NTP Header and Extension Fields Message DigestKey IDCompute Hash Message DigestCompare Message Authenticator Code (MAC) Figure 1 Message Authentication

Source Address Key ID Dest Address Cookie Figure 2 NTPv4 Autokey

Session Key ID List Source Address Next Key ID Dest Address Compute Hash Final Key ID Final Index Index n Index n + 1 Key IDCookie Compute Signature Signature Figure 3 Consgtructing the Key List

Session Key ID List NTP Header and Extension Fields Message Authenticator Code (MAC) Key IDCompute Hash Figure 4 Transmittinig Messages

Alice Denise Alice Carol Brenda Alice Alice* Subject Group KeyIssuer Alice Alice* Carol Carol* Alice Alice* Brenda Alice Eileen Carol Carol* Brenda Denise Eileen Brenda Denise Carol Eileen Carol Alice Carol* AliceBrendaDeniseEileen Group KeyCertificate Stratum 1Stratum 2 Stratum 3 s s s = step * = trusted Figure 5 NTP Secure Groups

A S B X ZY R C D 2 Stratum Figure 6 Hierarchical Overlapping Groups

Carol Denise Alice Carol Brenda Alice Alice* Alice Alice* Carol Carol* Alice Alice* Brenda Alice Eileen Carol Carol* Brenda Denise Eileen Brenda Denise Carol Eileen Carol Carol* AliceBrendaDeniseEileen Stratum 1Stratum 2 Stratum 3 s Carol Figure 7 Multiple Overlapping Groups Subject Group KeyIssuer Group KeyCertificate s s s = step * = trusted

ClientServer Verify response and signature Challenge Response Challenge Request Send response and signature Compute nonce1 and send Compute nonce2 and response Figure 8 Autokey Exchange

Digest/Signature NIDIdentClient Host 2831 Figure 9 Status Word

StratPollLIModeVN Root Delay Root Dispersion Reference Identifier Reference Timestamp (64) Originate Timestamp (64) Receive Timestamp (64) Transmit Timestamp (64) Message Digest (128) Key/Algorithm Identifier Cryptosum Authenticator (Optional) Extension Field 1 (optional) Extension Field 2… (optional) Prec Figure 10 NTP Header Format

Padding (as needed) CodeLength Association ID Value Signature Length Signature Timestamp Filestamp Value Length Value Fields (optional) Figure 11 Extension Field Format ER VN

Trusted Authority Certificate Server Certificate Client Certificate Secure Figure 12 Private Certificate (PC) Identity Scheme

Host Subject Signature Issuer Host Subject Signature Issuer Trusted Host Subject Signature Subject … Figure 13 Trusted Certificate (TC) Identity Scheme

Trusted Authority Parameters Group Key Client Key Server Parameters Client Parameters Client Key SecureInsecure Response Challenge Group Key Figure 14 Schnorr (IFF) Identity Scheme

Trusted Authority Parameters Group Key Server Parameters Server Key Client Parameters Client Key Secure Response Challenge Group Key Figure 15 Guillou-Quisquater (GQ) Identity Scheme

Trusted Authority Parameters Group Key Server Key Client Key Server Parameters Server Key Client Parameters Client Key Secure Response Challenge Figure 16 Mu-Varadharajan (MV) Identity Scheme

NTP Header and Extension Fields Message DigestKey IDCompute Hash Message DigestCompare Message Authenticator Code (MAC)

Client Address Cookie Server Address Compute Hash Cookie Private Value Key ID (0) Compute Signature Signature and Timestamp

Session Key ID List Source Address Next Key ID Dest Address Compute Hash Final Key ID Final Index Index n Index n + 1 Key IDCookie Compute Signature Signature

Session Key ID List NTP Header and Extension Fields Message Authenticator Code (MAC) Key IDCompute Hash