[Ntp] Antw: [EXT] Re: I-D Action: draft-ietf-ntp-chronos-01.txt
Ulrich Windl <Ulrich.Windl@rz.uni-regensburg.de> Thu, 03 September 2020 09:31 UTC
Return-Path: <Ulrich.Windl@rz.uni-regensburg.de>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 74E0D3A0D44 for <ntp@ietfa.amsl.com>; Thu, 3 Sep 2020 02:31:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Gt0hJgfeufNv for <ntp@ietfa.amsl.com>; Thu, 3 Sep 2020 02:31:45 -0700 (PDT)
Received: from mx3.uni-regensburg.de (mx3.uni-regensburg.de [IPv6:2001:638:a05:137:165:0:4:4e79]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E14A53A0CE1 for <ntp@ietf.org>; Thu, 3 Sep 2020 02:31:44 -0700 (PDT)
Received: from mx3.uni-regensburg.de (localhost [127.0.0.1]) by localhost (Postfix) with SMTP id 6B9036000050 for <ntp@ietf.org>; Thu, 3 Sep 2020 11:31:41 +0200 (CEST)
Received: from gwsmtp.uni-regensburg.de (gwsmtp1.uni-regensburg.de [132.199.5.51]) by mx3.uni-regensburg.de (Postfix) with ESMTP id A33EF600004F for <ntp@ietf.org>; Thu, 3 Sep 2020 11:31:40 +0200 (CEST)
Received: from uni-regensburg-smtp1-MTA by gwsmtp.uni-regensburg.de with Novell_GroupWise; Thu, 03 Sep 2020 11:31:40 +0200
Message-Id: <5F50B7F9020000A10003B14F@gwsmtp.uni-regensburg.de>
X-Mailer: Novell GroupWise Internet Agent 18.2.1
Date: Thu, 03 Sep 2020 11:31:37 +0200
From: Ulrich Windl <Ulrich.Windl@rz.uni-regensburg.de>
To: neta.r.schiff@gmail.com, "ntp@ietf.org" <ntp@ietf.org>
References: <159911920070.27246.13325557639128017174@ietfa.amsl.com> <CAM-HxCMfF-+Ug9qzEfwfYvDys0CEE3=i7JQk=BWYvhC8-UN7aA@mail.gmail.com>
In-Reply-To: <CAM-HxCMfF-+Ug9qzEfwfYvDys0CEE3=i7JQk=BWYvhC8-UN7aA@mail.gmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/G-2mMrp-5KJwhstCqmxP_Qdo6BU>
Subject: [Ntp] Antw: [EXT] Re: I-D Action: draft-ietf-ntp-chronos-01.txt
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 03 Sep 2020 09:31:47 -0000
Hi! A few random comments (on the HTML version): Table 1: The "Meaning" column should not be centered. The descriptions for "Err" and "K" are very short (compared to the rest). On "3": Instead of referring just to "Sections 10 and 11" the title of the sections could at least be mentioned. I guess nobody known by heart what these sections are about without openeing the RFC first... On "3.1" Maybe explain what the outcome is, compared to that happening in NTP usually. More trustworthy error estimate? What can affect the result in a negative way? On "3.2": "the third lowest-value samples": It reads like one sample (the thrid-lowest) is removed; did you mean you remove the lowest third of the samples? You use "2w" without explaining how w is determined. All together section 3 is very abstact, and maybe could use some example numbers for illustration. Section 4: Waht's the value of "K"? On "S": How is a sample oth tens servers stored in a single variable? Likewise "T". It seems S and T are arrays. Maybe add a data type for variables, even for pseudo-code. In summary, the draft reads very much like an "idea" (like the typical American patent request), but not at all like a specification. Regards, Ulrich Windl >>> Neta R S <neta.r.schiff@gmail.com> schrieb am 03.09.2020 um 10:11 in Nachricht <CAM-HxCMfF-+Ug9qzEfwfYvDys0CEE3=i7JQk=BWYvhC8-UN7aA@mail.gmail.com>: > Dear all, > > We updated Chronos' draft in order to avoid expiration. > This version was presented in the last working group meeting about a > month ago, as it is similar to version 00. > > The current approach considers Chronos as a watchdog, which > periodically monitors the NTP clock and only when a suspected attack > is detected does the Chronos algorithm take over, replacing the NTP > selection and combining algorithms. > > We believe this approach resolves the concerns that were raised about > the potentially low precision of previous versions of Chronos. > > We would highly appreciate feedback about the current version of Chronos, > and we invite members to join us and assist with the implementation. > > Best regards, > On behalf of the Chronos authors. > > On Thu, Sep 3, 2020 at 10:46 AM <internet-drafts@ietf.org> wrote: > >> >> A New Internet-Draft is available from the on-line Internet-Drafts >> directories. >> This draft is a work item of the Network Time Protocol WG of the IETF. >> >> Title : A Secure Selection and Filtering Mechanism for >> the Network Time Protocol Version 4 >> Authors : Neta Rozen-Schiff >> Danny Dolev >> Tal Mizrahi >> Michael Schapira >> Filename : draft-ietf-ntp-chronos-01.txt >> Pages : 11 >> Date : 2020-09-03 >> >> Abstract: >> The Network Time Protocol version 4 (NTPv4), as defined in RFC 5905, >> is the mechanism used by NTP clients to synchronize with NTP servers >> across the Internet. This document specifies an extension to the >> NTPv4 client, named Chronos, which is used as a "watchdog" alongside >> NTPv4, and provides improved security against time shifting attacks. >> Chronos involves changes to the NTP client's system process only and >> is backwards compatible with NTPv4 servers. >> >> >> The IETF datatracker status page for this draft is: >> https://datatracker.ietf.org/doc/draft-ietf-ntp-chronos/ >> >> There are also htmlized versions available at: >> https://tools.ietf.org/html/draft-ietf-ntp-chronos-01 >> https://datatracker.ietf.org/doc/html/draft-ietf-ntp-chronos-01 >> >> A diff from the previous version is available at: >> https://www.ietf.org/rfcdiff?url2=draft-ietf-ntp-chronos-01 >> >> >> Please note that it may take a couple of minutes from the time of >> submission >> until the htmlized version and diff are available at tools.ietf.org. >> >> Internet-Drafts are also available by anonymous FTP at: >> ftp://ftp.ietf.org/internet-drafts/ >> >> >> _______________________________________________ >> ntp mailing list >> ntp@ietf.org >> https://www.ietf.org/mailman/listinfo/ntp >>
- [Ntp] I-D Action: draft-ietf-ntp-chronos-01.txt internet-drafts
- Re: [Ntp] I-D Action: draft-ietf-ntp-chronos-01.t… Neta R S
- [Ntp] Antw: [EXT] Re: I-D Action: draft-ietf-ntp-… Ulrich Windl
- Re: [Ntp] [EXT] Re: I-D Action: draft-ietf-ntp-ch… Neta R S