%% You should probably cite rfc8573 instead of this I-D. @techreport{ietf-ntp-mac-06, number = {draft-ietf-ntp-mac-06}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-ietf-ntp-mac/06/}, author = {Aanchal Malhotra and Sharon Goldberg}, title = {{Message Authentication Code for the Network Time Protocol}}, pagetotal = 5, year = 2019, month = jan, day = 4, abstract = {The Network Time Protocol (NTP), as described in RFC 5905, states that NTP packets should be authenticated by appending NTP data to a 128-bit key and hashing the result with MD5 to obtain a 128-bit tag. This document deprecates MD5-based authentication, which is considered too weak, and recommends the use of AES-CMAC as described in RFC 4493 as a replacement.}, }