The key-manahement argument

Richard Laager rlaager at wiktel.com
Mon Jan 21 04:16:31 UTC 2019


On 1/19/19 6:30 PM, Hal Murray wrote:
>> The NTS-KE servers would have to share NTS master keys (and cookie formats!)
>> with volunteer NTP servers.
> 
> If you are interested in security, sharing a master key with many servers 
> seems like a bad idea

I'm not saying you would share the same key across the whole pool. Each
volunteer NTP server could have its own key which is shared with the
pool NTS-KE server.

> We can avoid sharing the master key with many NTP servers if the NTS-KE server 
> contacts the selected NTP server to get the initial cookies.
Yes, that is probably better.

-- 
Richard


More information about the devel mailing list