Publications
Pitfalls of provably secure systems in internet the case of chronos-NTP
| Author | Jeitner, P.; Shulman, H.; Waidner, M. |
|---|---|
| Date | 2020 |
| Type | Conference Paper |
| Abstract | The critical role that Network Time Protocol (NTP) plays in the Internet led to multiple efforts to secure it against time-shifting attacks. A recent proposal for enhancing the security of NTP with Chronos against on-path attackers seems the most promising one and is on a standardisation track of the IETF. In this work we demonstrate off-path attacks against Chronos enhanced NTP clients. The weak link is a central security feature of Chronos: The server pool generation mechanism using DNS. We show that the insecurity of DNS allows to subvert the security of Chronos making the time-shifting attacks against Chronos-NTP even easier than attacks against plain NTP. |
| Conference | International Conference on Dependable Systems and Networks (DSN) 2020 |
| Url | https://publica.fraunhofer.de/handle/publica/409517 |
