Yo Achim! On Sat, 02 Feb 2019 09:32:34 +0100 Achim Gratz via devel <devel@ntpsec.org> wrote:
> Gary E. Miller via devel writes:
> >> I think there is a reasonable parallel between get another server
> >> via DNS and get another server via NTS-KE.
> >
> > Yes, except the protocol, as defined in the Proposed RFC, does not
> > support it.
>
> Again, it supports it exactly the same way as the pool is currently
> working with DNS: You want another server, you ask another time.
Exactly why it is broken. No crypto. Unless you mean having an NTS-KE
server manage a pool. in chich case there is zero support for that
in any proposal. So will take years and be a new and different animal.
> The open question was if any of this can be made more efficient now
> that we ask an NTS-KE instead of a DNS server.
That changes the Proposed RFC. Out of scope.
RGDS
GARY
---------------------------------------------------------------------------
Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97703
g...@rellim.com Tel:+1 541 382 8588
Veritas liberabit vos. -- Quid est veritas?
"If you can’t measure it, you can’t improve it." - Lord Kelvin
pgptAjB6O58FA.pgp
Description: OpenPGP digital signature
_______________________________________________ devel mailing list devel@ntpsec.org http://lists.ntpsec.org/mailman/listinfo/devel
