IETF Logo Mail Archive

Re: [Ntp] Splitting the Roughtime draft?

Marcus Dansarie <marcus@dansarie.se> Sun, 31 January 2021 08:39 UTC

Return-Path: <marcus.dansarie.nilsson@gmail.com>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E22233A0957 for <ntp@ietfa.amsl.com>; Sun, 31 Jan 2021 00:39:34 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.501
X-Spam-Level:
X-Spam-Status: No, score=-1.501 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FORGED_FROMDOMAIN=0.249, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.249, NICE_REPLY_A=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4dXTidvwIYiQ for <ntp@ietfa.amsl.com>; Sun, 31 Jan 2021 00:39:32 -0800 (PST)
Received: from mail-lj1-x22c.google.com (mail-lj1-x22c.google.com [IPv6:2a00:1450:4864:20::22c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 432F63A094E for <ntp@ietf.org>; Sun, 31 Jan 2021 00:39:32 -0800 (PST)
Received: by mail-lj1-x22c.google.com with SMTP id f2so15642851ljp.11 for <ntp@ietf.org>; Sun, 31 Jan 2021 00:39:32 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=sender:to:references:from:subject:message-id:date:user-agent :mime-version:in-reply-to; bh=zv2MJiX2yyEQQc51RBoRuZb8KKU0S81CtZWJkopp/T4=; b=tsF4OjS3uS+JFWmnd4yAhotHDltlvipKe5s/EMTtXNtz1ijxjf3f6I0F0Vc1mmaYjn N9OCEH/4Fq5/2Yj8qb6ZXsH+UbjfBlR6/uqclK3OSQhqU7T0qiaEeBqDK8C35vs3RrDn 9iqPlhesfCoM0cmSnvjBMkmF7DZN2t2JsCXsALjSmXQLH2TZamisFRJZHo29zZxkALvE YTeNxoFX07/5d7l+TOsj45SJrHee2zvXUIerzRH4j/QIeBhB9V8kvD3ED1VCL54G47c4 H4OxRQbhcg0poCnGswCNYPxQuAm5lt+9zMtNQvOWW+/NgSQGX7UK7ha5gnjSKQuYdOWO PnCg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:sender:to:references:from:subject:message-id :date:user-agent:mime-version:in-reply-to; bh=zv2MJiX2yyEQQc51RBoRuZb8KKU0S81CtZWJkopp/T4=; b=OO7hY/q9x+WhDl1QFenBxO6yUTaELo7GpXF9DSCDfY4n/dfyAQ1s3p15+zgggRR3pg F2DlFsf9VugMwbUkZzHBQcyvyTtYkUgXNWlGKlgxohB6oEVgzFAGzrV/EnHIMDz17vX6 EtyDJ/VnX1M4BEPYQXudySamadcm8Kz2O6den0+xB6BfEewJ+4162Ql9fsysRmZOeumy fWHnqRURoLkCvtnXDCAbSaWfiHHty2H0qNg3KjgDj2iOHgvbCvoChFwYpo3ZH7raKI9J PkVbu4CJ6ZkRnLsRDi12J9UYZDs8nGA9BtS4ekIfH4rkJcgZUlHN2XB/fjGXPR8HOIHa fOMA==
X-Gm-Message-State: AOAM531cBkzHjZUYUlTADizv8AQ2UFYK1kYhfuYQIWpFzOUHSvOxH8De mY/1tvCjoKeCkYB7zWvq7IJ5s9wYiL0=
X-Google-Smtp-Source: ABdhPJzUPiaNIGVWa//P5YIaDAXKPsze5tcOITutMHh/dgtYpwmWDlm25Ss5L1ZQEZnXU75HVcFjRg==
X-Received: by 2002:a2e:90c4:: with SMTP id o4mr7226194ljg.268.1612082369982; Sun, 31 Jan 2021 00:39:29 -0800 (PST)
Received: from ?IPv6:2001:470:dfe6:0:efe:d1ce:c226:96c3? ([2001:470:dfe6:0:efe:d1ce:c226:96c3]) by smtp.gmail.com with ESMTPSA id u24sm2614365lfu.81.2021.01.31.00.39.29 for <ntp@ietf.org> (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Sun, 31 Jan 2021 00:39:29 -0800 (PST)
Sender: Marcus Dansarie <marcus.dansarie.nilsson@gmail.com>
To: ntp@ietf.org
References: <CACsn0cm0N8otXKhCTRofjx4eHS8Po8-75C20YHMbr2ZAaU3w-A@mail.gmail.com>
From: Marcus Dansarie <marcus@dansarie.se>
Message-ID: <55fc783d-ac46-00bb-ecdf-8e7414e2e6e4@dansarie.se>
Date: Sun, 31 Jan 2021 09:39:25 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.6.1
MIME-Version: 1.0
In-Reply-To: <CACsn0cm0N8otXKhCTRofjx4eHS8Po8-75C20YHMbr2ZAaU3w-A@mail.gmail.com>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="a5YKc4MrMfdvmVvlhsfxikIL7B3AtnMPA"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/ngtcA-nqEgU6vKYeC5YsRz5qwJo>
Subject: Re: [Ntp] Splitting the Roughtime draft?
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 31 Jan 2021 08:39:35 -0000

On 2021-01-31 01:51, Watson Ladd wrote:
> Dear WG,
> 
> Right now we have interop on the wire format of version -03. What we
> don't have is a serialization format for reports of malfeasance.
> 
> In order to move forward I'm considering reducing the draft to just
> the wire format for the protocol leaving the malfeasance serialization
> to a subsequent draft. This would let us start a WGLC on the parts
> that aren't going to change, and potentially accelerate deployment of
> servers and clients.

I think it's important to at least define a basic serialization schema
for both malfeasance reports and lists of servers. If we don't, we risk
ending up with several incompatible formats for data exchange in the
Roughtime ecosystem.

A de facto standard for server lists already exists (ecosystem.json) and
only needs to be documented in the draft. A simple malfeasance report
format in the same spirit as the server list format could be a JSON
object with an ordered list of objects, each containing a nonce and a
server response, both in base64 format. Verifying the report would be as
simple as (1) verifying that the list is a valid list of chained
Roughtime responses and (2) applying the same validity tests as clients.

Tal Mizrahi and others raised a number of issues with how the security
model is described in the draft. [1] I don't think they where ever
addressed. We should probably be proactive in fixing this in the draft,
as it is something that the IESG will have opinions about. In
particular, I think we need to be very clear about the fact that all
trust in Roughtime is rooted in the long-term keys and that they are
expected to be valid for a very long time indeed.

After fixing these two two points, I would be happy to support a WGLC.

> I'd appreciate feedback on this plan. In particular I think some of
> the question of timing algorithm will be explicitly out of scope:
> Roughtime is intended for secure time checks and ensuring *rough*
> synchronization.

Fully agree.

Kind regards,
Marcus



[1] https://mailarchive.ietf.org/arch/msg/ntp/wsm0sjAagWfr8FBxje_5mZL07A4/
https://mailarchive.ietf.org/arch/msg/ntp/JLNNAkI-eD_Nmoi8P5rr-BYRVUU/
https://mailarchive.ietf.org/arch/msg/ntp/uADaxiNDQT8BQi5pyVwd_rcFw8Y/
https://mailarchive.ietf.org/arch/msg/ntp/4OyvMuxHQnOcwmvFBa1099us3P4/

v2.23.0 | Report a Bug | By Email