Re: [Ntp] Antw: [EXT] Re: Splitting the Roughtime draft?
Warner Losh <imp@bsdimp.com> Tue, 02 February 2021 12:41 UTC
Return-Path: <wlosh@bsdimp.com>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8FAAE3A1A4D for <ntp@ietfa.amsl.com>; Tue, 2 Feb 2021 04:41:30 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=bsdimp-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id i8xghrDYEh6Y for <ntp@ietfa.amsl.com>; Tue, 2 Feb 2021 04:41:28 -0800 (PST)
Received: from mail-qt1-x82b.google.com (mail-qt1-x82b.google.com [IPv6:2607:f8b0:4864:20::82b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9721C3A1A4F for <ntp@ietf.org>; Tue, 2 Feb 2021 04:41:28 -0800 (PST)
Received: by mail-qt1-x82b.google.com with SMTP id t14so14725643qto.8 for <ntp@ietf.org>; Tue, 02 Feb 2021 04:41:28 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=bsdimp-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=fNjDpkyOKp/iFdyFbM83XcDonZ/E/PP9mB52D8JAnHI=; b=PRaeeWZVx5iAL5cpsZIwRy8DDVrKHvPn1gxqGa0B0Vs4Q0qDl7fvQTFIiGil3dzCGT iH2S/sVS+2Gpi1pzwP7tkF8+YOJszHwhbbRKk6Rc0bP2417ptBvQTLrmf1JLRtGDM1hF 88ZumZ22yeqbckuFvXZwJ3Av1Q5jBt1rWmEqnA/COFJBkBnZnGI2ll7WJOyUEUnzWJun HHBhVWiZ7+QhQA0bPS4Eqiv7B5AZICEC0GsXfAjr8BwK8WpnrIBM9uVjB6aucx2OQKQc M+73vOwhlkOMK7muHmMd68ktc+MFCqXsi+zN7kORq3nxHjS/azB03fnlNhb/4ZYATWF1 mI5A==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=fNjDpkyOKp/iFdyFbM83XcDonZ/E/PP9mB52D8JAnHI=; b=XV9f+kaOqCwDwZtmEKqhnds2hb7Jjpj45Q81PK/Gylj9HWQzdliM+7Tn0k3J2vZ9QD +nfQ+40cB8qUhxiJUWwsqDpEiA84Uru3x4ZO2iDED6tdexFK6zdtcYUPVoVxRUihX/bj oPbdLhpklbIWnqqYQ3RNY5KhwTOOU7dkebo4T3M9PZIVI9g7nuOeoR0fI7gjWnQ76lcc 7JDsjSORsrvp/vIINgtB2NImLjox4I241iov838Yog4Nfj/w9hGr4hG9wWL0HeYkDh50 UP+egZ6vCeHgkQGXxAFheoB3j9vpiwMmepo3rEP+ISuu1j/zLkP6PKA8M7KJIBHJ77gd oY8w==
X-Gm-Message-State: AOAM531x39CBSkpvX8IHr22Db7SF5tCxruOAM6rO+R8XFZQS/YJtUCkb hQ6HfzhrqTdNbMbABvWnuPmGr5lvb01X89wgRGPd7g==
X-Google-Smtp-Source: ABdhPJxHSya0Bu7+R5pVy3U8ZqATmjO9P5ih0jVp2pl6oGQWbNJJ4aI3q67FOo57hFN5wTAFEKa3L6mCatMhyb5sEPA=
X-Received: by 2002:a05:622a:90:: with SMTP id o16mr18741607qtw.49.1612269685919; Tue, 02 Feb 2021 04:41:25 -0800 (PST)
MIME-Version: 1.0
References: <20210131090607.ED116406061@ip-64-139-1-69.sjc.megapath.net> <6017ADBF020000A10003E988@gwsmtp.uni-regensburg.de> <CANCZdfrCnkyw88wdznGD-3PgF1taMx1ZMNdvV8OP_ATsK413bg@mail.gmail.com> <6018FCB8020000A10003EA4D@gwsmtp.uni-regensburg.de>
In-Reply-To: <6018FCB8020000A10003EA4D@gwsmtp.uni-regensburg.de>
From: Warner Losh <imp@bsdimp.com>
Date: Tue, 02 Feb 2021 05:41:14 -0700
Message-ID: <CANCZdfpLvaSJ7rKu_3qhqQh6REixmM=t3B147arobj=7UQb_xQ@mail.gmail.com>
To: Ulrich Windl <Ulrich.Windl@rz.uni-regensburg.de>
Cc: NTP WG <ntp@ietf.org>, Hal Murray <hmurray@megapathdsl.net>
Content-Type: multipart/alternative; boundary="000000000000e96f5b05ba59c906"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/YYUeIIcqO4uJLTniwiHyY_H3f8A>
Subject: Re: [Ntp] Antw: [EXT] Re: Splitting the Roughtime draft?
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 02 Feb 2021 12:41:31 -0000
On Tue, Feb 2, 2021, 12:18 AM Ulrich Windl < Ulrich.Windl@rz.uni-regensburg.de> wrote: > >>> Warner Losh <imp@bsdimp.com> schrieb am 01.02.2021 um 22:40 in > Nachricht > <CANCZdfrCnkyw88wdznGD-3PgF1taMx1ZMNdvV8OP_ATsK413bg@mail.gmail.com>: > > On Mon, Feb 1, 2021 at 12:29 AM Ulrich Windl < > > Ulrich.Windl@rz.uni-regensburg.de> wrote: > > > >> >>> Hal Murray <hmurray@megapathdsl.net> schrieb am 31.01.2021 um > 10:06 in > >> Nachricht <20210131090607.ED116406061@ip-64-139-1-69.sjc.megapath.net>: > >> > >> > marcus@dansarie.se said: > >> >> I think we need to be very clear about the fact that all trust in > >> Roughtime > >> >> is rooted in the long‑term keys and that they are expected to be > valid > >> for > >> a > >> >> very long time indeed. > >> > > >> > How long is "very long"? > >> > >> The "industry standard" seems to be 10 years for that, while "long" > >> nowadays > >> is probably only two years... > >> > > > > Consumer grade stuff is like 1-2 years. But deployed, embedded gear still > > needs 5-10 years depending on the segment it is in. You don't want to > climb > > a lot of telephone poles to redeploy every couple of years, for > example... > > If you have to climb up telephone poles to replace keys, you have a > different > problem ;-) Just pointing out the diversity of deployment... there are many other embedded example with long life not on telephone poles... Warner > > > > Warner > > > > > >> > > >> > I've been trying to figure out how to use Roughtime to get NTS off the > >> > ground > >> > when the time isn't known/trusted yet. If it needs long term keys, is > >> there > >> > >> > > >> > any advantage to long‑term Roughtime keys as compared to trusted > >> certificates > >> > > >> > with a long lifetime? > >> > > >> > ‑‑ > >> > These are my opinions. I hate spam. > >> > > >> > > >> > > >> > _______________________________________________ > >> > ntp mailing list > >> > ntp@ietf.org > >> > https://www.ietf.org/mailman/listinfo/ntp > >> > >> > >> > >> _______________________________________________ > >> ntp mailing list > >> ntp@ietf.org > >> https://www.ietf.org/mailman/listinfo/ntp > >> > > > >
- Re: [Ntp] Splitting the Roughtime draft? Marcus Dansarie
- [Ntp] Splitting the Roughtime draft? Watson Ladd
- Re: [Ntp] Splitting the Roughtime draft? Hal Murray
- Re: [Ntp] Splitting the Roughtime draft? Daniel Franke
- Re: [Ntp] Splitting the Roughtime draft? Marcus Dansarie
- Re: [Ntp] Splitting the Roughtime draft? Marcus Dansarie
- Re: [Ntp] Splitting the Roughtime draft? Salz, Rich
- Re: [Ntp] Splitting the Roughtime draft? Watson Ladd
- Re: [Ntp] Splitting the Roughtime draft? Salz, Rich
- Re: [Ntp] Splitting the Roughtime draft? Watson Ladd
- Re: [Ntp] Splitting the Roughtime draft? Marcus Dansarie
- Re: [Ntp] Splitting the Roughtime draft? Hal Murray
- Re: [Ntp] Splitting the Roughtime draft? Watson Ladd
- Re: [Ntp] Splitting the Roughtime draft? Watson Ladd
- Re: [Ntp] Splitting the Roughtime draft? Hal Murray
- [Ntp] Antw: [EXT] Re: Splitting the Roughtime dra… Ulrich Windl
- Re: [Ntp] Antw: [EXT] Re: Splitting the Roughtime… Warner Losh
- [Ntp] Antw: Re: Antw: [EXT] Re: Splitting the Rou… Ulrich Windl
- Re: [Ntp] Antw: [EXT] Re: Splitting the Roughtime… Warner Losh
- Re: [Ntp] Antw: [EXT] Re: Splitting the Roughtime… Magnus Danielson
- Re: [Ntp] Splitting the Roughtime draft? Watson Ladd
- [Ntp] Antw: Re: Antw: [EXT] Re: Splitting the Rou… Ulrich Windl