Re: [Ntp] Roughtime and Delay Attacks
<Greg.Dowd@microchip.com> Thu, 04 April 2019 19:16 UTC
Return-Path: <Greg.Dowd@microchip.com>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9CFCB120128 for <ntp@ietfa.amsl.com>; Thu, 4 Apr 2019 12:16:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microchiptechnology.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id d4RAEzGORbcm for <ntp@ietfa.amsl.com>; Thu, 4 Apr 2019 12:16:46 -0700 (PDT)
Received: from esa2.microchip.iphmx.com (esa2.microchip.iphmx.com [68.232.149.84]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7A678120126 for <ntp@ietf.org>; Thu, 4 Apr 2019 12:16:46 -0700 (PDT)
X-IronPort-AV: E=Sophos;i="5.60,309,1549954800"; d="scan'208";a="29493050"
Received: from smtpout.microchip.com (HELO email.microchip.com) ([198.175.253.82]) by esa2.microchip.iphmx.com with ESMTP/TLS/DHE-RSA-AES256-SHA; 04 Apr 2019 12:16:45 -0700
Received: from NAM01-BY2-obe.outbound.protection.outlook.com (10.10.215.89) by email.microchip.com (10.10.76.106) with Microsoft SMTP Server (TLS) id 14.3.352.0; Thu, 4 Apr 2019 12:16:45 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microchiptechnology.onmicrosoft.com; s=selector1-microchiptechnology-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=/IYswut7e2eBzQzv7peHi7ZQ8UBRR3WMPSJoBf5MJWQ=; b=PrifxwUiz5KW70B+XPAIXfGFpKqgEJKHtMt8JKHnTimUUKK9TngIlp9FX1Av3jwRVnTlhmVLp8LgbG4tyQ1mb4Dpq7djDY7WovQ3bDbSOzJQJ/IM3CBYnlHrXcKWFEuiOtpoxpqs8/7dNH0lITHc22nqniGK8ViU3KgmaqBCTLU=
Received: from BYAPR11MB3239.namprd11.prod.outlook.com (20.177.184.76) by BYAPR11MB3016.namprd11.prod.outlook.com (20.177.225.16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1750.20; Thu, 4 Apr 2019 19:16:40 +0000
Received: from BYAPR11MB3239.namprd11.prod.outlook.com ([fe80::44c6:8072:389:6e05]) by BYAPR11MB3239.namprd11.prod.outlook.com ([fe80::44c6:8072:389:6e05%2]) with mapi id 15.20.1750.017; Thu, 4 Apr 2019 19:16:40 +0000
From: Greg.Dowd@microchip.com
To: watson=40cloudflare.com@dmarc.ietf.org, stewart.bryant@gmail.com
CC: ntp@ietf.org
Thread-Topic: [Ntp] Roughtime and Delay Attacks
Thread-Index: AQHU6e5Pi21j1k9WYUqVsuKlKfmSq6YqE7UAgAGiBYCAAITEAIAAJy+w
Date: Thu, 04 Apr 2019 19:16:40 +0000
Message-ID: <BYAPR11MB32395EE9ABA1A9F283F1A3FAFC500@BYAPR11MB3239.namprd11.prod.outlook.com>
References: <20190403072255.EA16E40605C@ip-64-139-1-69.sjc.megapath.net> <OF1EB096AA.8F10FC47-ONC12583D1.002B338D-C12583D1.002C46D5@ptb.de> <47b2705b-e29b-320b-c832-3d6c4e7feeb9@gmail.com> <CAN2QdAFgamnmehCodorszjM-=kt7QCd0ThFcACUu5CjpqP-stg@mail.gmail.com>
In-Reply-To: <CAN2QdAFgamnmehCodorszjM-=kt7QCd0ThFcACUu5CjpqP-stg@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Greg.Dowd@microchip.com;
x-originating-ip: [12.177.68.254]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: ace2e5a9-dbc3-4ec0-5442-08d6b932113e
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(5600139)(711020)(4605104)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(2017052603328)(7193020); SRVR:BYAPR11MB3016;
x-ms-traffictypediagnostic: BYAPR11MB3016:
x-ms-exchange-purlcount: 2
x-microsoft-antispam-prvs: <BYAPR11MB301691A0B44BEEC117C81038FC500@BYAPR11MB3016.namprd11.prod.outlook.com>
x-forefront-prvs: 0997523C40
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(136003)(376002)(346002)(366004)(39860400002)(396003)(13464003)(189003)(199004)(66066001)(71200400001)(966005)(6306002)(4326008)(26005)(52536014)(66574012)(99286004)(6436002)(97736004)(53546011)(11346002)(14444005)(6506007)(305945005)(86362001)(478600001)(7736002)(446003)(74316002)(71190400001)(93886005)(186003)(68736007)(7696005)(76176011)(486006)(256004)(102836004)(476003)(106356001)(105586002)(6246003)(8676002)(72206003)(81166006)(25786009)(15974865002)(2906002)(33656002)(8936002)(9686003)(81156014)(53936002)(110136005)(55016002)(3846002)(316002)(14454004)(6116002)(5660300002)(229853002); DIR:OUT; SFP:1101; SCL:1; SRVR:BYAPR11MB3016; H:BYAPR11MB3239.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: microchip.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: C4NMxcwhfeQ0CjLcPSQF76aUoyWvU2mO7kLKmBg6XiSBpXOZmLvKuA+Ue631xE8w4LWolCYp88v6Xs6nE9dwqpqb+JlFbc7wRQfNoE1e7ZJSHQfvMqtrWNt1t2oRkRJq3SMnd63XWjBRoT63l7afWLz8CngVYx7BdqQ+SXP08E+w9o8xaZWIPMWTWi9bDa3Gn+f7QIPwmw92v73BV/2KdqvJIfECek4qInmvOXTCGLqOfDDVAuOWgsLlkkCKRUYbqMzB80AWeQxHOo0hR03CZKY7UT2g4t07icpD4IV2LTXwXrVEttKC2fIKxACEjkaqRzRVisgPDRhJKznVK8TSQRvRCfNRVad+PNp3tIVvAxMEtEZ8CGk4T/nx1npZNYGCBaQYfPtQ1LYqlXglFuuc87GRCk4rJevi2sUVV3f6NEs=
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: ace2e5a9-dbc3-4ec0-5442-08d6b932113e
X-MS-Exchange-CrossTenant-originalarrivaltime: 04 Apr 2019 19:16:40.7474 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 3f4057f3-b418-4d4e-ba84-d55b4e897d88
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR11MB3016
X-OriginatorOrg: microchip.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/KTVSzwa12urNYKBCj5zGJIf_Mmg>
Subject: Re: [Ntp] Roughtime and Delay Attacks
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Apr 2019 19:16:49 -0000
Actually, T ~ Ts - RTT. Asymmetry could be up to 99+% in malicious or broken environment. Greg Dowd Principal Engineering Technologist, FTD Microsemi 3870 N. First St. | San Jose | CA 95134 | USA Office: 408.964.7643 Email: greg.dowd@microchip.com Company Website: www.microsemi.com -----Original Message----- From: ntp [mailto:ntp-bounces@ietf.org] On Behalf Of Watson Ladd Sent: Thursday, April 4, 2019 9:55 AM To: Stewart Bryant <stewart.bryant@gmail.com> Cc: ntp@ietf.org Subject: Re: [Ntp] Roughtime and Delay Attacks External E-Mail On Thu, Apr 4, 2019 at 2:00 AM Stewart Bryant <stewart.bryant@gmail.com> wrote: > > Sorry I am struggling to understand how the protection works. > > If C (who has just woken) sends a request to S, then all C knows is > that T ~ Ts - 1/2 RTT. C can know that it was S that replied, but C > cannot possibly know if S was lying or if an on-path router delayed the packet. Correct. > > C can keep asking S, and within the limits of the server delay and the > variation in the routing path and queuing delays RTT stay sort of > constant, so C can be suspicious if it changes after it has been > running or if Ts - 1/2 RTT changes by more than the known drift in its > local clock. However routing paths do change and there are traffic > congestion delays in networks. > > C can ask S', S'' etc and build up a picture of various servers time, > but it has to be careful that the paths are disjoint and that S, S' > and S'' have truly independent and authoritative master clocks. > > On the other hand, if the routers are compromised, then there are much > worse things that can do, so we normally assume that they are truthful. > > So how does this design do better than "T ~ Ts - 1/2 RTT assuming S > did not lie and also was not simply wrong"? It doesn't. But this is fine. RTTs can be seconds, not hours. > > - Stewart > > > > _______________________________________________ > ntp mailing list > ntp@ietf.org > https://www.ietf.org/mailman/listinfo/ntp _______________________________________________ ntp mailing list ntp@ietf.org https://www.ietf.org/mailman/listinfo/ntp
- [Ntp] Roughtime and Delay Attacks Tal Mizrahi
- Re: [Ntp] Roughtime and Delay Attacks kristof.teichel
- Re: [Ntp] Roughtime and Delay Attacks Tal Mizrahi
- Re: [Ntp] Roughtime and Delay Attacks Tony Finch
- Re: [Ntp] Roughtime and Delay Attacks kristof.teichel
- Re: [Ntp] Roughtime and Delay Attacks Hal Murray
- Re: [Ntp] Roughtime and Delay Attacks kristof.teichel
- Re: [Ntp] Roughtime and Delay Attacks Stewart Bryant
- Re: [Ntp] Roughtime and Delay Attacks Watson Ladd
- Re: [Ntp] Roughtime and Delay Attacks Greg.Dowd
- Re: [Ntp] Roughtime and Delay Attacks Joachim Fabini
- Re: [Ntp] Roughtime and Delay Attacks Stewart Bryant