s2k15: Authenticated TLS 'constraints' in ntpd(8)
by from OpenBSD Journal on (#2XTG)
Reyk Fliter (reyk@)wrote into tech@, talking about some work he'd done ats2k15:
Read more...Hi!
Theo, Henning, and me developed an idea to utilize TLS in some way forauthenticated time in ntpd(8). We are not intending to use it as adirect time source, but as a "constraint" to verify the NTP responses.I came up with an implementation that has been designed to be anoptional, non-intrusive feature that is now part of OpenBSD -current.