UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

IETF RFC 8915

Network Time Security for the Network Time Protocol

active, Most Current
Buy Now
Organization: IETF
Publication Date: 1 September 2020
Status: active
Page Count: 33
scope:

Abstract

This memo specifies Network Time Security (NTS), a mechanism for using Transport Layer Security (TLS) and Authenticated Encryption with Associated Data (AEAD) to provide cryptographic security for the client-server mode of the Network Time Protocol (NTP).

NTS is structured as a suite of two loosely coupled sub-protocols. The first (NTS Key Establishment (NTS-KE)) handles initial authentication and key establishment over TLS. The second (NTS Extension Fields for NTPv4) handles encryption and authentication during NTP time synchronization via extension fields in the NTP packets, and holds all required state only on the client via opaque cookies.

Document History

IETF RFC 8915
September 1, 2020
Network Time Security for the Network Time Protocol
Abstract This memo specifies Network Time Security (NTS), a mechanism for using Transport Layer Security (TLS) and Authenticated Encryption with Associated Data (AEAD) to provide cryptographic...

References

This document references:
IETF RFC 5116 - An Interface and Algorithms for Authenticated Encryption
Published by IETF on January 1, 2008
This document defines algorithms for Authenticated Encryption with Associated Data (AEAD), and defines a uniform interface and a registry for such algorithms. The interface and registry can be used...
This document is referenced by:
PAS 1878 - Energy smart appliances - System functionality and architecture - Specification
Published by BSI on May 31, 2021
A description is not available for this item.
This document is referenced by:
RFC 9145 - Integrity Protection for the Network Service Header (NSH) and Encryption of Sensitive Context Headers
Published by IETF on December 1, 2021
Abstract This specification presents an optional method to add integrity protection directly to the Network Service Header (NSH) used for Service Function Chaining (SFC). Also, this specification...
This document is referenced by:
RFC 9182 - A YANG Network Data Model for Layer 3 VPNs
Published by IETF on February 1, 2022
Abstract As a complement to the Layer 3 Virtual Private Network Service Model (L3SM), which is used for communication between customers and service providers, this document defines an L3VPN Network...
This document is referenced by:
RFC 9343 - IPv6 Application of the Alternate-Marking Method
Published by IETF on December 1, 2022
This document describes how the Alternate-Marking Method can be used as a passive performance measurement tool in an IPv6 domain. It defines an Extension Header Option to encode Alternate-Marking...
This document is referenced by:
62351-9 - Power systems management and associated information exchange – Data and communications security – Part 9: Cyber security key management for power system equipment
Published by IEC on June 1, 2023
This part of IEC 62351 specifies cryptographic key management, primarily focused on the management of long-term keys, which are most often asymmetric key pairs, such as public-key certificates and...
View Less
View All
Advertisement