IETF Logo Mail Archive

Re: [Ntp] Circular dependencies

Warner Losh <imp@bsdimp.com> Sun, 17 January 2021 04:12 UTC

Return-Path: <wlosh@bsdimp.com>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2D34B3A1C4F for <ntp@ietfa.amsl.com>; Sat, 16 Jan 2021 20:12:06 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=bsdimp-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id athrZM96DQwe for <ntp@ietfa.amsl.com>; Sat, 16 Jan 2021 20:12:04 -0800 (PST)
Received: from mail-qt1-x831.google.com (mail-qt1-x831.google.com [IPv6:2607:f8b0:4864:20::831]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7BFBA3A1C4D for <ntp@ietf.org>; Sat, 16 Jan 2021 20:12:04 -0800 (PST)
Received: by mail-qt1-x831.google.com with SMTP id e15so9078431qte.9 for <ntp@ietf.org>; Sat, 16 Jan 2021 20:12:04 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=bsdimp-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=DgQsuyHSN57qpCLPkpRanYLGyrGoXtxBZsEtJjJyjb4=; b=voVMzihbeTZ4JgyXqW4Qrm4c9e3+8eaYCYE7UBFD3zcbeKhO9yQp7E9GtmBKyfgXja ENrv7mS4PlzoS0cfy4JI7V9qjt/ReIYafX/fGFnsHCxMIOCcAITXrXku3aZcc37pGm9j 9K4gEQQ7XbMOGesdIKbK3KmF7FkiXo2iqvuvbVzjaCINVX2dj39iLUI4v1qh5GZ05EET Z6BqdvuL3bZkoTL7siwvGAUb9qbLOmQghrT3HtS/jL4tY2B+Y7728BvTpEckeDRx0/N4 4qbdhMphNi7ARbNvfT0Vid0/fkBYp0zvpnMZqbdEi9pri4nz1z/6Iq0EbR5n+rLFcSn9 d3Og==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=DgQsuyHSN57qpCLPkpRanYLGyrGoXtxBZsEtJjJyjb4=; b=sMj5Z/d2/ELci8+QvI3HiBMFmaDsQnM4AfkzP9RLnXoHO7+Y+fCT9GBzz1HPPMLMYU lsmghbjp5/UjTOBAZvsdOSnR/czIjW/MqIvcZQoRGj8JDGqlUtTUPg4odsJLdV2/UOsq z3LJglkz8j5jk24HZym1a4F6wC1Zxr7qYHCIvfAsdptK4NnLbb8PCjs24dJ9odASgQO+ agWRmufEhGyZfeuh519K6kAFphHh4vrxCZr1bIG2gMJs1XwqOKh4i7zgOhB7BvQ4nm8D j5tciHLObF5SO9w9aq8vFOEnxyXrGzNO24ld4t1FOnez6pjLQG2aQ9FY16j9pIzQArmd +wBA==
X-Gm-Message-State: AOAM532z03KgmDaOLih5tTeHb/Jfu9EQdCDAo3Z70gFnX9BZhgRDlP9Q WQyCGBvV0CC4ansm4KLd+xsM6R57Qu7Xbhhr6KS9/mEEzzkjKw==
X-Google-Smtp-Source: ABdhPJzYYEFTquymZoZ+/2FEmvAY/WZSfYVhgZRJiqDf79iU4ZnyEo3uJ/AYsRF22LIZbfYM4K+tZWz9y09EiPKcago=
X-Received: by 2002:ac8:4894:: with SMTP id i20mr13446136qtq.244.1610856723020; Sat, 16 Jan 2021 20:12:03 -0800 (PST)
MIME-Version: 1.0
References: <7607ED50-70C3-46FC-8DCE-27153ACCE110@email.arizona.edu>
In-Reply-To: <7607ED50-70C3-46FC-8DCE-27153ACCE110@email.arizona.edu>
From: Warner Losh <imp@bsdimp.com>
Date: Sat, 16 Jan 2021 21:11:51 -0700
Message-ID: <CANCZdfpCBVtxB5ha3fka8BLznb9ZnkhaXhM4d0sN0oUDf3NUSQ@mail.gmail.com>
To: "Seaman, Robert Lewis - (rseaman)" <rseaman@arizona.edu>
Cc: Philip Prindeville <philipp@redfish-solutions.com>, Watson Ladd <watsonbladd@gmail.com>, NTP WG <ntp@ietf.org>, Hal Murray <hmurray@megapathdsl.net>
Content-Type: multipart/alternative; boundary="000000000000c2933c05b910ce67"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/uS2xOLdr7tOTZ_QXqdU_SGqSRek>
Subject: Re: [Ntp] Circular dependencies
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 17 Jan 2021 04:12:06 -0000

On Sat, Jan 16, 2021, 7:57 PM Seaman, Robert Lewis - (rseaman) <
rseaman@arizona.edu> wrote:

> Hi Warner,
>
>
>
>    - Sure makes cold spares hard to implement.
>
>
>
> You’ve often made this point. Aren’t there other services that provide
> similar challenges? Starting with DNS for that matter. Some engineering
> requirements are indeed hard to implement. Coherent precise timekeeping may
> simply be one of those.
>

Yes. There are many challenges. Making precise time a requirement for DNS
in order to get the time is not a circular dependency that should be
undertaken lightly. At least with a GPS receiver you'll know the time
within a minute or two for the rest of this century even without the
almanac. Absent a GPS receiver, it can be hard to know time well enough to
trust for all things that follow. If you can control time, and time is the
basis of trust... look out.

I am just saying that the quick hacks that were suggested won't work. Any
extended downtime now needs a trusted way to bootstrap even out of date
systems that have been off and missed important updates and revocations.
Any design under consideration should use that test case to proof the
design. I'd like it to be considered and have a protocol that's proven
secure rather than everyone rolling their own. We shouldn't wave our hands
and say it is hard, but smart people will figure it out. Any proposed
system has to cope, or it simply won't work when deployed.

Things have to work both in the steady state case, and in the large step
case. Usually at least one of these is hard.

It trips up lots of designs which is why I bring it up in a lot of
contexts. :)

Warner

Stay safe,
>
>
>
> Rob
>
>
>

v2.23.0 | Report a Bug | By Email