Technical Summary
RFC 5905 [RFC5905] states that Network Time Protocol (NTP) packets should be authenticated by appending a 128-bit key to the NTP data, and hashing the result with MD5 to obtain a 128-bit tag. This document deprecates MD5-based authentication, which is considered to be too weak, and recommends the use of AES-CMAC [RFC4493] as a replacement.
Working Group Summary
The document has clear working group consensus for publication, and has been reviewed by several WG participants since its initial adoption as a working group item.
Document Quality
This document has been reviewed and revised several times during its development. There were no specific external expert reviews conducted.
Personnel
Karen O'Donoghue is acting as the Document Shepherd. Suresh Krishnan is the Responsible Area Director.