on NTPv5
> in
> one sentence?
>

I think the theme is herding cats and the mission statement should be
'For all the things NTP4 can't or won't do.'

My shortlist is to shift the epoch to 2020, (a)symmetric authentication
to extensions, and the timescale to TAI based not UTC based.

Others might be mandated security or (from off-list) a JSON derived
protocol.

I'd like to propose that we get rid of leap seconds in the basic protocol.
>
> Unfortunately, we have a huge installed base that works in Unix time
> and/or
> smeared time.  Can we push supporting that to extensions?  Maybe even a
> separate document.
>

An extension containing two offsets pre/post-shift, an integer second
offset from the epoch for the shift time, an expiration time, a text
scale identifier, a certificate name for who says so, and their
signature. The offsets would then be something like a signed 16/16 bit
fixed-point number.

:::snip:::

Send a packet with everything and see what returns? Autokey for its
failings had a capability negotiation as the first step IIRC.


> I'd like the answer to be authenticated.  It seems ugly to go through
> NTS-KE
> if the answer is no.  Maybe we should distribute the info via DNS where we
> can
> use DNSSEC.
>

Not sure what you mean. Perhaps have a DNS TXT record containing a
comma-separated caps list returned along with the address.


> Again, that can be a separate document.

v2.23.0 | Report a Bug | By Email