wiki:NtsWglcDesignTeam

Version 8 (modified by kristof.teichel@…, 6 years ago) (diff)

--

Network Time Security WGLC Design Team Discussions

Link to the agenda document (everyone may comment, only Dieter and Kristof may edit at the moment): https://docs.google.com/document/d/1CR5mFOP_WZ_FZDTf0IWsXLFOvhO4AXokZNvOb3PWI7E

Meetings

First (teleconference) meeting likely on Monday, 25 April, 15:30 UTC; some form of minutes will be made available.

Meeting Agenda April 25th:

  • Introductions & organizational issues (minute taking)
  • Discussion on correctness & completeness of the team agenda list in the document linked above
  • Discussion on priorities of items (especially "must have" vs. "nice to have")
  • Optional: Start of discussion on high-priority items
  • Set date for next meeting

Meeting Agenda May 2nd:

  • Organizational issues
    1. Minute taking
    2. Date for next meeting
  • Discussion for item "IP fragmentation" (~10-15 min. each):
    1. List of requirements by Miroslav
    2. Option "Self-management" (NTS splits extension field data)
    3. Option "External channel" (TCP/(D)TLS/HTTPS/...)
  • Flesh out item "Two-way authentication" (~5 min.)
  • Discussion of item "Peer mode" (~5 min.)
  • General discussion

Identified Agenda Items for the Design Team

  • Top Priority:
    1. IP fragmentation of certificate-carrying messages during key exchange
    2. Key exchange protocol: do fewer exchanges?
  • High Priority:
    1. Key exchange protocol: have fewer cryptographic operations?
    2. Key exchange protocol: what about two-way authentication?
    3. Discussion about Chicken-and-Egg Problem
    4. Improve Handling of Cipher Suites
  • Medium Priority
    1. Improve Treatment of Peer Mode
    2. Symmetry of Message Sizes “time_request” and “time_response”
    3. Use of Initial (Unsecured) Timestamps
    4. Seed Refresh: Should this Be Mentioned
    5. Discussion about Different Security Approaches
    6. MAC-Algorithm instead of Hash (for HMAC) Algorithm