Re: TCP timestamp starting value

To: tech-net%netbsd.org@localhost
Subject: Re: TCP timestamp starting value
From: Joerg Sonnenberger <joerg%bec.de@localhost>
Date: Thu, 21 Jul 2016 13:11:50 +0200

On Thu, Jul 21, 2016 at 11:13:21AM +0200, Edgar Fuß wrote:
> > Wouldn't a better idea be to compute HASH(cookie,src,dst) + uptime for
> > some random cookie created at boot time? Essentially, you give each
> > target a unique monotonic time base, without leaking any data about the
> > perceived local time.
> I thought about something like that, but then the peer would be able to tell 
> when you booted (because the timebase changed). The elegance (or so I think) 
> of using real time is that the peer can't tell a reboot from an intermediate 
> network failure.
> On the other hand, what's so bad about "leaking" information on my perception 
> of UTC time?

You are assuming a clock is synchronised. It may or may not be. Given
that ntpdate is often run on boot as well, there are lots of
environments where leaking the real time can be useful or where a reboot
is just as visible. The cookie can be updated automatically every couple
of hours. The other issue remaining is that the real time is not
monotonic.

Joerg

Follow-Ups:
- Re: TCP timestamp starting value
  - From: Edgar Fuß

References:
- A strange TCP timestamp problem?
  - From: Dave Huang
- Re: A strange TCP timestamp problem?
  - From: Christos Zoulas
- Re: A strange TCP timestamp problem?
  - From: Edgar Fuß
- TCP timestamp starting value (wa: A strange TCP timestamp problem?)
  - From: Edgar Fuß
- Re: TCP timestamp starting value (wa: A strange TCP timestamp problem?)
  - From: Joerg Sonnenberger
- Re: TCP timestamp starting value
  - From: Edgar Fuß

Prev by Date: Re: TCP timestamp starting value
Next by Date: Re: TCP timestamp starting value
Previous by Thread: Re: TCP timestamp starting value
Next by Thread: Re: TCP timestamp starting value
Indexes:

Home | Main Index | Thread Index | Old Index