IETF Logo Mail Archive

Re: [Ntp] NTP Security (was NTPv5: big picture)

Magnus Danielson <magnus@rubidium.se> Tue, 19 January 2021 16:50 UTC

Return-Path: <magnus@rubidium.se>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E191E3A1628 for <ntp@ietfa.amsl.com>; Tue, 19 Jan 2021 08:50:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.361
X-Spam-Level:
X-Spam-Status: No, score=-2.361 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, NICE_REPLY_A=-0.262, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=rubidium.se
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cw9Vjqw74vyu for <ntp@ietfa.amsl.com>; Tue, 19 Jan 2021 08:50:25 -0800 (PST)
Received: from ste-pvt-msa2.bahnhof.se (ste-pvt-msa2.bahnhof.se [213.80.101.71]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 61F6A3A1625 for <ntp@ietf.org>; Tue, 19 Jan 2021 08:50:25 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by ste-pvt-msa2.bahnhof.se (Postfix) with ESMTP id 9B16A3F67A for <ntp@ietf.org>; Tue, 19 Jan 2021 17:50:23 +0100 (CET)
Authentication-Results: ste-pvt-msa2.bahnhof.se; dkim=pass (2048-bit key; unprotected) header.d=rubidium.se header.i=@rubidium.se header.b=lsdG0BZH; dkim-atps=neutral
X-Virus-Scanned: Debian amavisd-new at bahnhof.se
Authentication-Results: ste-ftg-msa2.bahnhof.se (amavisd-new); dkim=pass (2048-bit key) header.d=rubidium.se
Received: from ste-pvt-msa2.bahnhof.se ([127.0.0.1]) by localhost (ste-ftg-msa2.bahnhof.se [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 87iV27wGOzga for <ntp@ietf.org>; Tue, 19 Jan 2021 17:50:22 +0100 (CET)
Received: by ste-pvt-msa2.bahnhof.se (Postfix) with ESMTPA id 3F7643F3E2 for <ntp@ietf.org>; Tue, 19 Jan 2021 17:50:22 +0100 (CET)
Received: from machine.local (unknown [192.168.0.15]) by magda-gw (Postfix) with ESMTPSA id ABBFB9A0523; Tue, 19 Jan 2021 17:50:21 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=rubidium.se; s=rubidium; t=1611075021; bh=IG4I7tjAKbhqVoQ31e5vHfBA/NgRP0wcjNMFimrgaDc=; h=Cc:Subject:To:References:From:Date:In-Reply-To:From; b=lsdG0BZHN+guJKsk75vOLaZ6pZCMQ4vVvfbnXYYypP3OX95qdW8J/I1Mr8ZMzkPlV gE4qaRi7fjl6la1gofk1WQWifYRrRr7dAaaCqNN7EywEdGOoOKN0BofF2J5uL6NUOV p3OqIWGhIVSN0kH2KUhiTBzScJ+NuCONiwiJlke/rLsJOb1bYAKvSl7IPl90S3BNdC pQKr6cUVvggzqpQW2M7YTGkbejiGMdjgT9Qt2jLDlZlHIFCQw2/xUefFFF4VaE5GbP CvUf2mPFMmqagpYwvoSTbQjx7zSpt2VGCWS0Qqm+/l3H65h8zzKU3oNxBLOsjvBD7z 3hGqAyx/cg7DQ==
Cc: magnus@rubidium.se
To: ntp@ietf.org
References: <20210118113806.33BBE40605C@ip-64-139-1-69.sjc.megapath.net> <c6fda979-0b3e-99fc-2dc5-25b7cde4c42b@rubidium.se> <20210118162517.GA2410317@localhost> <acdd42d0-9b58-4b26-0798-55a42bc0b6de@rubidium.se> <YAX6gJiREb2RE6Gs@roeckx.be> <c5378682-e03f-9e46-24d5-025eb4a57c05@rubidium.se> <20210119094217.GB2430794@localhost> <68c0d807-2290-3c44-d760-35306af20434@rubidium.se> <20210119130408.GD2430794@localhost> <ed1de364-ab7c-86f4-2390-8d96ca708321@thalesgroup.com> <20210119135115.GF2430794@localhost>
From: Magnus Danielson <magnus@rubidium.se>
Message-ID: <ec32ae0b-e0bc-f337-4934-1518ff491879@rubidium.se>
Date: Tue, 19 Jan 2021 17:50:20 +0100
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.13; rv:78.0) Gecko/20100101 Thunderbird/78.6.1
MIME-Version: 1.0
In-Reply-To: <20210119135115.GF2430794@localhost>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/POnFJMwkX0epxTyc5tamXSXgcRk>
Subject: Re: [Ntp] NTP Security (was NTPv5: big picture)
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 19 Jan 2021 16:50:28 -0000

On 2021-01-19 14:51, Miroslav Lichvar wrote:
> On Tue, Jan 19, 2021 at 01:15:57PM +0000, FUSTE Emmanuel wrote:
>> Le 19/01/2021 à 14:04, Miroslav Lichvar a écrit :
>>> In this process you have only verified consistency of the time and
>>> other data you have received. It was valid some time ago, but it may
>>> not be valid now. If the attacker captured all that data, it can be
>>> reused later in a MITM attack.
>> How ???
>> - If it replay my DNS data fine, it will do the work of my DNS servers 
>> for me as he could not resign.
>> - For the NTS part you are saying that TLS and NTS are subject to MITM 
>> attacks ?
> Yes, the attacker has the old private key.
What? How did the attacker get the private keys? How did the attacker
fool that system? So, what references for this attack do you have?
>
> The assumption is that both your DNSSEC and NTS was compromised at
> some point. You found out and rebuilt your infrastructure from
> scratch, but the attacker can still perform a MITM attack on your
> device if it doesn't know the current date in order to validate the
> certificate/records.
>
Outside of our scope. Way outside. We assume we can trust whatever these
mechanisms provide and our trust becomes tied to them. If you have ways
to attack that, this is not really the place to document those.

Cheers,
Magnus

v2.23.0 | Report a Bug | By Email