Re: TCP timestamp starting value

To: tech-net%netbsd.org@localhost
Subject: Re: TCP timestamp starting value
From: Edgar Fuß <ef%math.uni-bonn.de@localhost>
Date: Thu, 21 Jul 2016 13:45:16 +0200

JS> Wouldn't a better idea be to compute HASH(cookie,src,dst) + uptime for
JS> some random cookie created at boot time? Essentially, you give each
JS> target a unique monotonic time base, without leaking any data about the
JS> perceived local time.
EF> I thought about something like that, but then the peer would be able to 
EF> tell when you booted (because the timebase changed). The elegance (or so 
EF> I think) of using real time is that the peer can't tell a reboot from an 
EF> intermediate network failure.  On the other hand, what's so bad about 
EF> "leaking" information on my perception of UTC time?
JS> You are assuming a clock is synchronised. It may or may not be.
If it isn't, then its just a random offset, no? What's the problem with that
compared to a fixed offset (1)?

JS> Given that ntpdate is often run on boot as well, there are lots of 
JS> environments where leaking the real time can be useful or where a reboot 
JS> is just as visible.
I don't get that. Could you re-phrase that (in german, if you prefer)?

Of course a reboot may be visible without inspecting TCP timestamps, but what 
exactly is the concern (or are the concerns) of people objecting to using the 
uptime for them?

JS> The cookie can be updated automatically every couple of hours.
I'm afraid that could upset peers that get upset by timestamps jumping 
backwards. Yes, they also jumps backwards if Linux crashes, but real word 
boxes are probably more accomodated to this than to some (sensible) behaviour 
of a niche OS like NetBSD.
An attacker could also deduce from the offset changing just after an attack 
that he crashed the machine.

JS> The other issue remaining is that the real time is not monotonic.
Err, what? MICROTIME(9) states "The system realtime clock is guaranteed to be 
monotonically increasing at all times.  As such, all calls to these functions 
are guaranteed to return a system time greater than or equal to the system 
time returned in any previous calls".

Follow-Ups:
- Re: TCP timestamp starting value
  - From: Joerg Sonnenberger

References:
- A strange TCP timestamp problem?
  - From: Dave Huang
- Re: A strange TCP timestamp problem?
  - From: Christos Zoulas
- Re: A strange TCP timestamp problem?
  - From: Edgar Fuß
- TCP timestamp starting value (wa: A strange TCP timestamp problem?)
  - From: Edgar Fuß
- Re: TCP timestamp starting value (wa: A strange TCP timestamp problem?)
  - From: Joerg Sonnenberger
- Re: TCP timestamp starting value
  - From: Edgar Fuß
- Re: TCP timestamp starting value
  - From: Joerg Sonnenberger

Prev by Date: Re: TCP timestamp starting value
Next by Date: Re: TCP timestamp starting value
Previous by Thread: Re: TCP timestamp starting value
Next by Thread: Re: TCP timestamp starting value
Indexes:

Home | Main Index | Thread Index | Old Index