What's left to doo on NTS

[Daniel Franke]

On Sat, Mar 2, 2019 at 12:36 PM Gary E. Miller via devel
<devel at ntpsec.org> wrote:
> Yes, but you seriously reduce the attack time window.  Instead of
> a possible MitM every few seconds, you need to grab the one time the
> cookies are shared.

No you don't, because a MitM who appears at any time can drop time
packets until you run out of cookies, forcing a renegotiation, and
then MitM the renegotiation.