[ntpwg] [Fwd: I-D Action:draft-ietf-ntp-autokey-01.txt]
Brian Haberman
brian at innovationslab.net
Mon Feb 25 19:32:57 UTC 2008
All,
This version of the autokey draft is based off of the recent
changes described by Dave. Please review it and provide comments.
Regards,
Brian
-------- Original Message --------
Subject: I-D Action:draft-ietf-ntp-autokey-01.txt
Date: Mon, 25 Feb 2008 10:45:01 -0800 (PST)
From: Internet-Drafts at ietf.org
Reply-To: internet-drafts at ietf.org
To: i-d-announce at ietf.org
CC: ntpwg at lists.ntp.isc.org
A New Internet-Draft is available from the on-line Internet-Drafts
directories.
This draft is a work item of the Network Time Protocol Working Group of
the IETF.
Title : Network Time Protocol Version 4 Autokey Specification
Author(s) : B. Haberman, D. Mills
Filename : draft-ietf-ntp-autokey-01.txt
Pages : 53
Date : 2008-02-25
This memo describes the Autokey security model for authenticating
servers to clients using the Network Time Protocol (NTP) and public
key cryptography. Its design is based on the premise that IPSEC
schemes cannot be adopted intact, since that would preclude stateless
servers and severely compromise timekeeping accuracy. In addition,
PKI schemes presume authenticated time values are always available to
enforce certificate lifetimes; however, cryptographically verified
timestamps require interaction between the timekeeping and
authentication functions.
This memo includes the Autokey requirements analysis, design
principles and protocol specification. A detailed description of the
protocol states, events and transition functions is included. A
prototype of the Autokey design based on this memo has been
implemented, tested and documented in the NTP Version 4 (NTPv4)
software distribution for Unix, Windows and VMS at
http://www.ntp.org.
A URL for this Internet-Draft is:
http://www.ietf.org/internet-drafts/draft-ietf-ntp-autokey-01.txt
More information about the ntpwg
mailing list