[Ntp] Re: [NTP] Roughtime: Inadequate Explanation of Protocol's Unique Feature? (Question to all WG members)

Watson Ladd <watsonbladd@gmail.com> Wed, 14 August 2024 08:24 UTC

Return-Path: <watsonbladd@gmail.com>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D954DC151072 for <ntp@ietfa.amsl.com>; Wed, 14 Aug 2024 01:24:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.108
X-Spam-Level:
X-Spam-Status: No, score=-2.108 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sT_ztuqikDxE for <ntp@ietfa.amsl.com>; Wed, 14 Aug 2024 01:24:33 -0700 (PDT)
Received: from mail-wm1-x32d.google.com (mail-wm1-x32d.google.com [IPv6:2a00:1450:4864:20::32d]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3EDD3C14F726 for <ntp@ietf.org>; Wed, 14 Aug 2024 01:24:33 -0700 (PDT)
Received: by mail-wm1-x32d.google.com with SMTP id 5b1f17b1804b1-429c4a4c6a8so34147485e9.0 for <ntp@ietf.org>; Wed, 14 Aug 2024 01:24:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1723623871; x=1724228671; darn=ietf.org; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=taNNZQ7axb53yfAA6Glu2EvrK+P8GZrOevaGpMC7O8w=; b=SHiyQkKINCrg1zmXd7F9oz9leynmHrhLwAEaQg2bbcRl4RFvH/OpYzVVwG4hl7+xPW nwbOVwoDk4trQuntgmpk8iSX9yU8rdv/frWwD5VHNlqkyeSfk3GmIjpq5OaBXjOBL+IM DTALggZzLRyGs9WzA+F6Vwtf0SJRJ1Pu+5lXNvlIVnuqWy8++rbWAIdFtnmkXYEdxdmY 2lO2ZB79cMpJ/kE+3IJD9kpBKCWrknAhoPWTuo1/bjTYtHON+WwBIfNDslSOb938ATFk f9tpixnMg/p32us58SlBizF8VNTwnDEkTjCP5MsbbeX57j57ynjXf06mKxhEpNLHzLzv drgg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1723623871; x=1724228671; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=taNNZQ7axb53yfAA6Glu2EvrK+P8GZrOevaGpMC7O8w=; b=JuZND8znBOsMBfeDjbD8Yf/p+pzmwgCFKBi9vSlNdRQrurcw8BlDGtRQiF4Be7hXZz x/S9C54tZPdOWT8eSY05jpQRpioyOjzFr179fQ+xaLoW5kqo17IpmilXNAmsJE//tMxO 7oaLwQYXmbT7Yp7ADOKpTZlPW2p1PcVMgqFUtmibUlPdAPmFTIIezeYvYEVcjtWUTJHn IX0lNb8shrNT4ch0YMMEvawwgi8l3HyzzhPY8EaLarTvkte8F1KD6+xJwzi0Ct3ubc77 XO8S67kmfhhcseswVUG0Pp3sXPhLFABQupLpoRucaIgLQFgh+rI0V91kzFd/0cdhgPCM zq/Q==
X-Gm-Message-State: AOJu0Yxv+neH7OAdabn1q1CXGq6qldLAbeH0P/qMXKkdSHvS2+NqblfI sm8RaPrpR9tzU7wxUoR4Gse2NY+4eIUbIIw926N2qLEsuR7QwiiuV2fXqRFsMF1xaVUPGNWc+2Y AC9PpOO5arb8lJFX4WRM1Cz+kAkQ=
X-Google-Smtp-Source: AGHT+IH2NEzy1QGY4mZzQ9j1Og7U8PkGlqQaDfPQimPTCbYknYuSVJENAUav2R/somh+pE1oG/ZkoAC1ZZbKYxeJ+5Y=
X-Received: by 2002:a05:600c:5812:b0:427:ffa4:32d0 with SMTP id 5b1f17b1804b1-429dd26496dmr12472775e9.28.1723623870893; Wed, 14 Aug 2024 01:24:30 -0700 (PDT)
MIME-Version: 1.0
References: <CACsn0c=EE1XfdqPSXUBBRNxCx-q-kujRvfYt8y_HpWKKhNkY=Q@mail.gmail.com> <OF2CFF35FC.75A6A341-ONC1258B78.0038739B-C1258B78.00390D28@ptb.de>
In-Reply-To: <OF2CFF35FC.75A6A341-ONC1258B78.0038739B-C1258B78.00390D28@ptb.de>
From: Watson Ladd <watsonbladd@gmail.com>
Date: Wed, 14 Aug 2024 09:24:18 +0100
Message-ID: <CACsn0c=K0dHULBVvXB+Hhd+S6TB8PDsEB68DiLR+t8gpfzP_GQ@mail.gmail.com>
To: kristof.teichel@ptb.de
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Message-ID-Hash: EFCNVBFG4LLOSTMTDFMV32N4N3GHIFVS
X-Message-ID-Hash: EFCNVBFG4LLOSTMTDFMV32N4N3GHIFVS
X-MailFrom: watsonbladd@gmail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-ntp.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: NTP WG <ntp@ietf.org>, Marcus Dansarie <marcus@dansarie.se>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [Ntp] Re: [NTP] Roughtime: Inadequate Explanation of Protocol's Unique Feature? (Question to all WG members)
List-Id: Network Time Protocol <ntp.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/quDqxyXKAyziFQ35_MKtWxgilG0>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Owner: <mailto:ntp-owner@ietf.org>
List-Post: <mailto:ntp@ietf.org>
List-Subscribe: <mailto:ntp-join@ietf.org>
List-Unsubscribe: <mailto:ntp-leave@ietf.org>

On Tue, Aug 13, 2024 at 11:23 AM <kristof.teichel@ptb.de> wrote:
>
> Hey Watson, editors, WG members,
>
> To focus on one issue for now, here is a major one, that we wanted to take the opportunity to ask the WG's opinion on.
> Because we feel that this issue alone prevents last call readiness.
> The draft still states (Section 10 Security Considerations and Section 9 Roughtime Clients, respectively) that:
>
>         "Maintaining a list of trusted servers and adjudicating violations of the rules by servers is not discussed in this document and is essential for security."
>         "The venues for sharing [malfeasance] reports and what to do about them are outside the scope of this document."
>
> We feel that a specification of a security protocol cannot just omit discussion of its main security feature like this.
>
> @Watson/Marcus: do we understand correctly that you do intend to leave it like this?
> @WG members: what are your views on this?

You're correct we intend to leave it like this, but I'd like to
explain the reasons why. First note that the X509 related RFCs and ISO
standards do not cover the CAB Forum rules which govern the
operational requirements for CAs, which are again different from the
rules browsers put on CAs. The only standard a browser and site and CA
actually "have" to adhere to is the X509 RFCs, and then the matter of
trust can be entirely bypassed by using a private PKI. The IETF
doesn't determine what CAs should do, and doesn't enforce violations,
which happens on an outside the IETF channel with varying degrees of
complexity. I think this is fine.

When we initially brought roughtime we struggled significantly to find
people willing to put input on the ecosystem related parts. We need
operational experience before standardizing the mechanisms. In
currently envisioned deployments per-vendor solutions are acceptable
and roughtime fills a niche that others do not, even without a global
malfeasance reporting mechanism. If successful one will evolve and
could be standardized should it be useful, as happened with CT. I
think if we tried to address this more explicitly we'd run into the
issue of making plans for problems we've never encountered, for people
we don't know. I'm not saying it's out of scope forever, rather this
document isn't the right place.

Sincerely,
Watson Ladd

>
>
>
> Besten Gruß / Kind regards,
> Kristof Teichel
>
> __________________________________________
>
> Dr.-Ing. Kurt Kristof Teichel
> Physikalisch-Technische Bundesanstalt (PTB)
> Arbeitsgruppe 4.42 "Zeitübertragung"
> Bundesallee 100
> 38116 Braunschweig (Germany)
> Tel.:        +49 (531) 592-4471
> E-Mail:   kristof.teichel@ptb.de
> __________________________________________
>
>
>
> Von:        "Watson Ladd" <watsonbladd@gmail.com>
> An:        "NTP WG" <ntp@ietf.org>
> Datum:        02.08.2024 21:02
> Betreff:        [Ntp] Latest Roughtime draft
> ________________________________
>
>
>
> We have fixed a typo in the representation of a tag thanks to Chris
> Patton's eagle eyes.
>
> As I mentioned at IETF 120 we'd like to get to last call ahead of next
> IETF. The repo is at https://github.com/wbl/roughtime-draft and I'll
> be trying to use issues to track work to do so we don't lose it.
>
> Please send in comments so we can get them dealt with and be ready for
> a last call soon. Pull requests, issues, or emails to the list all
> welcome: I'll take care of raising one in the other if necessary.
>
> Sincerely,
> Watson Ladd
>
> --
> Astra mortemque praestare gradatim
>
> _______________________________________________
> ntp mailing list -- ntp@ietf.org
> To unsubscribe send an email to ntp-leave@ietf.org
>
>


--
Astra mortemque praestare gradatim