[Ntp] Re: Grease in Roughtime
Marcus Dansarie <marcus@dansarie.se> Thu, 26 September 2024 12:24 UTC
Return-Path: <marcus@dansarie.se>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D66B5C14F70A for <ntp@ietfa.amsl.com>; Thu, 26 Sep 2024 05:24:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=dansarie.se
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id F9ZqqiyLagyT for <ntp@ietfa.amsl.com>; Thu, 26 Sep 2024 05:24:08 -0700 (PDT)
Received: from mail.dansarie.se (mail.dansarie.se [185.82.126.120]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6230AC151069 for <ntp@ietf.org>; Thu, 26 Sep 2024 05:24:07 -0700 (PDT)
Received: by mail.dansarie.se (Postfix, from userid 117) id 48FC97E0AF; Thu, 26 Sep 2024 12:24:05 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=dansarie.se; s=mail; t=1727353443; bh=uPIoYemCDObKmkLeuGhbvy2foI7ee/N/kZxqj7r6SwA=; h=Date:Subject:To:References:From:In-Reply-To:From; b=qR8S1nJ3IR/Fy9tmIiQaKT3o0wgK4csrYBmW1ROIWkhhrR+2PdxcKU6/9kQOw8H83 +dpo6wFflJiGMGr7/tANt2s9lGgyC89fBah3CkDCdlnFNAjrF7T7Ntef5XVTyeOf2P gn7pWDP7UR6M5N2hvpKzEhL44nOAVez0PPKTofT6aJ5JMQjpy/2z4LsP0twHblKuU7 hKJSCYeXRNot0Hb47eidjVHnJwxyEs0lfn8jxc7P8QA6QNoVJN75wv0htqmonajWf/ jaf9qeXLnZa/iyJCfzjoKc8oToCGEVjOTPKaWpU5SsbPwGWCQqgApOyZ8h5nKuUmUu oLQpj3R9GYyUQ==
Message-ID: <cfac14ce-cf4c-4b69-89da-6f92f97e29c2@dansarie.se>
Date: Thu, 26 Sep 2024 14:24:03 +0200
MIME-Version: 1.0
To: ntp@ietf.org
References: <CAPz_-SUY9egByeG+cSHXFqbc6XzRmkpCF7Y4QS2ud0LmOjccAA@mail.gmail.com> <55dedf3b-04f7-4efe-bb8a-6aee9554e011@dansarie.se> <OF4F731B07.08990379-ONC1258BA2.0029CC70-C1258BA2.002AB2EE@ptb.de> <f8989896-0846-415c-8837-abcc0c1acfbd@dansarie.se> <OFB3552CA3.457D21B2-ONC1258BA3.0027F22C-C1258BA3.002A01DD@ptb.de>
Content-Language: en-US, sv-SE
From: Marcus Dansarie <marcus@dansarie.se>
In-Reply-To: <OFB3552CA3.457D21B2-ONC1258BA3.0027F22C-C1258BA3.002A01DD@ptb.de>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Message-ID-Hash: LLQNH3FNAQG6LI7HG5J26XSIF5YJB3S3
X-Message-ID-Hash: LLQNH3FNAQG6LI7HG5J26XSIF5YJB3S3
X-MailFrom: marcus@dansarie.se
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-ntp.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [Ntp] Re: Grease in Roughtime
List-Id: Network Time Protocol <ntp.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/Z6MaEfSMeiazqWlyVhrJOcnWyQM>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Owner: <mailto:ntp-owner@ietf.org>
List-Post: <mailto:ntp@ietf.org>
List-Subscribe: <mailto:ntp-join@ietf.org>
List-Unsubscribe: <mailto:ntp-leave@ietf.org>
Hallo Kristof, On 2024-09-25 09:38, kristof.teichel=40ptb.de@dmarc.ietf.org wrote: > Hey Marcus, > > sorry, I just don't see how it works. > I see the stated purpose: forcing client implementations to actually > verify signatures rather than cheaping out and skipping that operation. > I also see the stated measure: instructing server implementations to > occasionally give bad time with faulty signatures. > But I cannot see how the latter achieves the former. The idea is that if a faulty (i.e. non-signature verifying) implementation provides the wrong time with some non-negligible probability, people will discover this and investigate. The fault may be either due to the client not performing signature verification at all, or due to a bug in the client. Both are of course important to detect. > (As a side note, the stated purpose already seems weird to me: why would > clients deliberately cheap out and forgo a major benefit of the whole > protocol? And why would anyone else want or need to enforce that they > don't? It literally only hurts the client itself) People are lazy. Consider that the lazy programmer may be a library author. Someone importing and using that library in their application may not be aware of the fact that it does not check signatures. Grease may make them aware of this fact. > From where I'm standing, the client implementations are still 100% free > to cheap out. > Sure, they will have false time if they do, but... they won't > necessarily even know that, and thus not have any reason to change > anything. > If it is meant as a deterrent (and TBH I think anything that I won't > even notice if it happens is a terrible deterrent) - wouldn't the > possibility of there being an attacker already achieve that, too? The problem with attacks is that they are rare events. Greasing signatures will make them common enough to be something that must be considered by all implementations. And yes, there are ways to circumvent this greasing. For example, a client could make two requests with some interval between and check the responses for consistency. If the responses are inconsistent, the client could assume that at least one was greased. This approach does however seem more complex to implement that just verifying the signatures. > It seems like we're instructing implementations to randomly behave badly > for no (to me) tangible benefit. > Would appreciate any help in understanding this. I am not the most knowledgeable here when it comes to grease. Could someone else explain this better for us? Kind regards, Marcus
- [Ntp] Grease in Roughtime David Venhoek
- [Ntp] Re: Grease in Roughtime Marcus Dansarie
- [Ntp] Re: Grease in Roughtime kristof.teichel
- [Ntp] Re: Grease in Roughtime Marcus Dansarie
- [Ntp] Re: Grease in Roughtime kristof.teichel
- [Ntp] Re: Grease in Roughtime David Venhoek
- [Ntp] Re: Grease in Roughtime Marcus Dansarie
- [Ntp] Re: Grease in Roughtime Marcus Dansarie