[ntpwg] [Fwd: I-D Action:draft-ietf-ntp-autokey-01.txt]

Brian Haberman brian at innovationslab.net
Mon Feb 25 19:32:57 UTC 2008


All,
     This version of the autokey draft is based off of the recent 
changes described by Dave.  Please review it and provide comments.

Regards,
Brian

-------- Original Message --------
Subject: I-D Action:draft-ietf-ntp-autokey-01.txt
Date: Mon, 25 Feb 2008 10:45:01 -0800 (PST)
From: Internet-Drafts at ietf.org
Reply-To: internet-drafts at ietf.org
To: i-d-announce at ietf.org
CC: ntpwg at lists.ntp.isc.org

A New Internet-Draft is available from the on-line Internet-Drafts 
directories.
This draft is a work item of the Network Time Protocol Working Group of 
the IETF.


	Title           : Network Time Protocol Version 4 Autokey Specification
	Author(s)       : B. Haberman, D. Mills
	Filename        : draft-ietf-ntp-autokey-01.txt
	Pages           : 53
	Date            : 2008-02-25

This memo describes the Autokey security model for authenticating
servers to clients using the Network Time Protocol (NTP) and public
key cryptography.  Its design is based on the premise that IPSEC
schemes cannot be adopted intact, since that would preclude stateless
servers and severely compromise timekeeping accuracy.  In addition,
PKI schemes presume authenticated time values are always available to
enforce certificate lifetimes; however, cryptographically verified
timestamps require interaction between the timekeeping and
authentication functions.

This memo includes the Autokey requirements analysis, design
principles and protocol specification.  A detailed description of the
protocol states, events and transition functions is included.  A
prototype of the Autokey design based on this memo has been
implemented, tested and documented in the NTP Version 4 (NTPv4)
software distribution for Unix, Windows and VMS at
http://www.ntp.org.

A URL for this Internet-Draft is:
http://www.ietf.org/internet-drafts/draft-ietf-ntp-autokey-01.txt



More information about the ntpwg mailing list