Re: [Ntp] NTPv5 draft
Warner Losh <imp@bsdimp.com> Mon, 07 December 2020 17:29 UTC
Return-Path: <wlosh@bsdimp.com>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3CF483A1617 for <ntp@ietfa.amsl.com>; Mon, 7 Dec 2020 09:29:20 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=bsdimp-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WanoWohMmtCJ for <ntp@ietfa.amsl.com>; Mon, 7 Dec 2020 09:29:19 -0800 (PST)
Received: from mail-qt1-x82c.google.com (mail-qt1-x82c.google.com [IPv6:2607:f8b0:4864:20::82c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ED3613A167B for <ntp@ietf.org>; Mon, 7 Dec 2020 09:29:07 -0800 (PST)
Received: by mail-qt1-x82c.google.com with SMTP id z3so9926783qtw.9 for <ntp@ietf.org>; Mon, 07 Dec 2020 09:29:07 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=bsdimp-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=d7q4aBA5bWxcLeU0bGYYubY6XGb0kU7Vle770l+NVsA=; b=yBbfRjNymCyCl5f6Ilt1cGruQQGJoE11D+C1E6TSPqXSLxGLtBg3PGp+IbxhSg2aMQ kScFJNiux4dSbL6tJy6YOOpo+siv8W1ds70vfhVC6Ispwteko3jHnn7JCcSdMd4U/YLN o5OAtWb6oPtgME16kqXrxJAFXFl2fzGfip6z5cbaNHvGfbcI8B2cU8lUYspLWuW0JlXT B7+vlquSL9u9NTeV93AVN8prsJSMp7PDTNm6rvIKQR7WAXemrTrYexjnTnbsvSPY7j+s FyIQDJGyULFcf4rzynY3Xn/S5QQCgCoTVX0hxqma1wXZoBXPWcV3cENiza8KtV9l4Xex KAww==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=d7q4aBA5bWxcLeU0bGYYubY6XGb0kU7Vle770l+NVsA=; b=g5buKKQALnowZhxbTyF/2YItfCpL0JGmfE380WDI0tEoGs8+vavGMgrF2YIX3/gSkf T8hJLwdrjhix3waN7zewkO3leykU58//pHWfcvCj+zlasZhMghelL/g87wOYemQSxHke H7Yd4/ul/Tvk3eh+A/8D+HuEqTR+I8yldh5joxF3A2UmN3JWz0SFck4/poHQaPPvl7V4 GNBptsv7elP7QILBjxZd1O6lgQUVu+5vSsEFdBgOUhEsIG0wAZOUBmtf6hLoSoAJitpd 55phHI0Bseb7Nt+ww6XlYgtYkiqCpAIYWfw2wObPWm5HqHykeXJomaA+pq4AkLAlZY6A o0xw==
X-Gm-Message-State: AOAM532yq4N081b43XZeCmrOf2rspab8JFNmHeeuO/jx713thpk4hv5l LloN7pqyZR/YKCatu0rNzbh1lRxm12NEfVzw+PgjNg==
X-Google-Smtp-Source: ABdhPJzSzERXj59Y8wuWOZAU5G3j9jMaw95dBouGov50PBA4+LjzMno9+FbPP0AFtcEA7EwwgYyMb9PPSA8YDXpU8Rw=
X-Received: by 2002:ac8:58d2:: with SMTP id u18mr1247171qta.235.1607362146510; Mon, 07 Dec 2020 09:29:06 -0800 (PST)
MIME-Version: 1.0
References: <20201111161947.GG1559650@localhost> <AA848C67-CFB7-43FC-B190-FD3911360373@gmail.com> <20201201081203.GB1900232@localhost> <2B8C7410-DFA7-4A87-A33E-F50FFA96D0F9@gmail.com> <20201201100305.GK1900232@localhost> <F62C1325-8409-474C-9650-FA96405D0F4B@gmail.com> <20201207104541.GE2352378@localhost> <E0159612-5D83-4A0E-BBD1-1D75C0B49226@akamai.com> <20201207153444.GO2352378@localhost> <1204B871-7728-45DA-B628-8F79BD074A96@akamai.com>
In-Reply-To: <1204B871-7728-45DA-B628-8F79BD074A96@akamai.com>
From: Warner Losh <imp@bsdimp.com>
Date: Mon, 07 Dec 2020 10:28:55 -0700
Message-ID: <CANCZdfpPqT+i+Ah_TA7p2X=1Dv0EoT9FPPiUUJ6ZKaqe1_zK7Q@mail.gmail.com>
To: "Salz, Rich" <rsalz=40akamai.com@dmarc.ietf.org>
Cc: Miroslav Lichvar <mlichvar@redhat.com>, "ntp@ietf.org" <ntp@ietf.org>, Dieter Sibold <dsibold.ietf@gmail.com>
Content-Type: multipart/alternative; boundary="000000000000c4f31605b5e32954"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/b0S7gXHntXK9LauwbRIgVKqZLQI>
Subject: Re: [Ntp] NTPv5 draft
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 07 Dec 2020 17:29:20 -0000
On Mon, Dec 7, 2020 at 9:38 AM Salz, Rich <rsalz=40akamai.com@dmarc.ietf.org> wrote: > My view is that it is no longer acceptable to design a protocol for > deployment on the open Internet that has no authentication or message > integrity and that people who disagree are out of consensus. > Time is harder, though, because most 'easy' authentication like https has a time-element. If you don't yet know what time it is, it's hard to trust the answers you get back if certificates are valid for only a given time and some expired certificates have been compromised... But who doesn't like a challenge... :) BTW, I don't disagree. I'd love for there to be a good, authenticated time infrastructure that included robust distribution of things like full leap second history (and future) as a first class citizen, not a bolt-on like it is today... But much of that info need not be at the lowest-level time authentication bootstrapping since there's overlap with other areas and services (the tz database, for example). Warner
- [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft Dieter Sibold
- Re: [Ntp] NTPv5 draft Kurt Roeckx
- Re: [Ntp] NTPv5 draft Steven Sommars
- Re: [Ntp] NTPv5 draft Doug Arnold
- Re: [Ntp] NTPv5 draft Salz, Rich
- Re: [Ntp] NTPv5 draft Philip Prindeville
- Re: [Ntp] NTPv5 draft Philip Prindeville
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- Re: [Ntp] Antw: [EXT] Re: NTPv5 draft Miroslav Lichvar
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- Re: [Ntp] NTPv5 draft Kurt Roeckx
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] Antw: [EXT] Re: NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft James
- [Ntp] Antw: Re: Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft Dieter Sibold
- Re: [Ntp] Antw: Re: Antw: [EXT] Re: NTPv5 draft Hal Murray
- Re: [Ntp] Antw: Re: Antw: [EXT] Re: NTPv5 draft Miroslav Lichvar
- Re: [Ntp] Antw: Re: Antw: [EXT] Re: NTPv5 draft Hal Murray
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft Kurt Roeckx
- Re: [Ntp] NTPv5 draft Hal Murray
- [Ntp] Antw: Re: Antw: Re: Antw: [EXT] Re: NTPv5 d… Ulrich Windl
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- Re: [Ntp] NTPv5 draft Doug Arnold
- Re: [Ntp] Antw: Re: Antw: Re: Antw: [EXT] Re: NTP… Hal Murray
- Re: [Ntp] Antw: [EXT] Re: NTPv5 draft Salz, Rich
- Re: [Ntp] Antw: [EXT] Re: NTPv5 draft Doug Arnold
- Re: [Ntp] Antw: [EXT] Re: NTPv5 draft Kurt Roeckx
- Re: [Ntp] NTPv5 draft Hal Murray
- Re: [Ntp] NTPv5 draft Doug Arnold
- Re: [Ntp] NTPv5 draft Dieter Sibold
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft Salz, Rich
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft Salz, Rich
- Re: [Ntp] NTPv5 draft James
- Re: [Ntp] NTPv5 draft Warner Losh
- Re: [Ntp] NTPv5 draft Philip Prindeville
- Re: [Ntp] NTPv5 draft Hal Murray
- Re: [Ntp] NTPv5 draft Warner Losh
- Re: [Ntp] NTPv5 draft Salz, Rich
- Re: [Ntp] NTPv5 draft Hal Murray
- Re: [Ntp] NTPv5 draft Hal Murray
- Re: [Ntp] NTPv5 draft Philip Prindeville
- Re: [Ntp] NTPv5 draft Doug Arnold
- Re: [Ntp] NTPv5 draft Doug Arnold
- Re: [Ntp] NTPv5 draft Doug Arnold
- Re: [Ntp] NTPv5 draft Philip Prindeville
- Re: [Ntp] NTPv5 draft Hal Murray
- Re: [Ntp] NTPv5 draft Hal Murray
- Re: [Ntp] NTPv5 draft Salz, Rich
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft Salz, Rich
- Re: [Ntp] NTPv5 draft Marcus Dansarie
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft Salz, Rich
- Re: [Ntp] NTPv5 draft James
- Re: [Ntp] NTPv5 draft Magnus Danielson
- Re: [Ntp] NTPv5 draft Warner Losh
- Re: [Ntp] NTPv5 draft Magnus Danielson
- Re: [Ntp] NTPv5 draft Warner Losh
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft Magnus Danielson
- Re: [Ntp] NTPv5 draft James
- Re: [Ntp] NTPv5 draft Salz, Rich
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- [Ntp] Antwort: Antw: [EXT] Re: NTPv5 draft kristof.teichel
- Re: [Ntp] Antwort: Antw: [EXT] Re: NTPv5 draft Hal Murray
- Re: [Ntp] NTPv5 draft James
- Re: [Ntp] Antwort: Antw: [EXT] Re: NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] Antwort: Antw: [EXT] Re: NTPv5 draft Christer Weinigel