>> > these
>> > timestamps to set its clock or inform any of NTP's clock
>> > discipline
>> > algorithms?
>>
>> Not unless there is some way to authenticate timestamps from the
>> earlier
>> packets.
>
>It's a local policy choice.
I second this, and would like to give the comment that as far as the NTS/NTS-4-NTP specifications are concerned, I envision only two possibilities (one of which might be subdivided):
- NTS can give the statement that for a given NTP message, authenticity and integrity of the NTP header are provided through NTS measures
- NTS can not give the above statement. (This might be subdivided into "no NTS security measures used on this NTP message" or "NTS security measures used on this NTP message, but did not check out", i.e. MAC could not be verified)
Anything beyond that is (and should be) out of our scope for the three existing NTS-related documents.
_______________________________________________ TICTOC mailing list [email protected] https://www.ietf.org/mailman/listinfo/tictoc
