hacking security forum

[Full-Disclosure] Re: Fwd: Re: FullDisclosure: Security aspects of time synchronization infrastructure

From: <gadgeteer@elegantinnovations.org>
Date: Sun Aug 22 2004 - 11:25:09 EDT

On Fri, Aug 20, 2004 at 10:26:08AM +0400, 3APA3A (3APA3A@SECURITY.NNOV.RU) wrote:
[...]
> you state:
>
> If there is a host with reliable time on the network (that is host
> synchronized with some hardware source, like radio clocks, cesium
> clocks, GPS clocks, etc) - whole network will be finally, after some
> time, synchronized with this host.
>
> Depending upon the criticality of the time sensitive applications on
> the network, you might want to reconsider the use of "radio clocks"
> and especially "GPS clocks". These time sources are also subject to
> attacks. Any free air broadcast is subject to jamming. This is
> essentially a DoS. Spoofing to provide incorrect time signal is also
> possible with free air broadcast, but less easy to do.
[...]

For a fixed installation detecting if someone is dinking the gps signal
is trivial. The unit starts thinking it is not in Kansas anymore.

-- 
Chief Gadgeteer
Elegant Innovations
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Received on Sun Aug 22 11:52:54 2004

This archive was generated by hypermail 2.1.8 : Sun Aug 22 2004 - 12:05:59 EDT

Custom Search