Re: [Ntp] NTPv5 draft
Doug Arnold <doug.arnold@meinberg-usa.com> Tue, 01 December 2020 19:32 UTC
Return-Path: <doug.arnold@meinberg-usa.com>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4D12B3A1477 for <ntp@ietfa.amsl.com>; Tue, 1 Dec 2020 11:32:13 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=meinbergfunkuhren.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id J9qrbn8t443d for <ntp@ietfa.amsl.com>; Tue, 1 Dec 2020 11:32:08 -0800 (PST)
Received: from EUR05-AM6-obe.outbound.protection.outlook.com (mail-am6eur05on2071.outbound.protection.outlook.com [40.107.22.71]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4364E3A1475 for <ntp@ietf.org>; Tue, 1 Dec 2020 11:32:06 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=liuJazpKKcYk2v2CEnQuufu2X08pCmzrPOGjXLPiUg5Itc0eIGUdy4FDxC93x2xgJtPZxIjIiWobDdJ15oyI/3Jm82X5SigOtu4nac51R/dPKAiEGRkp+TEc/cG98TpAJu6nq92gpu03WQNQ4Ws64+PUfo/AGNmcEAStghvZ4zXYY/Qt8JxwRST8djv49WlHzKUpzeWXM+DA7D3PD9AS8yQ3bgcpn41bfpih9OQ0XrTf2WTtKzTpkMDzVFRaf6dPLirg+r9uuTA4xHD05DUUCDXLZD6p0gkD2ph0SjNs7p0yhw2n7QIb+3sMfQBFMv7bbKgqSkILw+Z02w5ewwDlfQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ELNWh9XWgmPZ7suy8auem9WeHFhgYnJXnlNO4J2o3r8=; b=V3DQt1rpqUTT6uOLlk6zrSu1wx1QWhsKWNzcwnCI/XYNIq4YkicBqY6+iedUoLM5vbDVvnK5uMEOlCg9bUBOxcK1zUCCFtP2z7fjXK+cTS2l5PN9v/w3UH7k1WooANIy/Lpreucq1bZdB1BY6QiV2wAXy0AYcsyfyATwrPD7wqRqY4uZIj2aBjHnvRxGUrOq8Tw7K0c6lgrCSr04qqV8eCO//H8TM/LMnXtpaF4YgvW5DJt6f8xF+4ggA2cydsCNUCW8CLaCNxgaF1wfUTkbC4xyqAMHjWfBkA437MMnd0sY1aWtgC/bcd5d0AfG95CODXrMaUtYaK1aN+jB9eglQw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=meinberg-usa.com; dmarc=pass action=none header.from=meinberg-usa.com; dkim=pass header.d=meinberg-usa.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=meinbergfunkuhren.onmicrosoft.com; s=selector1-meinbergfunkuhren-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ELNWh9XWgmPZ7suy8auem9WeHFhgYnJXnlNO4J2o3r8=; b=eZ7TdWRgP3TSZiSq083a7xRhlLOMHG7xiGVZozwNihmGhKGc9eI4vSP9qNpQi5sMnZN1LT4i4+xHrZAy5qVISMHfID1yxPpgTcvA5sB2aPxVICm15SnmjmnF4+GttGzWawQyakCZkSlmhY4jHT/4BmarsYKgGOfnqxpWoKdSXI8=
Received: from AM7PR02MB5765.eurprd02.prod.outlook.com (2603:10a6:20b:102::15) by AM6PR02MB5429.eurprd02.prod.outlook.com (2603:10a6:20b:d4::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3611.20; Tue, 1 Dec 2020 19:32:04 +0000
Received: from AM7PR02MB5765.eurprd02.prod.outlook.com ([fe80::d022:fca0:630d:905f]) by AM7PR02MB5765.eurprd02.prod.outlook.com ([fe80::d022:fca0:630d:905f%6]) with mapi id 15.20.3611.031; Tue, 1 Dec 2020 19:32:03 +0000
From: Doug Arnold <doug.arnold@meinberg-usa.com>
To: Hal Murray <hmurray@megapathdsl.net>
CC: "ntp@ietf.org" <ntp@ietf.org>
Thread-Topic: [Ntp] NTPv5 draft
Thread-Index: AQHWyBDwr+/bCPdBM0WqC01/TChfoKniTVUA
Date: Tue, 01 Dec 2020 19:32:03 +0000
Message-ID: <33103CE6-890E-4955-A374-226A41FC4F29@meinberg-usa.com>
References: <doug.arnold@meinberg-usa.com> <7FD4E2DD-04A0-4B62-BBD4-EE5F00236831@meinberg-usa.com> <20201201183646.113F940605C@ip-64-139-1-69.sjc.megapath.net>
In-Reply-To: <20201201183646.113F940605C@ip-64-139-1-69.sjc.megapath.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.43.20110804
authentication-results: megapathdsl.net; dkim=none (message not signed) header.d=none;megapathdsl.net; dmarc=none action=none header.from=meinberg-usa.com;
x-originating-ip: [64.30.82.72]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 5820c7b7-ed78-4e7c-7b00-08d8962fc831
x-ms-traffictypediagnostic: AM6PR02MB5429:
x-microsoft-antispam-prvs: <AM6PR02MB542902978E6F484673030E29CFF40@AM6PR02MB5429.eurprd02.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:1360;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: RpmeehskhDtCrehSM/nsGpGFWROkUMdnAUTLhG8pss4JNHWzFwMCVTktguFgYsQ3OA9o6FKyRZyTVcpt7qSr9jNVaJztWIBRRDgKHabaWpSwtkHHdEWqMXA+z6Ucd0XxcN/y/YIYXvL/6oiV9qLRr5opWfgqY/oaJrG6nmCJUAv3SaGvpTdauTq2FnsvOZVN69Y3XUcDbrKhkDgsV+wNoost1gva6rPajLqQoL8PukD0pHWdmooC+D8lsq2ieSL5ZUVOGZ6vqePzc0DaaqQM+B/uZ5axAR3G9HPwKH1+HEJ+Z6VGwyCJnijD6Eidugxq
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM7PR02MB5765.eurprd02.prod.outlook.com; PTR:; CAT:NONE; SFS:(366004)(376002)(136003)(396003)(39830400003)(346002)(6512007)(186003)(5660300002)(6506007)(478600001)(36756003)(66574015)(83380400001)(66476007)(66446008)(66556008)(64756008)(66946007)(316002)(6486002)(6916009)(4326008)(91956017)(33656002)(4744005)(8676002)(86362001)(26005)(8936002)(2616005)(2906002)(76116006)(71200400001)(44832011); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <99B47332ADD28C49A3FC66C854339A5C@eurprd02.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: meinberg-usa.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AM7PR02MB5765.eurprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 5820c7b7-ed78-4e7c-7b00-08d8962fc831
X-MS-Exchange-CrossTenant-originalarrivaltime: 01 Dec 2020 19:32:03.8125 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: d59904cd-769f-4368-8bd0-f5f435893a38
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: ynrtqiJtnHN0c7qw0wZUySJk9XF79k5/Q/zJUeqRubobPrNj2xFXjka7fA5tXSJjdWQLWGy/+0KJat146majdR7QDRrwC61QG6Lm8fiAYoA=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM6PR02MB5429
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/wvlR_Q_pz4QW7WOcndoNelcO1nM>
Subject: Re: [Ntp] NTPv5 draft
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 01 Dec 2020 19:32:13 -0000
The time and security startup problem is not rigorously solved. However, I have talked with network operators who favor using IPsec for all traffic, and they are aware of the start up problem, but figure that they are paying attention when the network is started up, so they are okay with it. Note: these are not public internet applications. Doug On 12/1/20, 1:36 PM, "Hal Murray" <hmurray@megapathdsl.net> wrote: doug.arnold@meinberg-usa.com said: > Here is another use case where secure NTP might not be needed. All the > traffic in the application, including ntp is protected by IPsec or MACsec. > Yes that add some delays, but for some applications that is okay. How does IPsec work? Does setting up the working keys depend on time like the certificate checking for TLS does? -- These are my opinions. I hate spam.
- [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft Dieter Sibold
- Re: [Ntp] NTPv5 draft Kurt Roeckx
- Re: [Ntp] NTPv5 draft Steven Sommars
- Re: [Ntp] NTPv5 draft Doug Arnold
- Re: [Ntp] NTPv5 draft Salz, Rich
- Re: [Ntp] NTPv5 draft Philip Prindeville
- Re: [Ntp] NTPv5 draft Philip Prindeville
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- Re: [Ntp] Antw: [EXT] Re: NTPv5 draft Miroslav Lichvar
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- Re: [Ntp] NTPv5 draft Kurt Roeckx
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] Antw: [EXT] Re: NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft James
- [Ntp] Antw: Re: Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft Dieter Sibold
- Re: [Ntp] Antw: Re: Antw: [EXT] Re: NTPv5 draft Hal Murray
- Re: [Ntp] Antw: Re: Antw: [EXT] Re: NTPv5 draft Miroslav Lichvar
- Re: [Ntp] Antw: Re: Antw: [EXT] Re: NTPv5 draft Hal Murray
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft Kurt Roeckx
- Re: [Ntp] NTPv5 draft Hal Murray
- [Ntp] Antw: Re: Antw: Re: Antw: [EXT] Re: NTPv5 d… Ulrich Windl
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- Re: [Ntp] NTPv5 draft Doug Arnold
- Re: [Ntp] Antw: Re: Antw: Re: Antw: [EXT] Re: NTP… Hal Murray
- Re: [Ntp] Antw: [EXT] Re: NTPv5 draft Salz, Rich
- Re: [Ntp] Antw: [EXT] Re: NTPv5 draft Doug Arnold
- Re: [Ntp] Antw: [EXT] Re: NTPv5 draft Kurt Roeckx
- Re: [Ntp] NTPv5 draft Hal Murray
- Re: [Ntp] NTPv5 draft Doug Arnold
- Re: [Ntp] NTPv5 draft Dieter Sibold
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft Salz, Rich
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft Salz, Rich
- Re: [Ntp] NTPv5 draft James
- Re: [Ntp] NTPv5 draft Warner Losh
- Re: [Ntp] NTPv5 draft Philip Prindeville
- Re: [Ntp] NTPv5 draft Hal Murray
- Re: [Ntp] NTPv5 draft Warner Losh
- Re: [Ntp] NTPv5 draft Salz, Rich
- Re: [Ntp] NTPv5 draft Hal Murray
- Re: [Ntp] NTPv5 draft Hal Murray
- Re: [Ntp] NTPv5 draft Philip Prindeville
- Re: [Ntp] NTPv5 draft Doug Arnold
- Re: [Ntp] NTPv5 draft Doug Arnold
- Re: [Ntp] NTPv5 draft Doug Arnold
- Re: [Ntp] NTPv5 draft Philip Prindeville
- Re: [Ntp] NTPv5 draft Hal Murray
- Re: [Ntp] NTPv5 draft Hal Murray
- Re: [Ntp] NTPv5 draft Salz, Rich
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft Salz, Rich
- Re: [Ntp] NTPv5 draft Marcus Dansarie
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft Salz, Rich
- Re: [Ntp] NTPv5 draft James
- Re: [Ntp] NTPv5 draft Magnus Danielson
- Re: [Ntp] NTPv5 draft Warner Losh
- Re: [Ntp] NTPv5 draft Magnus Danielson
- Re: [Ntp] NTPv5 draft Warner Losh
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft Magnus Danielson
- Re: [Ntp] NTPv5 draft James
- Re: [Ntp] NTPv5 draft Salz, Rich
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- [Ntp] Antw: [EXT] Re: NTPv5 draft Ulrich Windl
- [Ntp] Antwort: Antw: [EXT] Re: NTPv5 draft kristof.teichel
- Re: [Ntp] Antwort: Antw: [EXT] Re: NTPv5 draft Hal Murray
- Re: [Ntp] NTPv5 draft James
- Re: [Ntp] Antwort: Antw: [EXT] Re: NTPv5 draft Miroslav Lichvar
- Re: [Ntp] NTPv5 draft Miroslav Lichvar
- Re: [Ntp] Antwort: Antw: [EXT] Re: NTPv5 draft Christer Weinigel