Search RFCs
RFC 8915
Network Time Security for the Network Time Protocol,September 2020
- File formats:
- Also available:XML file for editing
- Status:
- PROPOSED STANDARD
- Authors:
- D. Franke
D. Sibold
K. Teichel
M. Dansarie
R. Sundblad - Stream:
- IETF
- Source:
- ntp (int)
Cite this RFC:TXT | XML | BibTeX
DOI: https://doi.org/10.17487/RFC8915
Discuss this RFC: Send questions or comments to the mailing listntp@ietf.org
Other actions:Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 8915
Abstract
This memo specifies Network Time Security (NTS), a mechanism forusing Transport Layer Security (TLS) and Authenticated Encryptionwith Associated Data (AEAD) to provide cryptographic security for theclient-server mode of the Network Time Protocol (NTP).
NTS is structured as a suite of two loosely coupled sub-protocols.The first (NTS Key Establishment (NTS-KE)) handles initialauthentication and key establishment over TLS. The second (NTSExtension Fields for NTPv4) handles encryption and authenticationduring NTP time synchronization via extension fields in the NTPpackets, and holds all required state only on the client via opaquecookies.
For the definition ofStatus,seeRFC 2026.
For the definition ofStream, seeRFC 8729.