Category: network security

How to Synchronise a Computer Network using the Time Protocol (NTP)

  |   By

Synchronisation of modern computer networks is vitally important for a multitude of reasons, and thanks to the time protocol NTP (Network Time Protocol) this is relatively straightforward.

NTP is an algorithmic protocol that analyses the time on different computers and compares it to a single time reference and adjusts each clock for drift to ensure synchronisation with the time source. NTP is so capable at this task that a network synchronised using the protocol can realistically obtain millisecond accuracy.

Choosing the time source

When it comes to establishing a time reference there really is no alternative than to find a source of UTC (Coordinated Universal Time). UTC is the global timescale, used throughout the world as a single timescale by computer networks. UTC is kept accurate by a constellation of atomic clocks throughout the world.

Synchronising to UTC

The most basic method of receiving a UTC Time source is to use a stratum 2 internet time server. These are deemed stratum 2 as they distribute the time after first receiving it from a NTP server (stratum 1) that is connected to an atomic clock (stratum 0). Unfortunately this is not the most accurate method of receiving UTC because of the distance the data has to travel from host to the client .

There are also security issues involved in using an internet stratum 2 time source in that the firewall UDP port 123 has to be left open to receive the time code but this firewall opening can, and has been, exploited by malicious users.

Dedicated NTP Servers

Dedicated NTP time servers, often referred to as network time servers, are the most accurate and secure method of synchronising a computer network. They operate externally to the network so there are no firewall issues. These stratum 1 devices receive the UTC time direct from an atomic clock source by either long wave radio transmissions or the GPS network (Global Positioning System). Whilst this does require an antenna, which in the case of GPS has to be placed on a rooftop, the time server itself will automatically synchronise hundreds and indeed thousands of different devices on the network.

NTP or SNTP That is the Question?

  |   By

While there are several protocols available for time synchronisation the majority of network time is synchronised using either NTP or SNTP.

Network Time Protocol (NTP) and Simple Network Time Protocol (SNTP) have been around since the inception of the Internet (and in the case of NTP, several years beforehand) and are by far the most popular and widespread time synchronisation protocols.

However, the difference between the two is slight and deciding which protocol is best for a ntp time server or a particular time synchronisation application can be troublesome.

As its name suggests, SNTP is a simplified version of Network Time Protocol but the question is often asked: ‘what exactly is the difference?’

The main difference between the two versions of the protocol is in the algorithm that is used. NTP’s algorithm can query multiple reference clocks an calculate which is the most accurate.

SNTP use for low processing devices – it is suited to less powerful machines, do not require the high level accuracy of NTP. NTP can also monitor any offset and jitter (small variations in waveform resulting from voltage supply fluctuations, mechanical vibrations or other sources) whilst SNTP does not.

Another major difference is in the way the two protocols adjust for any drift in network devices. NTP will speed up or slow down a system clock to match the time of the reference clock coming into the NTP server (slewing) while SNTP will simply step forward or backward the system clock.

This stepping of the system time can cause potential problems with time sensitive applications especially of the step is quite large.

NTP is used when accuracy is important and when time critical applications are reliant on the network. However, its complex algorithm is not suited to simple machines or those with less powerful processors. SNTP on the other hand is best suited for these simpler devices as it takes up less computer resources, however it is not suited for any device where accuracy is critical or where time critical applications are reliant on the network.

Network Time Protocol For When Time Matters

  |   By

There is a certain irony that the computer that sits on your desktop and may have cost as much as month’s salary will have a clock onboard that is less accurate than a cheap wristwatch bought at a petrol or gas station.

The problem is not that computers are in particularly made with cheap timing components but that any serious timekeeping on a PC can be achieved without expensive or advanced oscillators.

The onboard timing oscillators on most PCs are in fact just a back up to keep the computer clock synchronised when the PC is off or when network timing information is unavailable.

Despite these inadequate onboard clocks, timing on a network of PC’s can be achieved to within millisecond accuracy and a network that is synchronised to the global timescale UTC (Coordinated Universal Time) shouldn’t drift at all.

The reason this high level of accuracy and synchronicity can be achieved without expensive oscillators is that computers can use Network Timing Protocol (NTP) to find and maintain the exact time.

NTP is an algorithm that distributes a single source of time; this can be generated by the onboard clock of a PC – although this would see every machine on the network drift as the clock itself drifts – A far better solution is to use NTP to distribute a stable, accurate source of time, and most preferably for networks that conduct business across the internet, a source of UTC.

The simplest method of receiving UTC – which is kept true by a constellation of atomic clocks around the globe – is to use a dedicated NTP time server. NTP servers use either GPS satellite signals (Global Positioning System) or long wave radio broadcasts (usually transmitted by national physics laboratories like NPL or NIST).

Once received the NTP server distributes the timing source across the network and constantly checks each machine for drift (In essence the networked machine contacts the server as a client and the information is exchanged via TCP/IP.

This makes the onboard clocks of the computers themselves obsolete, although when the machines are initially booted up, or if there has been a delay in contacting the NTP server (if it is down or there is a temporary fault), the onboard clock is used to maintain time until full synchronisation is again achievable.

Time Servers and the Internet

  |   By

Timing is becoming increasingly crucial for computer systems. It is now almost unheard of for a computer network to function without synchronisation to UTC (Coordinated Universal Time). And even single machines used in the home are now equipped with automatic synchronisation. The latest incarnation of Windows for instance, Windows 7, connects to a timing source automatically (although this application can be turned off manually by accessing the time and date preferences.)

The inclusion of these automatic synchronisation tools on the latest operating systems is an indication of how important timing information has become and when you consider the types of applications and transactions that are now conducted on the internet it is of no surprise.

Internet banking, online reservations, internet auctions and even email can be reliant on accurate time. Computers use timestamps as the only point of reference they have to identify when and if a transaction has occurred. Mistakes in timing information can cause untold errors and problems, particularly with debugging.

The internet is full of time servers with over a thousand time sources available for online synchronisation however; the accuracy and usefulness of these online sources of UTC time do vary and leaving a TCP/IP open in the firewall to allow the timing information through can leave a system vulnerable.

For network systems where timing is not only crucial but where security is also a paramount issue then the internet is not a preferred source for receiving UTC information and an external source is required.

Connecting a NTP network to an external source of UTC time is relatively straightforward if a network time server is used. These devices that are often referred to as NTP servers, use the atomic clocks onboard GPS (Global Positioning System) satellites or long wave transmissions broadcast by places such as NIST or NPL.

NTP Servers and the Different Time Sources

  |   By

NTP servers are essential devices for computer network time synchronisation. Ensuring a network coincides with UTC (Coordinated Universal Time) is vital in modern communications such as the Internet and is the primary function of the network time server (NTP server).

As their name suggests, these time servers use the protocol NTP (Network Time Protocol) to handle the synchronisation requests. NTP is already installed in many operating systems and synchronisation is possible without an NTP server by utilising an Internet time source, this can be unsecure and inaccurate for many network needs.

Network time servers receive a far more accurate and secure time signal. There are two methods of receiving the time using a time server: utilising the GPS network or receiving long wave radio transmissions.

Both these methods of receiving a time source are secure as they are external to any network firewall. They are also accurate as both sources of time are generated directly by atomic clocks rather than an Internet time service that are normally NTP devices connected to a third party atomic clock.

The GPS network provides an ideal source of time for NTP servers as the signals are available anywhere. The only downside of using the GPS network is that a view of the sky is required to lock-on to a satellite.

Radio referenced time sources are more flexible in that the long wave signal can be received indoors. They are limited in strength and not every country has a time signal although some signals such as the German DCF and the USA WVBB are available in neighbouring states.

IEEE 1588 Time Protocol Promises More Accurate Time Synchronisation

  |   By

Despite being around for over twenty years, the current favoured time protocol by most networks, NTP (Network Time Protocol) has some competition.

Currently NTP is used to synchonise computer networks using network time servers (NTP servers). Currently NTP can synchronise a computer network to a few milliseconds.

The Precision Time Protocol (PTP) or IEEE 1588 has been developed for local systems requiring very high accuracy (to nano-second level). Currently this type of accuracy is beyond the capabilities of NTP.

PTP requires a master and slave relation ship in the network. A two-step process is required to synchronise devices using the IEEE 1588 (PTP). First, determination of which device is the master is required then the offsets and natural network delays are measured. PTP uses the Best Master Clock algorithm (BMC) to establish which clock on the network is the most accurate and it becomes the master whilst all other clocks become slaves and synchronise to this master.

IEEE (Institute of Electrical and Electronic Engineers) describes IEEE 1588 or (PTP) as designed to “fill a niche not well served by either of the two dominant protocols, NTP and GPS.  IEEE 1588 is designed for local systems requiring very high accuracies beyond those attainable using NTP. It is also designed for applications that cannot bear the cost of a GPS receiver at each node, or for which GPS signals are inaccessible.” (quoted in Wikipedia)

PTP can provide accuracy to a few nano-seconds but this type of accuracy is not required by most network users however, the target use of PTP appears to be mobile broadband and other mobile technologies as PTP supports time-of-day information, used by billing and service level agreement reporting functions in mobile networks.

Secrets of Time Synchronization Software

  |   By

Time synchronization is a crucial aspect of computer networking. Ensuring all machines on a network are synchronised to the global timescale, UTC (Coordinated Universal Time), otherwise time sensitive transactions with other networks would be impossible.

Time synchronization is made easy thanks to the Network Time Protocol (NTP) which was devised in the early days of the Internet for that very purpose. It works be utilising a single time source (usually UTC) which is then distributed amongst all devices on the NTP network.

The UTC time source is often taken from the Internet on networks where security is not a great issue but as this involves leaving an open port in a network firewall for many networks the vulnerability this can leave isn’t worth the risk.

Dedicated network time servers (often referred to as NTP servers) are used by many networks as a secure and even more accurate method of receiving UTC. These devices receive the UTC time direct from an atomic clock source.

Furthermore, these dedicated time servers operate external to the firewall and network and use sources such as GPS or radio frequencies to pick up the time codes.

For ease of synchronisation there are various time synchronisation software packages that run hand-in-hand with NTP and allow, through browser interfaces, easy configuration of the time synchronization throughout the network.

Whilst these time synchronisation software packages aren’t essential in using most NTP servers, the standard software installed in operating systems is often lacking or quite complicated.

Most specialist producers of dedicated network time servers will produce a times service client to allow configuration and these are probably best suited for the device from that suppler. However, there are many freeware and open source time synchronisation software packages that are mostly compatible with many NTP servers.

Time Synchronisation on a Windows 7 Network

  |   By

Windows 7 is the latest instalment in the Microsoft operating system family. Following on from the much maligned Windows Vista, Windows 7 has a much warmer reception from critics and consumers.

Time synchronisation on Windows 7 is extremely straight forward as the protocol NTP (Network Time Protocol) is built-in to Windows 7 and the operating system automatically synchronises the computer’s clock by connecting to the Microsoft time service time.windows.com.

This is useful for many home users but the synchronisation across the Internet is not secure enough for a computer network for the following reason:

To connect to any Internet time source such as time.windows.com a post is required to be left open in the firewall. As with any open port in a network firewall this can be used as a point of entry by a malicious user or some malicious software.

The time synchronisation facility in Windows 7 can be turned off and is quite simple to do by opening the time and date dialogue box and uncheck the synchronization box.

However, time synchronisation on a network is vital so if the Internet time service is turned off it needs to be replaced with a secure and accurate source of time.

By far the best way of doing this is to use a time source that’s external to the network (and the firewall).

The simplest, safest and most accurate way of synchronizing a Windows 7 network is to use a dedicated NTP server. These devices use a time reference from either a radio frequency (usually distributed by national physics laboratories such as Britain’s NPL and America’s NIST) or from the GPS satellite network.

Because both these reference sources come from atomic clock sources they are incredibly accurate too and a Windows 7 network that consists of hundreds of machines can be synchronised to within a few milliseconds of the global timescale UTC (Coordinated Universal Time) by utilising just one NTP time server.

How Satellite Navigation Works

  |   By

Satellite navigational systems, or sat navs, have changed the way we navigate our way around the high roads. Gone are the days when travellers had to have a glove box full of maps and gone too is the need to stop and ask a local for directions.

Satellite navigation means that we an now go from point A to point B confident our systems will take us there and while sat nav systems are not fool proof (we must have all read the stories of people driving over cliffs and into rivers etc), it has certainly revolutionised our wayfinding.

Currently there is only one Global Navigational Satellite System (GNSS) the American run Global Positioning System (GPS). Although, a rival European System (Galileo) is set to go online sometime after 2012 and a both a Russian (GLONASS) and Chinese (COMPASS) system are being developed.

However, all these GNSS networks will operate using the same technology as employed by GPS, and in fact, current GPS systems should be able to utilise these future systems without much alteration.

The GPS system is basically a constellation of satellites (currently there are 27). These satellites each contain onboard an atomic clock (actually two are on most GPS satellites but for the purpose of this explanation only one need be considered). The signals that are transmitted from the GPS satellite contain several pieces of information sent as one integer:

* The time the message was sent

* The orbital position of the satellite (known as the ephemeris)

* The general system health and orbits of the other GPS satellites (known as the almanac)

A satellite navigation receiver, the kind found on the dashbopard of your car, receives this information and using the timing information works out the exact distance from the receiver to the satellite. By using three or more of these signals the exact position can be triangulated (four signals are actually required as height above sea level has to be worked out too).

Because the triangulation works out when the time signal was sent and how long it took to arrive at the receiver, the signals have to be incredibly accurate. Even a second of inaccuracy could see the navigational information out but thousands of kilometres as light, and therefore radio signals, can travel nearly 300,000 km each second.

Currently the GPS satellite network can provide navigational accuracy to within 5 metres which goes to show just how accurate atomic clocks can be.

Network Time Protocol Time Synchronisation Made Easy

  |   By

One of the most important aspects of networking is keeping all devices synchronised to the correct time. Incorrect network time and lack of synchronisation can play havoc with system processes and can lead to untold errors and problems debugging.

And failing to ensure devices are continually checked to prevent drift can also lead to a synchronised network slowly becoming unsynchronised and leading to the kinds of problems aforementioned.

However, ensuring a network not only has the correct time but that that time is not drifting is achieved using the time protocol NTP.

Network Time Protocol (NTP) is not the only time synchronisation protocol but it is by far the most widely used. It is an open source protocol but is continually updated by a large community of Internet time keepers.

NTP is based around an algorithm that can work out the correct and most accurate time from a range of sources. NTP allows a single time source to be used by a network of hundreds and thousands of machines and it can keep each one accurate to that time source to within a few milliseconds.

The easiest way of synchronising a network with NTP is to use a NTP time server, also known as a network time server.

NTP servers use an external source of time, either from the GPS network (Global Positioning System), or from broadcasts from national physics laboratories such as NIST in the US or NPL in the UK.

These time signals are generated by atomic clocks which are many times more accurate than the clocks on computers and servers. NTP will distribute this atomic clock time to all devices on a network it will then keep checking each device to ensure there is no drift and correcting the device if there is.