IETF Logo Mail Archive

Re: [Ntp] Éric Vyncke's No Objection on draft-ietf-ntp-packet-timestamps-08: (with COMMENT)

"Eric Vyncke (evyncke)" <evyncke@cisco.com> Tue, 03 March 2020 07:35 UTC

Return-Path: <evyncke@cisco.com>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 10DAA3A1A63; Mon, 2 Mar 2020 23:35:56 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.6
X-Spam-Level:
X-Spam-Status: No, score=-9.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=jFPEkv8m; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=ZOr3Zpej
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zx5eZT5s46vg; Mon, 2 Mar 2020 23:35:54 -0800 (PST)
Received: from rcdn-iport-1.cisco.com (rcdn-iport-1.cisco.com [173.37.86.72]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 13A013A1A62; Mon, 2 Mar 2020 23:35:54 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=3992; q=dns/txt; s=iport; t=1583220954; x=1584430554; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=1Z2GQ4CwAszhIrgfvvEM2uFwf0DNDnS+3Yh5kaTvJ/s=; b=jFPEkv8m1VVc3nB1FVHWvvio/dDyK+m3vSH7GSymS3i+tQ09oiXG4w/y /OVchPdsXY4v7pqMNeY1R3lr1ABbLN8Jzztq9LYAtsNVjz45V2YfACmAN qoJM5tCGgKHeevY3aXk22otUf3F261eLhnBwnRA1dJ/NDGNWEw6YyCLU/ I=;
IronPort-PHdr: 9a23:SCcoPx3nJdHVqT0VsmDT+zVfbzU7u7jyIg8e44YmjLQLaKm44pD+JxKHt+51ggrPWoPWo7JfhuzavrqoeFRI4I3J8RVgOIdJSwdDjMwXmwI6B8vQBFPqKvXpYgQxHd9JUxlu+HToeUU=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0D8BQDuB15e/4kNJK1lHAEBAQEBBwEBEQEEBAEBgXuBVFAFgUQgBAsqCoQKg0YDimaCX4ljjjKCUgNUCQEBAQwBAS0CBAEBhEACF4F4JDgTAgMBAQsBAQUBAQECAQUEbYVWDIVjAQEBAQMSEREMAQExBgELBAIBCBEDAQIBAgImAgICHxEVBQMIAgQOBSKDBIJLAy4BA6BxAoE5iGJ1gTKCfwEBBYULDQuCDAmBDiqMJRqBQT+BEScggk0+ghuCMIMRMoIskCo7j3uOe0QKgjyNH4URBIQyHIJJiB+QSYNMjHOJXYw7g2UCBAIEBQIOAQEFgWkigVhwFWUBgkFQGA2OHTiDO4UwhSV0AoEnjjoBgQ8BAQ
X-IronPort-AV: E=Sophos;i="5.70,510,1574121600"; d="scan'208";a="727495212"
Received: from alln-core-4.cisco.com ([173.36.13.137]) by rcdn-iport-1.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 03 Mar 2020 07:35:53 +0000
Received: from XCH-ALN-001.cisco.com (xch-aln-001.cisco.com [173.36.7.11]) by alln-core-4.cisco.com (8.15.2/8.15.2) with ESMTPS id 0237ZrOk001844 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Tue, 3 Mar 2020 07:35:53 GMT
Received: from xhs-rcd-002.cisco.com (173.37.227.247) by XCH-ALN-001.cisco.com (173.36.7.11) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Tue, 3 Mar 2020 01:35:52 -0600
Received: from xhs-aln-001.cisco.com (173.37.135.118) by xhs-rcd-002.cisco.com (173.37.227.247) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Tue, 3 Mar 2020 01:35:52 -0600
Received: from NAM11-BN8-obe.outbound.protection.outlook.com (173.37.151.57) by xhs-aln-001.cisco.com (173.37.135.118) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Tue, 3 Mar 2020 01:35:52 -0600
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Sw2+tX+Osiy58vdaG4nPxdbzqKn56mMeupv3OlSxTtMIFdmqfvrqdyuptE9jnclzpcvHhElqJ6dSoizAduBN/4NaNCfjYCbP2TGAbvzHERG/0QDF56l0jTJZ7pfbu/7S1Rzl9G00qmk9DIFLv5RWw1tOhMuazLG+ldc4squWIFurRcxYu5loNQhJtFb2dPcfeDwPsD/fLN6EJM8g6V7WSj2+vHux/rwsykADzBiPupnQJsEo16NlZqdi4b0/kGMxBioSAVwzWivufd+bAtKWiCtf08fWEpfKEYI81SkVzbKQ3OtkCSkHC8W73E+vE9uQeKslZgjhUYfWGPa8oUTVfQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;bh=1Z2GQ4CwAszhIrgfvvEM2uFwf0DNDnS+3Yh5kaTvJ/s=; b=bP9KeM1RZE7vZlv3CRnNzvIfKpfDuqM5vAcUoTxoVWqz+vYUG0Lo17uHbdLJoUVE898VFba+oKwVCLrx3RMNwHPFH/ZV/NyFO5+ZsHkR1HLqTBfR1mLRe0GOL7D+ynu79GeDi4eipHg8k0pH220QSkAc2ch7BJ/J+NgdULR3TPAcBkMZyMTGfQlGzQPnXQYRXAMNDboCRKjVvMdepA7LYLjBoaDqnsmb8iugMnudQPQo+0DHR+6y8kaLlNQfDfUz/HFZOXjALK392Qm1Vaf5AN8PO33uerpFcfi23OS6UawhXvJukCdCh50Z4AwuIAKtFB/TpODwo2Ksqdg3xIPm4Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=1Z2GQ4CwAszhIrgfvvEM2uFwf0DNDnS+3Yh5kaTvJ/s=; b=ZOr3Zpej2f1W4QXRPFEyWWCpBjeAtOKqr1vw3lNKPpcpta7MJ/Aelrz+rMaVG5bqjVFm8Z6nnOvwpOmnLrs1osWiheKauZpbAvxtmvZu5WIB8yPPec7smBptIkYuXOYoa1KaTEMIm+npiZimIv/YtfSNlYMFlvS0b18X71RYAbc=
Received: from DM5PR11MB1753.namprd11.prod.outlook.com (2603:10b6:3:10d::13) by DM5PR11MB1994.namprd11.prod.outlook.com (2603:10b6:3:e::10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2772.14; Tue, 3 Mar 2020 07:35:51 +0000
Received: from DM5PR11MB1753.namprd11.prod.outlook.com ([fe80::680d:e22e:72d5:67ca]) by DM5PR11MB1753.namprd11.prod.outlook.com ([fe80::680d:e22e:72d5:67ca%3]) with mapi id 15.20.2772.019; Tue, 3 Mar 2020 07:35:51 +0000
From: "Eric Vyncke (evyncke)" <evyncke@cisco.com>
To: Tal Mizrahi <tal.mizrahi.phd@gmail.com>
CC: The IESG <iesg@ietf.org>, "draft-ietf-ntp-packet-timestamps@ietf.org" <draft-ietf-ntp-packet-timestamps@ietf.org>, "ntp-chairs@ietf.org" <ntp-chairs@ietf.org>, "ntp@ietf.org" <ntp@ietf.org>, Karen O'Donoghue <odonoghue@isoc.org>, Suresh Krishnan <suresh@kaloom.com>
Thread-Topic: Éric Vyncke's No Objection on draft-ietf-ntp-packet-timestamps-08: (with COMMENT)
Thread-Index: AQHV8SAVG+EhOlfRi0Ow+vqnPMXrXqg2izwA
Date: Tue, 03 Mar 2020 07:35:51 +0000
Message-ID: <BD98F47C-26B7-4E16-8A50-6CEB7F95B70B@cisco.com>
References: <158314294320.21184.16297641213277392499@ietfa.amsl.com> <CABUE3X=6=UkYxbj_U1ZzU=zkc53n5Zm2rqp3Gq53waUi=zP_BA@mail.gmail.com>
In-Reply-To: <CABUE3X=6=UkYxbj_U1ZzU=zkc53n5Zm2rqp3Gq53waUi=zP_BA@mail.gmail.com>
Accept-Language: fr-BE, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.22.0.200209
authentication-results: spf=none (sender IP is ) smtp.mailfrom=evyncke@cisco.com;
x-originating-ip: [92.184.105.212]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 2655f143-d4a1-40a7-bce2-08d7bf457fbe
x-ms-traffictypediagnostic: DM5PR11MB1994:
x-microsoft-antispam-prvs: <DM5PR11MB19943070507F7DF4C4154D2BA9E40@DM5PR11MB1994.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-forefront-prvs: 03319F6FEF
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(346002)(39860400002)(396003)(136003)(376002)(366004)(189003)(199004)(66556008)(64756008)(66446008)(91956017)(66946007)(76116006)(5660300002)(2906002)(71200400001)(224303003)(66476007)(66574012)(186003)(54906003)(36756003)(86362001)(6916009)(6486002)(81166006)(6506007)(81156014)(6512007)(26005)(8936002)(53546011)(2616005)(33656002)(4326008)(478600001)(316002); DIR:OUT; SFP:1101; SCL:1; SRVR:DM5PR11MB1994; H:DM5PR11MB1753.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: SHcgmgP2pSkO5V7rDasPCIQrFOGGumd7xy+uE5Aarcu6FuvC34QgtygA5pjQaTmlanXfgKE+Jm+6xKCmZZo+LW0n0LHBo5QZfxT0CCbNOxH7k/gu1c/GfkY3JJ3fN5Ohre7Jki+4hRpvV10M6vsWCRJb7u3VWSy7zyaRn/OkZCHZsHPNQRrozU5F1+vNwjkCsbFNszZkJlIBcC4dL05VNth83/RqpkNduFVDn5Cf5J2fO8+gE3xdJDwjbA49r7ZMJfiiR+Rw1h3IDOCD/iuh0YwjDcVG4vMeM1LkMA8fT747831TDbFJalZlb1mj5rrTV++HuAgWHxWO7Wqaj+eBamkwpeL7vCffn6LDLigiDvklSoEgM/cF9TQHz5lqmLCNlM/24qVSaZb6IFiQER6BMQNPjfnSxAE3DXBUDAEoKCmvUEGW89ZKQcGRR0Kyf9Ni
x-ms-exchange-antispam-messagedata: 3U4zuzOGemjqXKMOyNdRRU3eAqyF6xU59v7fWblQ6gDziUjnkmbN+2S40xELSEMGVClN40xIfDKjJok/wYn1mDb1dggt3npLKzEVDYj3sEEmVWsR84Cnd+N459w3iLHS6+6TQ4PjiX6xuXrDcJW3oQ==
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <F0BD3A612CFBA0458816EC768831EA3E@namprd11.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 2655f143-d4a1-40a7-bce2-08d7bf457fbe
X-MS-Exchange-CrossTenant-originalarrivaltime: 03 Mar 2020 07:35:51.1370 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: A0PPw5VMxl4ZPM2Iw+nvFmBZXeTOPtjtbuKttbikduvOZ52unPwZO5TnvW2aV3ZJjW3dsOc1TWHaCLbQRtDuyQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR11MB1994
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.11, xch-aln-001.cisco.com
X-Outbound-Node: alln-core-4.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/YyBuTcbfdhmCh98tSKNYizHtByw>
X-Mailman-Approved-At: Tue, 03 Mar 2020 01:09:44 -0800
Subject: Re: [Ntp] Éric Vyncke's No Objection on draft-ietf-ntp-packet-timestamps-08: (with COMMENT)
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 03 Mar 2020 07:35:56 -0000

Tal,

Thank you for your answers. They are all perfect for me.

I will let the security AD verify the one about the nonce though.

Regards

-éric

-----Original Message-----
From: Tal Mizrahi <tal.mizrahi.phd@gmail.com>
Date: Tuesday, 3 March 2020 at 06:53
To: Eric Vyncke <evyncke@cisco.com>
Cc: The IESG <iesg@ietf.org>, "draft-ietf-ntp-packet-timestamps@ietf.org" <draft-ietf-ntp-packet-timestamps@ietf.org>, "ntp-chairs@ietf.org" <ntp-chairs@ietf.org>, "ntp@ietf.org" <ntp@ietf.org>, Karen O'Donoghue <odonoghue@isoc.org>, Suresh Krishnan <suresh@kaloom.com>
Subject: Re: Éric Vyncke's No Objection on draft-ietf-ntp-packet-timestamps-08: (with COMMENT)

    Hi Eric,
    
    Many thanks for the comments.
    
    Please see the responses below.
    
    
    On Mon, Mar 2, 2020 at 11:55 AM Éric Vyncke via Datatracker
    <noreply@ietf.org> wrote:
    >
    > -- Section 1.1 --
    > When writing "security protocols a timestamp is often used as a value that is
    > unlikely to repeat (nonce)", I sincerely believes that this is probably
    > misleading as nonce should probably have entropy and be non-predictable. A
    > timestamp does not have those properties. Again, I am trusting my SEC AD peers
    > on their final words.
    >
    
    I suggest the following update:
    OLD:
    a timestamp is often used as a value that is unlikely to repeat (nonce)
    NEW:
    a timestamp is often used as part of a value that is unlikely to repeat (nonce)
    
    
    
    > -- Section 2.1 --
    > Is BCP 14 boilerplate required for an informational document ? I have found
    > only one "MUST" in the security section but again this is weird for an
    > informational document.
    >
    
    Right. The draft only uses two instances of (uppercase) normative
    requirement language words, one in Section 3 (which defines the
    timestamp template) and the other in Section 9 (Security
    Considerations). This is intentional, since these are exactly the
    requirements that the reader is expected to comply to when defining a
    timestamp.
    
    > -- Section 3 --
    > Should the syntax also include the bit ordering ? I.e., little endian of big
    > endian ? Of course the default if network order but what if it is not ?
    >
    >
    >
    
    I propose the following update:
    OLD:
    The number of bits (or octets) used to represent the packet timestamp
    field.  If the timestamp is comprised of more than one field, the size
    of each field is specified.
    NEW:
    The number of bits (or octets) used to represent the packet timestamp
    field.  If the timestamp is comprised of more than one field, the size
    of each field is specified. Network order (big endian) is assumed by
    default; if this is not the case then this section explicitly
    specifies the endianity.

v2.23.0 | Report a Bug | By Email