IETF Logo Mail Archive

[Ntp] Antwort: Re: Symmetric mode

kristof.teichel@ptb.de Tue, 20 September 2022 15:27 UTC

Return-Path: <kristof.teichel@ptb.de>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B421DC14F73B for <ntp@ietfa.amsl.com>; Tue, 20 Sep 2022 08:27:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.929
X-Spam-Level:
X-Spam-Status: No, score=-3.929 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, HTML_MIME_NO_HTML_TAG=0.377, MIME_HTML_ONLY=0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=ptb.de
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id auxzjhLE_9zH for <ntp@ietfa.amsl.com>; Tue, 20 Sep 2022 08:27:04 -0700 (PDT)
Received: from mx1.bs.ptb.de (mx1.bs.ptb.de [192.53.103.120]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0FA12C14F741 for <ntp@ietf.org>; Tue, 20 Sep 2022 08:27:02 -0700 (PDT)
Received: from smtp-hub.bs.ptb.de (smtpint01.bs.ptb.de [141.25.87.32]) by mx1.bs.ptb.de with ESMTP id 28KFQw7E023622-28KFQw7G023622 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK) for <mayer@pdmconsulting.net>; Tue, 20 Sep 2022 17:26:58 +0200
MIME-Version: 1.0
Sensitivity:
In-Reply-To: <880b8ec4-e112-e2e2-f48c-c940064bc749@pdmconsulting.net>
References: <880b8ec4-e112-e2e2-f48c-c940064bc749@pdmconsulting.net>, <mayer@pdmconsulting.net> <796c33e6-02dc-0665-c8a2-a143f9100bdd@pdmconsulting.net> <20220919024614.4AB8328C1E2@107-137-68-211.lightspeed.sntcca.sbcglobal.net> <YygwAeTMeSHXXk6t@localhost>
From: kristof.teichel@ptb.de
To: ntp@ietf.org
Cc: Danny Mayer <mayer@pdmconsulting.net>
X-MIMETrack: Serialize by HTTP Server on MAILWEB01/PTB at 20.09.2022 17:26:54, Serialize complete at 20.09.2022 17:26:54, Serialize by Router on MAILGW01/PTB at 09/20/2022 05:26:58 PM
X-KeepSent: 42F0D0F6:E94FA935-C12588C3:005225C3; type=4; name=$KeepSent
Message-ID: <OF42F0D0F6.E94FA935-ONC12588C3.005225C3-C12588C3.0054DC8B@ptb.de>
X-Priority: 3 (Normal)
Importance: Normal
Date: Tue, 20 Sep 2022 17:26:54 +0200
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-FE-Last-Public-Client-IP: 141.25.87.32
X-FE-Policy-ID: 5:5:5:SYSTEM
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; d=ptb.de; s=s1-ptbde; c=relaxed/relaxed; h=mime-version:references:subject:from:to:cc:message-id:date:content-type; bh=Z65sK6tQKuzZ6XbUjDNC44NuStRmKV0N7+zh+UxNVsg=; b=kRu+278tNIAK8bfHrdM3xMXhTnlVoRJ7F2mfhYrFe8RJqPSxcztkL+NgeusZ5wHU2GK0//StHz/W O308b1fwcMcgVPpB1XVTgRTe553gUyPLvQn7z7zvaI20J13PJFfa5W7Lb/BklN8mUPOyXl5rO6/8 c1XE2YzoBwWWYLUwrh4D697whqMb82ZMziE2UuTaY8WLB3eHiJ3KXwjWBjFEJ46Q52dOR9X+x8FZ J9pMdtGEEiKTvg7R8lTXU1h+H3psweZhm3KldBd91HFfkJw5sVJVaCXaIWYEbG9kxERDEGxirYpq is8mjTVYCYWBf9moKYmIkWeiyHgu/O8IdJRhCw==
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/izDyCU4zJsjjuKNhs19Fo8-w5B4>
Subject: [Ntp] Antwort: Re: Symmetric mode
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Network Time Protocol <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 20 Sep 2022 15:27:08 -0000

Some responses in-line.

Besten Gruß / Kind regards,
Kristof Teichel

__________________________________________

Dr.-Ing. Kurt Kristof Teichel
Physikalisch-Technische Bundesanstalt (PTB)
Arbeitsgruppe 4.42 "Zeitübertragung"
Bundesallee 100
38116 Braunschweig (Germany)
Tel.: +49 531 592-4471
E-Mail: kristof.teichel@ptb.de
__________________________________________


-----"ntp" <ntp-bounces@ietf.org> schrieb: -----


>An: "Miroslav Lichvar" <mlichvar@redhat.com>, "Hal Murray"
><halmurray@sonic.net>
>Von: "Danny Mayer"
>Gesendet von: "ntp"
>Datum: 20.09.2022 15:41
>Kopie: "ntp@ietf.org" <ntp@ietf.org>
>Betreff: Re: [Ntp] Symmetric mode
>
>On 9/19/22 5:01 AM, Miroslav Lichvar wrote:
>> On Sun, Sep 18, 2022 at 07:46:14PM -0700, Hal Murray wrote:
>>> Is symmetric mode interesting enough that we should try to fix
>that? If so,
>>> would you please say a few words about why it is interesting?
>> It's not very useful. I think the most interesting thing about it
>is
>> that sources using the symmetric mode are marked differently in
>tools
>> like ntpq, so it's more obvious to the admin that synchronization
>can
>> work in both directions.
>It's extremely useful, particularly when you end up in orphan mode or
>just need to make sure that all systems in the local network are
>synchronized. 

1) You say particularly. Is it useful in any other known use-cases?
2) Also, how often do we think the former case happens? A feature might be incredibly useful in the case of heavy acid rain, but that alone is not reason to implement it. Also, see 3)
3) I'm increasingly approaching NTP from a viewpoint of metrological traceability (this is important to PTB as an NMI, I intend to contribute text suggestions for documents in the future). I believe there is a strong case to be made for a simple hierarchical approach (i.e. get time from one, pre-specified server, and secure it with NTS or other authenticity-protection) if traceability is what one is thinking about. Under this perspective, the latter use-case honestly seems problematic (traceability mostly goes out the window once you don't have a "source" and instead are keeping several equal-level partners synchronous, IMO).

>You really need to take the time to understand it.

I'll reiterate my point from a few weeks ago that I would prefer if we keep our tone constructive in WG exchanges.
This seems like a pretty broad dismissal of a bunch of statements and a hard assumption of ignorance.
Can you give us hints how you find Miroslav's statements wrong/misleading (and which ones) so that the rest of us can be part of the conversation? 

>> At the protocol level it's just trouble. It's difficult to
>implement
>> if you want to handle all the corner cases and difficult to secure.
>> The main problem is that there is no response for each request, so
>the
>> peers have to select to which request they respond, i.e. guess
>which
>> one was genuine. Authentication with a symmetric key doesn't
>prevent
>> a replay attack.
>See above.

I really don't see how this can be "see above".
Even if we accept that symmetric mode useful, that doesn't mean it's not diffcult.
Or do you mean this is another case of "need to understand"? (In which case: see above).

We certainly agreed to give up on the attempt to secure symmetric mode with NTS, which supports "difficult to secure".

>> There are ephemeral associations, where only one peer is configured
>> with the address of the other peer. This enables attackers to
>replay an
>> authenticated message to create an unlimited number of associations
>on
>> the peer. In the ntp.org implementation there is a possibility to
>> limit keys to IP addresses to prevent that, but in that case it's
>> easier to just specify the address directly as a peer in the
>> configuration file and you don't have to worry about associations
>> created on different ports of the address.
>>
>Not really. Again you need to understand how it works.

Again, could you qualify which of these statements you disagree with and/or how so?

>Danny
>
>_______________________________________________
>ntp mailing list
>ntp@ietf.org
>https://www.ietf.org/mailman/listinfo/ntp" target="_blank" rel="noopener noreferrer nofollow">https://www.ietf.org/mailman/listinfo/ntp
>

v2.23.0 | Report a Bug | By Email