IETF Logo Mail Archive

[Ntp] Follow-up to yesterday's mic comment about PTP security

Daniel Franke <dfoxfranke@gmail.com> Tue, 23 July 2019 16:19 UTC

Return-Path: <dfoxfranke@gmail.com>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D123412012C for <ntp@ietfa.amsl.com>; Tue, 23 Jul 2019 09:19:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NHVBdsYjcMlx for <ntp@ietfa.amsl.com>; Tue, 23 Jul 2019 09:19:46 -0700 (PDT)
Received: from mail-io1-xd32.google.com (mail-io1-xd32.google.com [IPv6:2607:f8b0:4864:20::d32]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E193C1200BA for <ntp@ietf.org>; Tue, 23 Jul 2019 09:19:45 -0700 (PDT)
Received: by mail-io1-xd32.google.com with SMTP id j6so7936451ioa.5 for <ntp@ietf.org>; Tue, 23 Jul 2019 09:19:45 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to :content-transfer-encoding; bh=50086rHSw4ZwjJha1fsjWIXk/bPjDXxjKe6iPIJUmp8=; b=auz91wIO/SEUVMeWCedob/OXgt3Sr1xBbVzsnyn7FewGL+xSuc93eMq2vpYLkKyA8/ ImzE1M6zsC2/CcPLwcKgqGHzi7x70u3lVEzddB4tWrgk3vXmf6uEq0Jm0+tKiZtGu0mo igu5XvwJl/PwAr76NSE47NCwXDU/abcNGDKOa5QmFdAuyqreTkre16LIZ0/mipSTZG+l QnJr8xjKr86aAZrmjP8dE8bN5/MUw/RQdXQoaaBG1xuANRJShYfY9H8ioVQROZaYWbKp l1tER1LxcWxOWW0lPoduEBARx5+j6eBMNpFQuh7n9v32AdnDUgTEKDacoJof1Txj3D1O KwJQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to :content-transfer-encoding; bh=50086rHSw4ZwjJha1fsjWIXk/bPjDXxjKe6iPIJUmp8=; b=mnVOxH+3WbjFwodWRqSz+/CaEC9yHF1ThKUkTfVeOhGv3d6ZHfKuXJ8PjD/RHss0CP IySNKh8TD8RCXziohliv7n7f9qF3YVNCHjp/ire9zufTmgpAm6VKRPgEIDpVWRz6o0O3 n+liIbBX4GBCWpzUcbwCHAgcvVRpqQDCgfVSKjt4A8pQmSJ+q3Q9bIlFkFu6J7hdMcH5 TAnuq6DNCqZZKfiiplTtCieBfVj/5svcn6d0ns0pBiVCVpAP/XV0C4clER6NJN7AdkTx A2TGx6emN+pxP0WyoyLctR1Ckwbq8xKfQrPptAy4SEuzZe6nk75MOJE/vL53lftcAbWn zeCw==
X-Gm-Message-State: APjAAAXBbpuTkq2rT99MxFi5vKoo5UZ0D5oIBYhSAKVAhYnT41E8YH3m 0rP4DjjKtJuubrwpzRuaAr33CNXW2/2L9fRoub3/lg==
X-Google-Smtp-Source: APXvYqx66FmtwpglaQukSRuStU/JibgTp7r2BQLhTsolWMALgcX8OzbUl7TiMZYhWbG2NRD1R+3ZFwuX74C/GL6bDXg=
X-Received: by 2002:a5e:c30f:: with SMTP id a15mr29368896iok.246.1563898785073; Tue, 23 Jul 2019 09:19:45 -0700 (PDT)
MIME-Version: 1.0
From: Daniel Franke <dfoxfranke@gmail.com>
Date: Tue, 23 Jul 2019 12:19:33 -0400
Message-ID: <CAJm83bD89oPE+WouWUD=qVqFzZ5-vw6E3RVsdVRteH0cEXyYjg@mail.gmail.com>
To: NTP WG <ntp@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/-6ODYAuz_Rwdz9wgA29NdY-oZZU>
Subject: [Ntp] Follow-up to yesterday's mic comment about PTP security
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 23 Jul 2019 16:19:48 -0000

My comments yesterday about PTP security shifted context a few times
so it may have been hard to follow what I was claiming. My assertions
were:

1. If you need 50ms precision, pick some good public NTP servers and use NTS.

2. If you need 100µs precision, colocate a time source in the same
datacenter as the client systems. Use NTP and NTS; you don't need PTP
for this.

3. If you need 1µs precision, use PTP and physically secure the link
between the time source and the clients so that cryptographic
authentication is unnecessary.

4. If you need 1µs precision over an adversarial network, good luck!
This is simply not achievable and no amount of cryptographic pixie
dust is ever going to save you.

v2.23.0 | Report a Bug | By Email