[saag] NTP WG summary (on security related topics...) @ IETF 95
Karen O'Donoghue <odonoghue@isoc.org> Thu, 07 April 2016 17:57 UTC
Return-Path: <odonoghue@isoc.org>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F19A012D651 for <saag@ietfa.amsl.com>; Thu, 7 Apr 2016 10:57:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.902
X-Spam-Level:
X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=isoc.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lH34A-R076rM for <saag@ietfa.amsl.com>; Thu, 7 Apr 2016 10:57:16 -0700 (PDT)
Received: from na01-by2-obe.outbound.protection.outlook.com (mail-by2on0099.outbound.protection.outlook.com [207.46.100.99]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ACD4812D64D for <saag@ietf.org>; Thu, 7 Apr 2016 10:57:16 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=isoc.onmicrosoft.com; s=selector1-isoc-org; h=From:To:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=5Y4JIBE/hJVxwvQD4QWV+XKXLwTmeO/pYthVQ6GCIGM=; b=XWP27SMUI6/MYo8crX3bknRA+vuz73ccfByZ2Ush06UHDsaIMvuyO8wP1Edt1bnHnuQtf11g8JVkvy3hfDjimRqmXmRXeFS3mUoHXUNMc2UP1HQfTtjDc0IrowSg3QD91bbRs+y5gdFr30nmuQHkBbFtBi5C4JIHSjlnQVwELbQ=
Received: from DM2PR0601MB1118.namprd06.prod.outlook.com (10.160.218.139) by DM2PR0601MB1119.namprd06.prod.outlook.com (10.160.218.14) with Microsoft SMTP Server (TLS) id 15.1.447.15; Thu, 7 Apr 2016 17:57:15 +0000
Received: from DM2PR0601MB1118.namprd06.prod.outlook.com ([10.160.218.139]) by DM2PR0601MB1118.namprd06.prod.outlook.com ([10.160.218.139]) with mapi id 15.01.0447.029; Thu, 7 Apr 2016 17:57:15 +0000
From: Karen O'Donoghue <odonoghue@isoc.org>
To: "saag@ietf.org" <saag@ietf.org>
Thread-Topic: NTP WG summary (on security related topics...) @ IETF 95
Thread-Index: AQHRkPbro5Lt2u9lvkq0VvDCz0bxRQ==
Date: Thu, 07 Apr 2016 17:57:15 +0000
Message-ID: <C7AA4008-8DFF-4075-BA56-60E74E1F224A@isoc.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=isoc.org;
x-ms-exchange-messagesentrepresentingtype: 1
x-originating-ip: [2001:67c:370:176:fcf8:b3eb:abfe:52ab]
x-ms-office365-filtering-correlation-id: 2ace11bf-0f61-4dba-5a86-08d35f0e0dd9
x-microsoft-exchange-diagnostics: 1; DM2PR0601MB1119; 5:SBY1dABpU2k2Gqg76QxMBxUrh26vbuDSPLMLcosZmhr/p+9/hMioijVSEybO+zERAt9kkiqWExUvQItVEF82uNSoDly7FpBDDAeroXJbc7mHAY2shXmv/SMe6s4OrNKnlwcolzY/sTFlMvaj2lauRg==; 24:jRFJAGyapqyKXrVZRNY18bDUyYpXV/P1/yWiLkDem5NRPDWqFf/kCRaUEvUqysTnWjD1kiTKTgwhW5B+lQc2z39MH0wRx0Tw5bso/kFO5Sk=
x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:DM2PR0601MB1119;
x-microsoft-antispam-prvs: <DM2PR0601MB1119C9F60A61ECEAC8AD61ABC2900@DM2PR0601MB1119.namprd06.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:;
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(601004)(2401047)(8121501046)(5005006)(3002001)(10201501046); SRVR:DM2PR0601MB1119; BCL:0; PCL:0; RULEID:; SRVR:DM2PR0601MB1119;
x-forefront-prvs: 0905A6B2C7
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(2501003)(16236675004)(1730700002)(102836003)(6116002)(1096002)(1220700001)(229853001)(11100500001)(36756003)(87936001)(5004730100002)(50986999)(19617315012)(33656002)(3280700002)(3660700001)(82746002)(2351001)(2906002)(54356999)(83716003)(15650500001)(92566002)(10400500002)(122556002)(5640700001)(106116001)(15975445007)(81166005)(189998001)(110136002)(450100001)(107886002)(2900100001)(77096005)(5008740100001)(586003)(86362001)(5002640100001)(19580395003)(99286002)(3826002)(104396002); DIR:OUT; SFP:1101; SCL:1; SRVR:DM2PR0601MB1119; H:DM2PR0601MB1118.namprd06.prod.outlook.com; FPR:; SPF:None; MLV:sfv; LANG:en;
spamdiagnosticoutput: 1:23
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_C7AA40088DFF4075BA5660E74E1F224Aisocorg_"
MIME-Version: 1.0
X-OriginatorOrg: isoc.org
X-MS-Exchange-CrossTenant-originalarrivaltime: 07 Apr 2016 17:57:15.3713 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 89f84dfb-7285-4810-bc4d-8b9b5794554f
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM2PR0601MB1119
Archived-At: <http://mailarchive.ietf.org/arch/msg/saag/pNzHkCd9lSaEIQXzQs12HyqlikE>
Subject: [saag] NTP WG summary (on security related topics...) @ IETF 95
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Apr 2016 17:57:19 -0000
The NTP WG is working on two security related topics: - Network Time Security - NTP BCP The Network Time Security work is comprised of three drafts: https://datatracker.ietf.org/doc/draft-ietf-ntp-network-time-security/ https://datatracker.ietf.org/doc/draft-ietf-ntp-using-nts-for-ntp/ https://datatracker.ietf.org/doc/draft-ietf-ntp-cms-for-nts-message/ This suite of documents is intended to replace RFC 5906 on the NTPv4 Autokey Specification https://datatracker.ietf.org/doc/rfc5906/ RFC 5906 is Informational, has known security flaws, and is not widely used in the wild. A WGLC call was issued on 1 March 2016. Numerous comments were received. This week’s meeting focused on general discussions related to the resolution of these comments. There will be a small design team to address WGLC comments. A second WGLC is expected. Additionally, the NTP WG is working on an NTP BCP https://datatracker.ietf.org/doc/draft-reilly-ntp-bcp/ The motivation for this document is to address operational issues related to NTP included some that have security and stability impacts on the Internet. Completion of this document has been slow, and contributions are welcome.
- [saag] NTP WG summary (on security related topics… Karen O'Donoghue