First round of my stupid questions about NTS
Gary E. Miller
gem at rellim.com
Thu Jan 17 20:14:23 UTC 2019
Yo Achim!
On Thu, 17 Jan 2019 20:50:46 +0100
Achim Gratz via devel <devel at ntpsec.org> wrote:
> > Does this diagram look correct?
>
> No. What the heck is an NTS client supposed to be?
A client that connects on the NTS-KE port to a NTS-KE server.
> The description
> in the file suggests it is the NTS-KE described in the RFC, so it
> clearly belongs to the server infrastructure (in fact it's the root
> of trust).
No, it is the end user client.
> There is no separation of NTS and NTP server either, an NTS server is
> supposed to answer plain NTP clients with the old style NTP packets.
Uh, no. Different port numbers.
> Yes, if you shard the service among different physical boxes that are
> supposed to have the same root of trust.
Where did sharding come from? How would you see that? Is that more
specific that just random pooling/load balancing?
RGDS
GARY
---------------------------------------------------------------------------
Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97703
gem at rellim.com Tel:+1 541 382 8588
Veritas liberabit vos. -- Quid est veritas?
"If you can’t measure it, you can’t improve it." - Lord Kelvin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 851 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ntpsec.org/pipermail/devel/attachments/20190117/45c80d59/attachment-0001.bin>
More information about the devel
mailing list