[Ntp] Re: Secdir telechat review of draft-ietf-ntp-interleaved-modes-07

Miroslav Lichvar <mlichvar@redhat.com> Thu, 08 August 2024 12:50 UTC

Return-Path: <mlichvar@redhat.com>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6735CC14F6E9 for <ntp@ietfa.amsl.com>; Thu, 8 Aug 2024 05:50:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.253
X-Spam-Level:
X-Spam-Status: No, score=-2.253 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.148, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=redhat.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mNL-Nl5ecw40 for <ntp@ietfa.amsl.com>; Thu, 8 Aug 2024 05:50:02 -0700 (PDT)
Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.133.124]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CA33BC14F5FA for <ntp@ietf.org>; Thu, 8 Aug 2024 05:50:02 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com; s=mimecast20190719; t=1723121401; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=JHNpic56PDVHdBNcn4goq0XxhMLWghw0IoCjiuXIxh4=; b=A8ZsfWeQk7Am11l1S63YaJw3iLjvTvbhnPJVCWiX7pcGOINjwm7mYia/j5btC+AifNGsi3 Yw/Be5VlsJkwzRsUJdP30lroZgZAy9d5TCRf+G45WnOSy4OW3tfVJK9LiXZHNhB1/4e3j+ 8SC+cIYplhANJAEYwnHLJpfo3Xp5rxc=
Received: from mx-prod-mc-04.mail-002.prod.us-west-2.aws.redhat.com (ec2-54-186-198-63.us-west-2.compute.amazonaws.com [54.186.198.63]) by relay.mimecast.com with ESMTP with STARTTLS (version=TLSv1.3, cipher=TLS_AES_256_GCM_SHA384) id us-mta-371-z5DW0OkEPqagW4ZBMbZK_w-1; Thu, 08 Aug 2024 08:48:15 -0400
X-MC-Unique: z5DW0OkEPqagW4ZBMbZK_w-1
Received: from mx-prod-int-02.mail-002.prod.us-west-2.aws.redhat.com (mx-prod-int-02.mail-002.prod.us-west-2.aws.redhat.com [10.30.177.15]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by mx-prod-mc-04.mail-002.prod.us-west-2.aws.redhat.com (Postfix) with ESMTPS id A90501945CAA; Thu, 8 Aug 2024 12:48:13 +0000 (UTC)
Received: from localhost (unknown [10.43.135.229]) by mx-prod-int-02.mail-002.prod.us-west-2.aws.redhat.com (Postfix) with ESMTPS id DD6FB1959164; Thu, 8 Aug 2024 12:48:11 +0000 (UTC)
Date: Thu, 08 Aug 2024 14:48:09 +0200
From: Miroslav Lichvar <mlichvar@redhat.com>
To: Catherine Meadows <catherine.meadows@nrl.navy.mil>
Message-ID: <ZrS-iTGPdsKPM5YE@localhost>
References: <172253866599.2383132.10845117436057873309@dt-datatracker-659f84ff76-9wqgv>
MIME-Version: 1.0
In-Reply-To: <172253866599.2383132.10845117436057873309@dt-datatracker-659f84ff76-9wqgv>
X-Scanned-By: MIMEDefang 3.0 on 10.30.177.15
X-Mimecast-Spam-Score: 0
X-Mimecast-Originator: redhat.com
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
Message-ID-Hash: K3AZ475FMQ2AKJVTUEOMIC7ET7SZH5D4
X-Message-ID-Hash: K3AZ475FMQ2AKJVTUEOMIC7ET7SZH5D4
X-MailFrom: mlichvar@redhat.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-ntp.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: secdir@ietf.org, draft-ietf-ntp-interleaved-modes.all@ietf.org, last-call@ietf.org, ntp@ietf.org
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [Ntp] Re: Secdir telechat review of draft-ietf-ntp-interleaved-modes-07
List-Id: Network Time Protocol <ntp.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/bd-gBsNCbCcV5vQIHlN5Rw_H9pM>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Owner: <mailto:ntp-owner@ietf.org>
List-Post: <mailto:ntp@ietf.org>
List-Subscribe: <mailto:ntp-join@ietf.org>
List-Unsubscribe: <mailto:ntp-leave@ietf.org>

On Thu, Aug 01, 2024 at 11:57:46AM -0700, Catherine Meadows via Datatracker wrote:
> I have reviewed this document as part of the security directorate's
> ongoing effort to review all IETF documents being processed by the
> IESG. These comments were written primarily for the benefit of the
> security area directors. Document editors and WG chairs should treat
> these comments just like any other last call comments.

Thank you for the review.

> An incorrect client implementation of the basic mode (RFC 5905) can
> work reliably with servers that implement only the basic mode, but
> the protocol can fail intermittently with servers that implement the
> interleaved mode.
> 
> First of all, it’s not clear what “can work reliably” means here.   Does “work
> reliably”  mean that the client and server get accurate time measurements? 

It means it gets (from its point of view) a valid response for each
request it sends to the server, assuming no network drops etc, and all
measurements are made from the expected set of server and client
timestamps. It doesn't necessarily have to be more accurate than a
corrupted measurement using an unexpected set of timestamps.

> Does the “can” means it can work reliably sometimes but not all of the time? 

No, some clients not following RFC5905 could work reliably all the
time with a server supporting only the basic mode.

> Then the paragraph goes on to say “but the protocol can fail intermittently
> with servers that implement the interleaved mode.”  I assume we are not talking
> about the protocol failing with client with an incorrect basic mode and a
> server that is implementing interleaved mode.

That is exactly the case.

> Do we mean the client is
> implementing interleaved mode incorrectly, and the server is implementing it
> correct?,   That seems to be the case given the examples that follow.  But it
> should be made clear in the first paragraph.

The clients don't support interleaved mode, only basic mode - incorrectly.

> What follows is a laundry list of incorrect client implementations and the
> problems they cause.  But I don’t have an idea of whether this is intended to
> be complete or not.

It should be the only issue that a client working reliably only with a
basic-only-mode server can have (origin timestamp set incorrectly)
with two examples showing the minimum and maximum impact.

> I also don’t have much of a feel as to how interleaved
> mode compares with basic mode in terms of reliability, which I think is the
> point of this section.

There should be no difference in reliability if correctly implemented.

> In order to make this section useful the document should at very least 1) make
> it clear what the tolerance of basic mode is to incorrect protocol
> implementations, 2) give an idea of how much less tolerant interleaved mode is
> of incorrect implementations than basic mode, and 3) give the reader some
> indication of how this information should be used.   With respect to 3) my
> impression is that the takeaway should be that interleaved mode should be used
> with great care, preferably in closed environments in which the quality of the
> implementations can be controlled, and only in cases in which the accuracy of
> the time measures is paramount. Is that the case?

That wasn't the intention. The reason for adding this section was to
address concerns raised in the previous round of IESG reviews, which
blocked the document. It tries to explain that interleaved mode is
safe for the Internet, that it doesn't break existing clients even if
they don't implement the basic mode correctly. Then it also explains
possible issues on the server side. Maybe that should be clearly
separated.

I'll try to improve the text to make this point more clear.

I think the resilience has also been proved in the real world by now.
Interleaved mode is widely supported on public servers. Possibly a
majority of the NTP traffic is now handled by interleave-enabled
servers, and there were no reports of any breakage.

-- 
Miroslav Lichvar