CT-Talk von Dr. Neta Rozen-Schiff

12.08.2019 15:00 - 16:00

Am 13.08.2019 wird Dr. Neta Rozen-Schiff einen CT-Talk zum Thema „Preventint (Network) Time Travel with Chronos“ halten. Die Fakultät für Informatik lädt alle Interessierten herzlich dazu ein!

Abstract
The Network Time Protocol (NTP) synchronizes time across computer systems over the Internet. Unfortunately, NTP is highly vulnerable to “time shifting attacks”, in which the attacker’s goal is to shift forward/backward the local time at an NTP client. NTP’s security vulnerabilities have severe implications for time-sensitive applications and for security mechanisms, including TLS certificates, DNS and DNSSEC, RPKI, Kerberos, BitCoin, and beyond. While technically NTP supports cryptographic authentication, it is very rarely used in practice and, worse yet, timeshifting attacks on NTP are possible even if all NTP communications are encrypted and authenticated.

We present Chronos, a new NTP client that achieves good synchronization even in the presence of powerful attackers who are in direct control of a large number of NTP servers. Importantly, Chronos is backwards compatible with legacy NTP and involves no changes whatsoever to NTP servers. Chronos leverages ideas from distributed computing literature on clock synchronization in the presence of adversarial (Byzantine) behavior. A Chronos client iteratively “crowdsources” time queries across multiple NTP servers and applies a provably secure algorithm for eliminating “suspicious” responses and averaging over the remaining responses. Chronos is carefully engineered to minimize communication overhead so as to avoid overloading NTP servers.

We evaluate Chronos’ security and network efficiency guarantees via a combination of theoretical analyses and experiments with a prototype implementation. Our results indicate that to succeed in shifting time at a Chronos client by over 100ms from the UTC, even a powerful man-in-the-middle attacker requires over 20 years of effort in expectation.

This is a joint work with Omer Deutsch, Danny Dolev, Michael Schapira.


Bio
Neta Rozen-Schiff is a research associate at the School of Computer Science and Engineering of the Hebrew University of Jerusalem, where she works with Prof. David Hay and Prof. Michael Schapira. Her research interests include optimization and control in datacenters, congestion control, network security, and software-defined networking. Prior to joining the Hebrew university, Neta spent a decade in the industry, working as a software engineer and as an operations researcher. Neta holds a BSc and MSc in Mathematics from Bar-Ilan University, and a PhD from the Technion, awarded in 2004, 2005, and 2011, respectively.

 

CT-Talk von Dr. Neta Rozen-Schiff
Preventint (Network) Time Travel with Chronos
Wann: DI, 13.08.2019, 15:00
Wo: SR9 | Währinger Straße 29, 1090 Wien

Organiser:

Fakultät für Informatik

Location:

Seminarraum 9 (SR9) W29

Währinger Straße 29
1090 Wien