David,
The server private value need not and is not divulged. It is hidden by
the hash operation, just as in very many other protocols. I don't know
why we are having this discussion, as the issues at hand are common with
other secret schemes. See the Autokey briefings on protocols and
identity schemes at www.eecis.udel.edu/~mills/ntp.html.
Dave
David Schwartz wrote:
"David L. Mills" <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]
David,
That's what the server private seed is for. It is never divulged.
If it's never divulged, how can you use it to tell you who sent you the
packet?
For example, suppose I have two servers, A and B. A is talking to a
third server C. I wish to determine if a server B is talking to is that same
server C, or a distinct server, D. How will a session hash help me do that?
On the other hand, a public server ID that is globally unique *will* help me
do that. The source IP won't, because a single machine can have multiple
addresses.
DS
_______________________________________________
questions mailing list
[email protected]
https://lists.ntp.isc.org/mailman/listinfo/questions
