IETF Logo Mail Archive

[ntpwg] WG: Re: WGLC on Network Time Security documents (3 documents)

kristof.teichel@ptb.de Wed, 09 March 2016 13:02 UTC

Return-Path: <ntpwg-bounces+ntp-archives-ahfae6za=lists.ietf.org@lists.ntp.org>
X-Original-To: ietfarch-ntp-archives-ahFae6za@ietfa.amsl.com
Delivered-To: ietfarch-ntp-archives-ahFae6za@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 53AA512D5AA for <ietfarch-ntp-archives-ahFae6za@ietfa.amsl.com>; Wed, 9 Mar 2016 05:02:35 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.899
X-Spam-Level:
X-Spam-Status: No, score=-6.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([127.0.0.1]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 19a0oC2mIBup for <ietfarch-ntp-archives-ahFae6za@ietfa.amsl.com>; Wed, 9 Mar 2016 05:02:33 -0800 (PST)
Received: from lists.ntp.org (lists.ntp.org [IPv6:2001:4f8:fff7:1::7]) by ietfa.amsl.com (Postfix) with ESMTP id DBBBE12D577 for <ntp-archives-ahFae6za@lists.ietf.org>; Wed, 9 Mar 2016 05:02:33 -0800 (PST)
Received: from lists.ntp.org (lists.ntp.org [149.20.68.7]) by lists.ntp.org (Postfix) with ESMTP id D4F2E86DB86 for <ntp-archives-ahFae6za@lists.ietf.org>; Wed, 9 Mar 2016 13:02:33 +0000 (UTC)
X-Original-To: ntpwg@lists.ntp.org
Delivered-To: ntpwg@lists.ntp.org
Received: from mail1.ntp.org (mail1.ntp.org [IPv6:2001:4f8:fff7:1::5]) by lists.ntp.org (Postfix) with ESMTP id F407E86D4A6 for <ntpwg@lists.ntp.org>; Wed, 9 Mar 2016 12:23:20 +0000 (UTC)
Received: from mx1.bs.ptb.de ([192.53.103.120]) by mail1.ntp.org with esmtps (TLSv1:AES256-SHA:256) (Exim 4.77 (FreeBSD)) (envelope-from <kristof.teichel@ptb.de>) id 1add8w-000IXc-MB for ntpwg@lists.ntp.org; Wed, 09 Mar 2016 12:23:20 +0000
Received: from smtp-hub.bs.ptb.de (smtpint01.bs.ptb.de [141.25.87.32]) by mx1.bs.ptb.de with ESMTP id u29CN9WO010478-u29CN9WQ010478 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA bits=256 verify=FAIL) for <ntpwg@lists.ntp.org>; Wed, 9 Mar 2016 13:23:09 +0100
Received: from rose.bs.ptb.de (rose.bs.ptb.de [141.25.85.201]) by smtp-hub.bs.ptb.de (Postfix) with ESMTP id 4177E36234 for <ntpwg@lists.ntp.org>; Wed, 9 Mar 2016 13:23:09 +0100 (CET)
To: ntpwg@lists.ntp.org
MIME-Version: 1.0
Message-ID: <OF33D674E2.24C1F1CE-ONC1257F71.00440418-C1257F71.00440914@ptb.de>
From: kristof.teichel@ptb.de
Date: Wed, 09 Mar 2016 13:23:07 +0100
X-SA-Exim-Connect-IP: 192.53.103.120
X-SA-Exim-Rcpt-To: ntpwg@lists.ntp.org
X-SA-Exim-Mail-From: kristof.teichel@ptb.de
X-SA-Exim-Version: 4.2
X-SA-Exim-Scanned: Yes (on mail1.ntp.org)
Subject: [ntpwg] WG: Re: WGLC on Network Time Security documents (3 documents)
X-BeenThere: ntpwg@lists.ntp.org
X-Mailman-Version: 2.1.20
Precedence: list
List-Id: IETF Working Group for Network Time Protocol <ntpwg.lists.ntp.org>
List-Unsubscribe: <http://lists.ntp.org/options/ntpwg>, <mailto:ntpwg-request@lists.ntp.org?subject=unsubscribe>
List-Archive: <http://lists.ntp.org/pipermail/ntpwg/>
List-Post: <mailto:ntpwg@lists.ntp.org>
List-Help: <mailto:ntpwg-request@lists.ntp.org?subject=help>
List-Subscribe: <http://lists.ntp.org/listinfo/ntpwg>, <mailto:ntpwg-request@lists.ntp.org?subject=subscribe>
Content-Type: multipart/mixed; boundary="===============1879149335381880293=="
Errors-To: ntpwg-bounces+ntp-archives-ahfae6za=lists.ietf.org@lists.ntp.org
Sender: ntpwg <ntpwg-bounces+ntp-archives-ahfae6za=lists.ietf.org@lists.ntp.org>

Hi Miroslav,

> On Mon, Mar 07, 2016 at 05:06:10PM +0100, dieter.sibold@ptb.de wrote:
> > Hi all,
> > 
> > according to our understanding of the symmetric mode we added the 
> > following language to the draft in order to describe how NTS protects 
the 
> > peer associations.
> 
> Thanks for looking into that. I've few comments. 
> 
> > First: We added section 4.2 "Symmetric (Peer) Modes"
> > 
> >       <section title="Symmetric (Peer) Modes">
> >         <t>For the symmetric modes (active/active, active/passive), 
NTS 
> > works
> >         as it does for the client/server mode, except that both 
> > participants
> >         have to save state information. The participant who first 
sends a 
> > peer
> >         message takes the role of the client, a participant who first 
> > receives
> >         a peer message takes the role of the server, except that it 
keeps
> 
> This is an interesting approach.
> 
> For ephemeral associations I think the server/client direction of the
> NTS association is clear. But for persistent associations, what if
> both peers send packets before receiving reply from the other peer?

This depends heavily on the behavioral policy of an NTS participant who 
has sent request for which are as of yet unanswered.
There is not yet any specification text targeting this.

We are thinking about adding such text, in particular we feel that there 
are at least two obvious approaches: 
1.) "Any sent request starts a process waiting for a response. Any 
incoming message from the intended communication partner which does not 
represent a valid response ends this process and communication must be 
restarted. The process also ends when a valid response is received, or 
when a timeout value is reached."
2.) "Any sent request starts a process waiting for a response. This 
process is only ended either when a valid response is received, or when a 
timeout value is reached." (Implicitly saying that any incoming message is 
treated independently: if it is a request, it is processed as such and 
perhaps answered, if it is a response, it either represents a valid 
response to a pending request, or it is ignored and dropped.)
Currently we feel that the second approach is better for most cases.
In the particular case of peer mode with both peers sending requests 
before receiving replies, it might lead to two associations where only one 
would have been necessary, but this would be a rather benign error.


> What should happen when one of them is restarted, is the NTS
> server/client direction allowed to switch?

Yes, it is. This goes back to what I discussed above.


> 
> >         additional state to strengthen the security guarantees it
> >         receives.</t>
> >       </section>
> 
> An issue I pointed out earlier and that I'd like to see the NTS
> implementation in NTP to address is DoS attack on symmetric
> associations. The NTS association should be able to form and continue
> to work even when an attacker is sending spoofed packets to the peers.

We agree.


> 
> To allow that, I think the peer in the server NTS role shouldn't
> keep or update any state [until...]

We agree. We believe the specification to be consistent with this. If at 
some point it is not, please point this out to us.


> [...] and should respond to all packets from the
> other peer immediately as if they were client mode packets until it
> can save the KIV of the other peer and is ready for time_* messages.

This is tricky. We agree that this would be desirable. However, we think 
that the question of when a response is sent is not regulated by NTS so 
much as it is by the underlying NTP implementation. Since we wish to avoid 
any instances where our specification makes changes to the behavior of 
said underlying implementation, we will probably not add any text about 
this.

> That is also the point when ephemeral associations should be created.

I do not fully understand what your meaning is here. But as far as I can 
grasp it, the answer goes back to the point directly above: this would 
need to be regulated at an NTP level (I believe you would like to prevent 
NTP from creating an ephemeral association before NTS has performed 
authentication/authorization and determined that it will now keep state?).


Best regards,
Kristof

_______________________________________________
ntpwg mailing list
ntpwg@lists.ntp.org
http://lists.ntp.org/listinfo/ntpwg

v2.23.0 | Report a Bug | By Email