[ntpwg] [dhcwg] Re: Network Time Protocol (NTP) Options for DHCPv6

David W. Hankins David_Hankins at isc.org
Fri Nov 16 13:48:03 GMT 2007 

On Thu, Nov 15, 2007 at 11:26:19PM -0500, Danny Mayer wrote:
> Brian Utterback wrote:
> > Interesting. I agree that a key needs to be specified somehow, but it
> > is not clear to me how to do it. We have to assume that the client
> > does not have the same NTP keys. However, we would like a way to
> > specify a server and keys securely, so that the security of the
> > network depends only on the security of DHCP. Again I am not up to
> > date, *is* there a secure DHCP? If so, then how to get keys to the 
> > clients becomes an issue.

Although DHCPv6 does have a signature verification mechanism, it does
not encrypt carried configuration.

So unless you're transferring public keys for NTP, there's an exposure
problem I'm not sure you're aware of.  Just making sure you know, I'm
not familiar with the keys discussed in this context.


Next, I want to make sure that your expectations of the services
DHCPv6 can provide are set appropriately.

Others have pointed out DHCPv6's authentication mechanism uses shared
secrets; there is also a similar mechanism for DHCPv4, RFC3118
"Authentication for DHCP Messages" (which 3315 says its method is
based upon).  You should know that this has not been well deployed in
DHCPv4, and it shares very similar design features to RFC3315's
authentication.  The primary problem is that for most networks in
operation, "configure a shared secret on all of your clients" defeats
the purpose of the "Dynamic" in DHCP.  If you have to manually
configure all your clients with a key, why bother using DHCP at all?
You may as well manually configure them all with the final
configuration state and skip a lot of needless machinery.

So although it can be done, no one actually does it.

I understand that 3315 authentication has precisely the same barrier,
that the client's keys are distributed "out of band."  I have no
reason to think that IPv6 makes operators more interested in manually
configuring clients to obtain dynamic configuration state than they
have been in IPv4.

This is surmountable I think, it's possible the authentication methods
might be extended and improved to remove this barrier to adoption, but
there have been zero drafts to date which attempt to do so.

So, expectations.


Your expectations should be:  No one will use 3315 authentication as
it is, and therefore you will not have a cryptographically secured
means to deliver this information on real networks.  People will,
however, take special care with their DHCPv6 protocol packets on their
networks (firewalling, etc, just as many always have done in IPv4),
and there exists the potential for improvement and actual deployment
of cryptographic trust here at some future date.

-- 
David W. Hankins	"If you don't do it right the first time,
Software Engineer		you'll just have to do it again."
Internet Systems Consortium, Inc.	-- Jack T. Hankins
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : https://lists.ntp.org/pipermail/ntpwg/attachments/20071116/f5f384a7/attachment.bin

More information about the ntpwg mailing list