[Ntp] Re: [NTP] Roughtime: Inadequate Explanation of Protocol's Unique Feature? (Question to all WG members)

kristof.teichel@ptb.de Tue, 03 September 2024 08:37 UTC

Return-Path: <kristof.teichel@ptb.de>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 69199C151070 for <ntp@ietfa.amsl.com>; Tue, 3 Sep 2024 01:37:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.106
X-Spam-Level:
X-Spam-Status: No, score=-7.106 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=ptb.de
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id idBOipnAlaU8 for <ntp@ietfa.amsl.com>; Tue, 3 Sep 2024 01:37:05 -0700 (PDT)
Received: from mx1.bs.ptb.de (mx1.bs.ptb.de [192.53.103.120]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D4E5CC14CF12 for <ntp@ietf.org>; Tue, 3 Sep 2024 01:37:03 -0700 (PDT)
Received: from s23397.bs.ptb.de ([172.21.101.132]) by mx1.bs.ptb.de with ESMTP id 4838aw1r009144-4838aw1t009144 (version=TLSv1.3 cipher=TLS_AES_256_GCM_SHA384 bits=256 verify=OK); Tue, 3 Sep 2024 10:36:58 +0200
In-Reply-To: <CACsn0c=K0dHULBVvXB+Hhd+S6TB8PDsEB68DiLR+t8gpfzP_GQ@mail.gmail.com>
References: <CACsn0c=EE1XfdqPSXUBBRNxCx-q-kujRvfYt8y_HpWKKhNkY=Q@mail.gmail.com> <OF2CFF35FC.75A6A341-ONC1258B78.0038739B-C1258B78.00390D28@ptb.de> <CACsn0c=K0dHULBVvXB+Hhd+S6TB8PDsEB68DiLR+t8gpfzP_GQ@mail.gmail.com>
To: NTP WG <ntp@ietf.org>
MIME-Version: 1.0
From: kristof.teichel@ptb.de
Message-ID: <OF8A6D8203.9F157312-ONC1258B8D.002DDF63-C1258B8D.002F5442@ptb.de>
Date: Tue, 03 Sep 2024 10:36:57 +0200
Content-Type: multipart/alternative; boundary="=_alternative 002F5442C1258B8D_="
X-FEAS-Client-IP: 172.21.101.132
X-FE-Policy-ID: 5:5:5:SYSTEM
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; d=ptb.de; s=s1-ptbde; c=relaxed/relaxed; h=references:to:cc:mime-version:subject:from:message-id:date:content-type; bh=S6UyxyhG9LfgopHIbYTPA4tpBdoeAb/jIXvpVe4OnL8=; b=K9IYMmkRBiBeH+ritfuxC3WVMUGmuBX/Kaw0LWw6VYgERaJbY4LN18ynlytYAJ7LRP6dwRSHarox 4CcfhwTY6CGcURKY1r+AmxRMREL+vSbP5TPTewjzzMUp20IQnFNuff5ZfyuAj/RMXZ8FNzUKwDOL sqqLKsdqykaTFlb954s6/x1+7e1aEGHfj6h3bFx9hwdgMPmE2+fY0CN3wp8qB0a4vVh87yEkZoVy HcUicHasC4dYA74GE5khgQRVX/65awi/DtLJtXCK755DPTZX/Dd9PHaw7wKuMpxdxTyvsitzYqk9 tjYsT1ULX3maxJzJI2ZNCRCHmEEvncgGw9ZB1g==
Message-ID-Hash: A5VRIVX4PBLGYD5WZ5LNZWPLNWM6LBIV
X-Message-ID-Hash: A5VRIVX4PBLGYD5WZ5LNZWPLNWM6LBIV
X-MailFrom: kristof.teichel@ptb.de
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-ntp.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: Watson Ladd <watsonbladd@gmail.com>, Marcus Dansarie <marcus@dansarie.se>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [Ntp] Re: [NTP] Roughtime: Inadequate Explanation of Protocol's Unique Feature? (Question to all WG members)
List-Id: Network Time Protocol <ntp.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/REIJhmHuFLNibhK3QwqqU85R4DU>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Owner: <mailto:ntp-owner@ietf.org>
List-Post: <mailto:ntp@ietf.org>
List-Subscribe: <mailto:ntp-join@ietf.org>
List-Unsubscribe: <mailto:ntp-leave@ietf.org>

@watson/ben: thanks for your replies
Can the information about the ecosystem and reporting system be found 
anywhere else? 
Not necessarily about a server list or who runs them, but about how the 
logic works, how reporting should roughly be done, etc.?
(If so, could you link to that?)
Or are you saying it's okay for this to not be documented anywhere?

Let's remember that this is Roughtime's supposed core technical feature.

@ntp-wg: I was really looking for input on this from people who didn't 
have an active role in developing Roughtime. 
I ask you all again to provide a short opinion, please.


Besten Gruß / Kind regards,
Kristof Teichel 
(and Martin Langer)

__________________________________________

Dr.-Ing. Kurt Kristof Teichel
Physikalisch-Technische Bundesanstalt (PTB) 
Arbeitsgruppe 4.42 "Zeitübertragung"
Bundesallee 100
38116 Braunschweig (Germany)
Tel.:        +49 (531) 592-4471
E-Mail:   kristof.teichel@ptb.de
__________________________________________

"Watson Ladd" <watsonbladd@gmail.com> schrieb am 14.08.2024 10:24:18:

> Von: "Watson Ladd" <watsonbladd@gmail.com>
> An: kristof.teichel@ptb.de
> Kopie: "NTP WG" <ntp@ietf.org>, "Marcus Dansarie" <marcus@dansarie.se>
> Datum: 14.08.2024 10:24
> Betreff: [Ntp] Re: [NTP] Roughtime: Inadequate Explanation of 
> Protocol's Unique Feature? (Question to all WG members)
> 
> On Tue, Aug 13, 2024 at 11:23?AM <kristof.teichel@ptb.de> wrote:
> >
> > Hey Watson, editors, WG members,
> >
> > To focus on one issue for now, here is a major one, that we wanted
> to take the opportunity to ask the WG's opinion on.
> > Because we feel that this issue alone prevents last call readiness.
> > The draft still states (Section 10 Security Considerations and 
> Section 9 Roughtime Clients, respectively) that:
> >
> >         "Maintaining a list of trusted servers and adjudicating 
> violations of the rules by servers is not discussed in this document
> and is essential for security."
> >         "The venues for sharing [malfeasance] reports and what to 
> do about them are outside the scope of this document."
> >
> > We feel that a specification of a security protocol cannot just 
> omit discussion of its main security feature like this.
> >
> > @Watson/Marcus: do we understand correctly that you do intend to 
> leave it like this?
> > @WG members: what are your views on this?
> 
> You're correct we intend to leave it like this, but I'd like to
> explain the reasons why. First note that the X509 related RFCs and ISO
> standards do not cover the CAB Forum rules which govern the
> operational requirements for CAs, which are again different from the
> rules browsers put on CAs. The only standard a browser and site and CA
> actually "have" to adhere to is the X509 RFCs, and then the matter of
> trust can be entirely bypassed by using a private PKI. The IETF
> doesn't determine what CAs should do, and doesn't enforce violations,
> which happens on an outside the IETF channel with varying degrees of
> complexity. I think this is fine.
> 
> When we initially brought roughtime we struggled significantly to find
> people willing to put input on the ecosystem related parts. We need
> operational experience before standardizing the mechanisms. In
> currently envisioned deployments per-vendor solutions are acceptable
> and roughtime fills a niche that others do not, even without a global
> malfeasance reporting mechanism. If successful one will evolve and
> could be standardized should it be useful, as happened with CT. I
> think if we tried to address this more explicitly we'd run into the
> issue of making plans for problems we've never encountered, for people
> we don't know. I'm not saying it's out of scope forever, rather this
> document isn't the right place.
> 
> Sincerely,
> Watson Ladd
> 
> >
> >
> >
> > Besten Gruß / Kind regards,
> > Kristof Teichel
> >
> > __________________________________________
> >
> > Dr.-Ing. Kurt Kristof Teichel
> > Physikalisch-Technische Bundesanstalt (PTB)
> > Arbeitsgruppe 4.42 "Zeitübertragung"
> > Bundesallee 100
> > 38116 Braunschweig (Germany)
> > Tel.:        +49 (531) 592-4471
> > E-Mail:   kristof.teichel@ptb.de
> > __________________________________________
> >
> >
> >
> > Von:        "Watson Ladd" <watsonbladd@gmail.com>
> > An:        "NTP WG" <ntp@ietf.org>
> > Datum:        02.08.2024 21:02
> > Betreff:        [Ntp] Latest Roughtime draft
> > ________________________________
> >
> >
> >
> > We have fixed a typo in the representation of a tag thanks to Chris
> > Patton's eagle eyes.
> >
> > As I mentioned at IETF 120 we'd like to get to last call ahead of next
> > IETF. The repo is at https://github.com/wbl/roughtime-draft and I'll
> > be trying to use issues to track work to do so we don't lose it.
> >
> > Please send in comments so we can get them dealt with and be ready for
> > a last call soon. Pull requests, issues, or emails to the list all
> > welcome: I'll take care of raising one in the other if necessary.
> >
> > Sincerely,
> > Watson Ladd
> >
> > --
> > Astra mortemque praestare gradatim
> >
> > _______________________________________________
> > ntp mailing list -- ntp@ietf.org
> > To unsubscribe send an email to ntp-leave@ietf.org
> >
> >
> 
> 
> --
> Astra mortemque praestare gradatim
> 
> _______________________________________________
> ntp mailing list -- ntp@ietf.org
> To unsubscribe send an email to ntp-leave@ietf.org