On Fri, Mar 25, 2016 at 5:09 AM, Harlan Stenn <[email protected]> wrote: > > Can one have reliable IPSEC if the time is unknown?
Great point, but bootstrapping is a problem for NTS as well. If time is unknown, certificates cannot be trusted, and NTS uses certificates for key establishment (KE). See my other email. "NTS: boostrapping clients".
_______________________________________________ TICTOC mailing list [email protected] https://www.ietf.org/mailman/listinfo/tictoc
