IETF Logo Mail Archive

Re: [Ntp] The bump, or why NTP v5 must specify impulse response

Doug Arnold <doug.arnold@meinberg-usa.com> Thu, 23 April 2020 18:37 UTC

Return-Path: <doug.arnold@meinberg-usa.com>
X-Original-To: ntp@ietfa.amsl.com
Delivered-To: ntp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E4B9A3A0E5E for <ntp@ietfa.amsl.com>; Thu, 23 Apr 2020 11:37:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.233
X-Spam-Level:
X-Spam-Status: No, score=-1.233 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, SPF_SOFTFAIL=0.665, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=meinbergfunkuhren.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id eG2kRabQ4hEP for <ntp@ietfa.amsl.com>; Thu, 23 Apr 2020 11:37:42 -0700 (PDT)
Received: from EUR01-DB5-obe.outbound.protection.outlook.com (mail-eopbgr150074.outbound.protection.outlook.com [40.107.15.74]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3C86E3A0E5B for <ntp@ietf.org>; Thu, 23 Apr 2020 11:37:41 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=IKdrjm94d24Bf1Txt18Wl2j4IlkclC9ikFjsR6a/fE1MR7yVVQkWFIRaQMdYi5c9bd6pptSEo/wgODDu5s8rqrzrSh53JC4jgVlblgTw6fFau2rZaoS6v6Zb8J7ndfmoPJ6tcpdaITsnhBwvkWZPkCuCSwKrKR5PiMnOYMGMczvTGbfDK0RtJy3QW/FH8JrOM8g1qhZMj3scyTTM0VQCSwYqFXfAbtqdTnCY5xkVB+cPqrRBtCLb7dRhO5A/7NolvxbvzqY7JddnBDs29h4zoaKUpE1AC2beFcCPPvxiqIJQUWH0U1Dwb2qbn3DxHGmUGAGjuH25bVkEgPDJkHYFmg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=7dJwL1qR2GWa8NDfw2loxGlS/8bLzdk6iZNp5k17GBg=; b=NnnyaHLnKPksIRi8wqhIqfUbES+SYhSCzh3L3LQPm5+PmQh44Q4XTNOsyYTyccnwz4yPktUmaFl1V8UFEMjuJaBTNdtjiLYb0H55qOo7TOTVHcN4DU8hzvKwEYNDgdRcTTvKaAS4qkhdFRI909iXRrlOQjLJtwvtL7dS+RFhK4FpUSgQy96vn98UvCqqBYhhkXeg7eEOuHqSdJJIGGKRcy0csb0zYxHw+xoSs5l2P2CGuTTbeTlrTDYUqnzGQ6uIRjAqJho3nDkirZHrsCjn1b693gp3sR5Kd3jC3oV1rZRcNdy7iWfHxA/u1AO5S8bqd7+BVB8KJlsAFYxaJodgYg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=meinberg-usa.com; dmarc=pass action=none header.from=meinberg-usa.com; dkim=pass header.d=meinberg-usa.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=meinbergfunkuhren.onmicrosoft.com; s=selector1-meinbergfunkuhren-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=7dJwL1qR2GWa8NDfw2loxGlS/8bLzdk6iZNp5k17GBg=; b=UT2/UH1cjqPWYHQbLE03QKHNiawonPOnuyCAxUzhLDfKaE0NCl+0xNgZLRfegGGMiW7OTLJzxB37yXP9OT3o/RS7khRF7bEB0N0sy4/zs8GHqI791+AGPaD6lRJ3gAZm9yXk4Tbj5CxWDJwJ2hFj9CXVzmrPkUMnjOpqyWyz/rY=
Received: from DB8PR02MB5611.eurprd02.prod.outlook.com (2603:10a6:10:eb::31) by DB8PR02MB5434.eurprd02.prod.outlook.com (2603:10a6:10:e5::15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2937.13; Thu, 23 Apr 2020 18:37:39 +0000
Received: from DB8PR02MB5611.eurprd02.prod.outlook.com ([fe80::9525:30ab:defe:44a6]) by DB8PR02MB5611.eurprd02.prod.outlook.com ([fe80::9525:30ab:defe:44a6%7]) with mapi id 15.20.2921.030; Thu, 23 Apr 2020 18:37:38 +0000
From: Doug Arnold <doug.arnold@meinberg-usa.com>
To: Danny Mayer <mayer@pdmconsulting.net>, Kurt Roeckx <kurt@roeckx.be>, Harlan Stenn <stenn@nwtime.org>
CC: "ntp@ietf.org" <ntp@ietf.org>
Thread-Topic: [Ntp] The bump, or why NTP v5 must specify impulse response
Thread-Index: AQHWERdg/8i/rvFkyUOx/r80OrpRSqh3G4MAgABSFYCAAAKRAIAADJ2AgAAM+D+AAPEegIABe/OAgAA9WACAAVTegIAAO6oAgAADBQCAAAOSgIAAeiEAgAAIswCAANtNAIAAQQWAgAlzB4CAADK/Xg==
Date: Thu, 23 Apr 2020 18:37:38 +0000
Message-ID: <DB8PR02MB56119E4E2BF59A53FEE9D48FCFD30@DB8PR02MB5611.eurprd02.prod.outlook.com>
References: <F7E5836A-4C7A-4A1A-B769-65EADE2C8F5C@gmail.com> <7d909ae3-a830-1270-6920-fa088a56525e@nwtime.org> <6C9832A9-E18B-4DE2-934F-9E471FC22F7B@akamai.com> <bc7920e2-dc81-ba7f-ec24-7926cda8589d@nwtime.org> <alpine.DEB.2.20.2004161430210.5561@grey.csi.cam.ac.uk> <93795d4a-25e7-c918-47d4-44aa6d92ee5e@nwtime.org> <20200416135547.GF412294@roeckx.be> <2d483354-a707-fbca-e914-cbe1479a4c25@nwtime.org> <CAJm83bAMxGrx_PSPQUjERzT2TT_0Tiutx=R0LRF2m9bY4QTj4w@mail.gmail.com> <39a14fe5-845d-aa3a-f236-5e767b6cce95@nwtime.org> <20200417144139.GI412294@roeckx.be>, <5286f70e-61cb-e55e-733f-d8d453dc9857@pdmconsulting.net>
In-Reply-To: <5286f70e-61cb-e55e-733f-d8d453dc9857@pdmconsulting.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=doug.arnold@meinberg-usa.com;
x-originating-ip: [64.30.82.72]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 411a519a-e162-41ec-c686-08d7e7b5665a
x-ms-traffictypediagnostic: DB8PR02MB5434:
x-microsoft-antispam-prvs: <DB8PR02MB54340CAB6380E0DA0BE61AEDCFD30@DB8PR02MB5434.eurprd02.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8273;
x-forefront-prvs: 03827AF76E
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DB8PR02MB5611.eurprd02.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(376002)(396003)(136003)(366004)(39830400003)(346002)(9686003)(33656002)(55016002)(186003)(66476007)(66946007)(66556008)(76116006)(4326008)(91956017)(71200400001)(26005)(7696005)(53546011)(52536014)(19627405001)(6506007)(44832011)(8936002)(2906002)(64756008)(8676002)(86362001)(66446008)(966005)(110136005)(316002)(508600001)(81156014)(5660300002)(66574012); DIR:OUT; SFP:1101;
received-spf: None (protection.outlook.com: meinberg-usa.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-ms-exchange-antispam-messagedata: B9Wy/HrNoDvl5oRM0RhnoVN7N0PW803KsL+S7GHq9Xb5MKrF/wp8Ux1Gwvw+mQs0A1p26LB6+VaN06tIurdAR0RS2LzCWVIlKU/FT9DeczHx0BRascn5CQ3vlD4iF1NrhytCQxnMVb6goBEF2Z17ZQ==
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_DB8PR02MB56119E4E2BF59A53FEE9D48FCFD30DB8PR02MB5611eurp_"
MIME-Version: 1.0
X-OriginatorOrg: meinberg-usa.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 411a519a-e162-41ec-c686-08d7e7b5665a
X-MS-Exchange-CrossTenant-originalarrivaltime: 23 Apr 2020 18:37:38.6717 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: d59904cd-769f-4368-8bd0-f5f435893a38
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: GzqfGC0kUXhJyUTdOmgm9G0zIEUWPrPjfrewejeXwUSJNq0gkpBPrc/cLe5w6sdwzVDzdtnml/T6A6TeII3ammSytPDFvXbhylOHx4+kgvE=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB8PR02MB5434
Archived-At: <https://mailarchive.ietf.org/arch/msg/ntp/rXYZClc1XetRxCm-ibYlSrffG30>
Subject: Re: [Ntp] The bump, or why NTP v5 must specify impulse response
X-BeenThere: ntp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <ntp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ntp>, <mailto:ntp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ntp/>
List-Post: <mailto:ntp@ietf.org>
List-Help: <mailto:ntp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ntp>, <mailto:ntp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 23 Apr 2020 18:37:46 -0000

The accuracy of time at a client or a higher stratum number server has almost nothing to do with the stratum 1 server or servers from which the time is derived.  The accuracy is mostly due to the conditions in the network.  Also different applications require a different approach.  Consider the two different use cases for ntpv5:
User case A:
A Stratum 2 server get it's time from a pool of stratum 1 servers through the public internet and distributes it to clients in computers, servers and routers in a large enterprise network.  The clients need time to about 1 second for log file entries and security time out intervals.  Accuracy at the stratum 2 server and clients is almost completely determined by queuing noise from so many hops that the noise is almost Gaussian.  After removal of outliers the stratum 2 server and clients average clock corrections in a PLL based on a low pass filter.  Because accuracy requirements are loose, clients request updates only every few minutes.

Use case B:
A financial traders network needs microsecond level timing for regulatory requirements and network latency requirements in their enterprise network.  They have their own stratum 1 server inside their firewall, and just a few hops to the clients.  They can achieve their accuracy goals with a high rate of ntp packets, non-linear lucky packet filters, and by turning off encryption to make hardware timestamping easier.

Both of these use cases can use the same ntp packets and the same sequence (client -> server -> client).  But the servo loops are different, the packet rates are different, and the security requirements are different.  The use cases there for could use the same protocol (ntp) but different policies (servo, security settings, packet rate)

Now certainly the security is part of the protocol, but whether you turn it on or not, is policy.  Or whether it is encryption or just an authentication hash could be policy.

The easiest way to specify ntpv5 for both these use cases, and many others, is to make the policies separate from the over the wire protocol, so that there can be different policy subsystems which work with the same protocol.

Use case B is currently solved either with PTP, or with a non-standard variant of ntpv4.  It seems that if people in the field need to violate the ntpv4 standard to get their job done, then maybe ntpv5 should be more flexible.

Doug


________________________________
From: ntp <ntp-bounces@ietf.org> on behalf of Danny Mayer <mayer@pdmconsulting.net>
Sent: Thursday, April 23, 2020 7:59 AM
To: Kurt Roeckx <kurt@roeckx.be>; Harlan Stenn <stenn@nwtime.org>
Cc: ntp@ietf.org <ntp@ietf.org>
Subject: Re: [Ntp] The bump, or why NTP v5 must specify impulse response


On 4/17/20 10:41 AM, Kurt Roeckx wrote:
> On Fri, Apr 17, 2020 at 03:48:56AM -0700, Harlan Stenn wrote:
>> More to the point, NTPv4 and all of its predecessors specified:
>>
>> - the packet format
>> - the algorithms
>> - a set of behavioral limits and specifications
>>
>> This means others were allowed to write specifications (regulations)
>> assuming and/or relying on "NTP" - the packet format, algorithms, and
>> behavior.
>>
>> Removing or separating the algorithmic and behavioral specifications
>> from the NTP specification at best cost-shifts that discussion
>> elsewhere, and I submit it does this to groups that are likely
>> completely unaware that they can no longer rely on behavior that they
>> had no idea they previously relied on.
> Maybe it's useful to have performance guarantees specified, but
> leave the algorithm how to get there either to the
> implementations, or in a separate document.

This makes no sense. You can't get performance out of a clock. The
things you have to rely on is the reliability of the clocks your NTP
server are referencing, it's stability, error estimates, jitter,
accuracy, and closeness to UTC (if that can be measured). You need to
remember that NTP is a set of loosely coupled networked clocks
interacting with each other. They cannot be easily separated as if you
are running a computer game.

Danny


_______________________________________________
ntp mailing list
ntp@ietf.org
https://www.ietf.org/mailman/listinfo/ntp

v2.23.0 | Report a Bug | By Email