Publications
Pitfalls of provably secure systems in internet the case of chronos-NTP
Author | Jeitner, P.; Shulman, H.; Waidner, M. |
---|---|
Date | 2020 |
Type | Conference Paper |
Abstract | The critical role that Network Time Protocol (NTP) plays in the Internet led to multiple efforts to secure it against time-shifting attacks. A recent proposal for enhancing the security of NTP with Chronos against on-path attackers seems the most promising one and is on a standardisation track of the IETF. In this work we demonstrate off-path attacks against Chronos enhanced NTP clients. The weak link is a central security feature of Chronos: The server pool generation mechanism using DNS. We show that the insecurity of DNS allows to subvert the security of Chronos making the time-shifting attacks against Chronos-NTP even easier than attacks against plain NTP. |
Conference | International Conference on Dependable Systems and Networks (DSN) 2020 |
Url | https://publica.fraunhofer.de/handle/publica/409517 |