A Security Analysis and Revised Security Extension for the Precision Time Protocol
This addresses security issues in time synchronization protocols for networked systems, representing an incremental improvement over existing standards.
The paper tackled security vulnerabilities in the Precision Time Protocol (PTP) by conducting a detailed threat analysis, identifying new attacks, and proposing a revised security extension that replaces symmetric-key cryptography with efficient elliptic-curve public-key signatures, showing the proposed schemes are extremely practical and more secure than previous suggestions.
The Precision Time Protocol (PTP) aims to provide highly accurate and synchronised clocks. Its defining standard, IEEE 1588, has a security section ("Annex K") which relies on symmetric-key secrecy. In this paper we present a detailed threat analysis of the PTP standard, in which we highlight the security properties that should be addressed by any security extension. During this analysis we identify a sequence of new attacks and non-cryptographic network-based defenses that mitigate them. We then suggest to replace Annex K's symmetric cryptography by an efficient elliptic-curve Public-Key signatures. We implemented all our attacks to demonstrate their effectiveness, and also implemented and evaluated both the network and cryptographic defenses. Our results show that the proposed schemes are extremely practical, and much more secure than previous suggestions.