Home
Contribute Contact Us Browse all meetings
Home Contribute Contact Us Browse all meetings
Internet Engineering Task Force / 109 / 16 Nov 2020
Internet Engineering Task Force / 109 / 16 Nov 2020
Previous Meeting Next Meeting
Add meeting Rate page Subscribe
youtube image
From YouTube: IETF109-NTP-20201116-0900

Description

NTP meeting session at IETF109
2020/11/16 0900

https://datatracker.ietf.org/meeting/109/proceedings/

A

Okay, it is um the top of the hour, so we will go ahead and get started. um This is the ntp working group at ietf109.

A

The uh this is the ietf notewell for those of you who are new to the working group. You will have acknowledged and accepted this when you registered for the ietf.

A

These are all of the rules and processes by which we operate.

A

Please.

A

Please check into them and make sure you understand them. If you have any questions, feel free to ask dieter or myself or eric, who is our responsible ad.

A

With that.

A

We have a pretty short agenda today. uh First of all, we have this part of it. The administrative and agenda bashing session we're going to talk about a number of documents. What the status review is and next steps for a number of documents that are in flight.

A

These are documents that don't really have any updates.

A

We will talk about the alternative ntp port document that we was accepted recently.

A

We'll talk.

A

I put this down as ietf 109 hackathon and then put a rough time report, but it's actually both a report of what rough time did at the hackathon and also implications and next steps for the rough time draft itself um and then we'll talk about ntf ntp, v5 development, rechartering in any other business.

A

Is there any agenda bashing.

A

No okay, one thing I do need.

A

Is there anybody who's willing to take notes.

A

Any minute takers I know dieter has agreed to do it, but it would be good if somebody else did it with.

A

Him.

A

A very quiet meeting today.

A

um

A

Okay, um so ditcher, I guess you get the minutes.

A

um

A

So the next, uh so the first part of the first agenda item is uh our ntp working group status. um We have a couple documents that are with the iesg. Now we have the mode 6 commands and the yang data module model, so there's no updates to those. Yet we also have two documents that are ready for the iesg that have not been submitted.

A

Yet one is the interleave modes document and the second one is the ntp port randomization um and then I originally listed the next two documents as documents that we had no updates on, um but we will have an update on rough time based on the uh I mean on the hackathon. I just didn't move it off this list.

A

So are there any questions or comments on these.

B

Documents.

B

I apologize for being slow on the ad evaluation parts.

A

No problem I've had my own long list of things I'm slow on at the moment.

A

The um okay! So with that, um the next part of the agenda is the.

A

Is watson he's going to talk about the rough time? Hackathon experience go ahead, watch him.

C

I think you need to accept this. Oh do you want to do the slides or oh.

A

No.

C

I'm happy to let you do them. I just um hear all stuff. Okay, I think there's something you need to do to accept the queue.

A

Yeah, I just um got into the habit of doing them all myself, so I'm happy to.

C

Sound so great, it looks like that's working all right, so I'll be discussing rough time, the rough time hackathon experience and the next steps in the protocol. I noticed that a number of people are new, so I'll give a quick recap of rough time. So it's essentially certificate transparency for time.

C

By signing the responses and incorporating announcing the queries, we can provide proof that the queries were responded to in a causal order and the res the servers are testing at the generation within an interval.

C

If these intervals are inconsistent with cut with the evidence of causality, then we know that at least one server was lying when it said that it generated the response at that time, and this can then lead to a distrust of the server, and this is a intended to provide a much stronger security guarantees for an approximate time with applications to signature, verification, I've heard of interest in iot uh time, synchronization security- obviously, but it's not going to be as accurate as you might want.

C

It will, however, ensure at the time is correct, um and one of the wrinkles in this is: you need a monotonic time representation, because you want to have the case that you can compare. The timestamps and you'll always have a later. A causally later timestamp be a numerically greater value and to adopt this, we use a representation based on the modified julian date and microsecond since midnight. So there's a number there's some bit packing.

C

That goes on where some of the bytes are are allocated for regular science since midnight and some are allocated to the modified julian date.

C

So I meant the hackathon, so worker, cloudflare and cloudflare has a client and server implementation and there's now a branch that implements the rough time version. 3 draft there's still work to be done on updating the interfaces with some of the changes that have happened in the draft and fixing some of the usability issues around the library that we provide, um but that you know general cleanup, but it does implement it and the server interoperated within it with a client from johann.

C

um There were some issues we identified so modified julian date in order to compute it. You need to know whether or not you're in a leap second, and that information is known to the kernel on unix-like systems, but there is no portable interface to obtain it.

C

So, depending on exactly where you're implementing this that can be an issue. Linux has an interface sort of round about what you have to do, whether it's there and it's a matter of getting other operating systems to support some kind of nicely designed interface to get that information out.

C

So what's remaining with the draft, so there there's an area, that's been a sort of to-do list for a while, which is the um transfer of proofs of server malfeasance.

C

We need to wait, we need to serialize them and there needs to be some idea of where you send them um if you're interested in deploying roughly, I want to hear from you. Even something like this is fine would be very useful.

C

I I think at that point, we'll we'll sort of be ready for a working glass call didn't find any issues with interoperability. I don't think uh from from the draft tax: that's pretty pretty nice, uh some particular areas of concern. So I mentioned earlier that there was this problem with minimum with getting the information out of the kernel.

C

Well, if your minimum, you can only that only changes. The time by one second so is, is having a server say. Okay, I only know the time within a second. I am just using get time a day enough or maybe it needs to be a little. It needs to be a little bigger um with a modified julian date. Representation.

C

The arithmetic depends on leap second tables, because you need to know what the last second of the day is and when there is a.

C

I'm going to mess with the sign convention, I know whatever I say it's going to be wrong. So when you have a a second repeated, because the earth has spun slower than expected, the last second of the day repeats its end.

C

You need to know whether what the last seconds number is uh there's also invalid representations. The number of seconds in a day is not a power of two and because it is not a power of two, there are a number of values that should never appear and the invitation when you program this is to do your arithmetic on a degenerate representation. Just take the set microseconds part and add in the timestamp normalize afterwards.

C

This introduces differences in the results you get and implementation behavior, and so I need to say more about that, and then this wrinkle, I thought of, is sort of signature canonicalization.

C

What happens if a server produces signatures that some parties verify and others do not? uh Can this be used to lie and get away with it?.

C

So that's sort of the standards thing and I want to talk about sparrows deployment. Currently, the deployment picture is pretty bleak.

C

There's a small number of earlier versions deployed mostly of the google version that was kicking around for madame langley, not enough financial, three servers, I I think, there's exactly one of them and it's not working right now and got restarted every day um and there need to be places to report malfeasance there needs and we also need clients and just as a this is a certificate verifying client needs to have policies, certificates, verifies or a certificate. Transparency, implementation, a client that uses certificate. Transparency needs to trust her in logs.

C

The client in in rough time needs to have a policy of acceptable servers, and that is a bit of an obligation, and it's so that that is something it needs to at some point happen: um are there so at this point I think I'll open the floor to questions if there are any, because that's sort of us done with the.

C

Summary.

A

Okay, are there any.

A

Questions.

D

I have a question, um but you you mentioned some areas of concern, but you all also mentioned that you think this draft is waiting for working group plus calls so.

C

Okay, I I think I misspoke what I said is. I think that those are I think, after those are addressed, it would be ready.

D

Okay,.

C

And if, if people see a show now I have ideas to address all of them, but if people think that no these are actually bigger problems or they have input now would be the time to speak up.

A

So watson, the um during the hackathon, did you get um any participants in your project.

C

uh Yes, um johan lindquist uh showed up and his client interoperates with the with the server. So that is good.

A

Okay, I I saw that you were using his implement his client. I did. I guess I didn't make the connection.

A

um All right any other questions about rough time.

A

Do you have a rough estimate on uh the the time that you think like? What's your next plan for your next update.

C

I'd like to say as soon as the submission window reopens, but uh I that's that might be me being too optimistic. um Probably within the month.

A

Okay, I I think the submission window reopens on the first day of the ietf meeting. Doesn't it I think that's today. Okay, then we'll make that.

A

Okay,.

A

Okay, so let's go back.

A

To uh so, there's no other questions on the rough time work. Okay, uh so, on ntp, v5 development uh work, we do not have um a published draft. What we do have is a draft in.

A

And github I'm going to put a couple links in the chat for people.

A

um So this is the contribution from marislav that will get submitted at some point. uh The other thing that I wanted to point people to was um the track. um The wiki uh which we haven't updated in a while. But if you look at the wiki, there's a potential ntp work items and there's basically a list of version, 4 issues and a version 5 feature requests.

A

Marislav is not on the call, so he can't really at least let me double check. I didn't see him earlier.

A

And I don't see him on the call at all uh so.

A

um And- and so I guess the the since miroslav is not on the call, he can't talk to his uh contribution that was sent to the mailing list. um Has anybody on the call read it and would like to discuss it.

C

Yeah so watson, here um I read it. I sent a email to the mailing list with comments.

C

I don't, I think at this point, it's pretty early to say much about it, um it's in part because it intro it talks a lot about the data format, but doesn't talk about gathering for some of the more interesting extensions, uh but I I think it's in reason. You know, I think it's in reasonably good shape for your starting point.

C

Okay,.

A

I think um one of the concerns is it narrows the scope from ntp v4 and we're gonna. We're gonna need to have a serious conversation about uh backward compatibility at some point.

D

I also think that.

D

It might be important that ntp version 5 will start and secured association by default, but that at some point we have to discuss. I suppose.

C

Okay, watson yeah, um I'm not sure what was meant by narrowing the scope. If I I think there was some degree of agreement that we should specify the network lay in the network, wire format and the algorithms for steering somewhat independently, uh basically split split, the current structure, where it's algorithms for treating the clock and the network protocol in one big document and split it up in part, because we of operational experience where you can use other algorithms that works fine,.

A

Right, that's not actually what I meant. I do believe there was agreement to do that. um I was in particular talking about like reducing it to server client mode only as opposed to supporting other types of operations.

A

Other modes of service.

A

I guess scope is not really the right word, but um deprecating some features that are not being used as much now as, but that are part of the original specification. So that's more what I meant by narrowing the scope.

A

um

A

Any other comments on.

A

The ntp v5 development.

A

We have a number of new participants here, so I mean feel free to speak out.

A

If you have any questions at all all right, the last thing that on the agenda was oh, go ahead. Doug.

A

Doug, did you intend to put yourself in the queue just just hit the speak.

A

There you go.

E

Here we go okay great, uh so I I just wanted to follow up on that last comment about other modes of operation and the possibility of marking marking them. As you know, no longer recommended or something uh you know. I think I think this is a discussion worth having you know. We want backwards compatibility, but we could say we're phasing these loads out.

E

They are allowed in this version, but they they may not be in future versions. It's you know so deprecated might be appropriate, but that's you know, that's a choice for this group to make, but I think that's a discussion. We could.

A

Have all right, um I guess I'm.

A

I guess what I've encouraged people to do would be to write drafts, even if they're not like protocol proposals, if they're drafts exploring what the requirements should be or those kinds of things, we've used the wiki over the years to try and collect all the requirements.

A

And but we don't, we aren't having a good. um We haven't had enough discussion to make any consensus calls on like things like whether things should be deprecated or not. So it would be helpful to have some of that discussion um all right anything else on ntp v5, I still don't see marislav.

A

um So the last point of the agenda was rechartering.

A

We have been promising some rechartering texts for a while, but we have not done that yet um I just had that open. I have created an ether pad to start collaborating. We got some volunteers at our last virtual interim to work on the to work on some chartering text and uh we did not make any progress on that. That's mostly my fault for not uh pulling it together.

A

So what I'd like to do is work on that for the next virtual interim.

A

And.

A

ah That's the wrong button too many buttons um with that we are at the any other business. This is going to be the shortest ntp meeting ever uh eric go ahead.

B

um

E

With the chartering.

B

But the link was in the chat or it could be in the chat.

A

I'm sorry I I didn't quite hear you.

B

uh You you said you would put some uh the charter text in each pad somewhere to be worked on.

A

I I said I set up beneath your pad.

B

ah The link was available. I think.

A

Yeah- and I had it like 30 minutes ago, and now I can't find it uh it's somewhere in the millions, I will send it to the mailing list, because I cannot find where I put it.

A

Thank you sorry about that.

A

I set it up in advance of the meeting, but now I can't find it.

A

Way too many tabs all right with that. Are there any other questions.

A

Any other business that we want to discuss.

A

We will look at scheduling a virtual interim.

A

In all likelihood, um in mid-january, I don't know that it makes much sense to try and get it in in december.

A

And.

A

At that point, hopefully we will have made some more progress on chartering.

A

And cleaned up some of our documents that we're trying to finish up any other.

A

Questions.

A

Okay with that.

A

I think we are.

A

Done.

C

Thank you good night. Everybody.

A

Good night, thank you.

A

Watson.

A

Oh yes, teacher.

D

Do you know where the recording is available.

A

For this uh it'll be on youtube.

A

um In a few days, I can send you the link afterwards, okay,.

D

I should also have the link.

A

um Yeah.

A

There's no way for us to end the session meet echo has to end it.

A

Oh.

B

There we.

A

Go.

A

You.