Category: network security

Choosing a Time Source what to do and what not to do

  |   By

Time synchronization is crucial for many of the applications that we do across the internet these days; internet banking, online reservation and even online auctions all require network time synchronization.

Failing to ensure their servers are adequately synchronized would mean many of these applications would be impossible to achieve; seat reservations could be sold more than once, lower bids could win internet auctions and it would be possible to withdraw you life savings from the bank twice if they didn’t have adequate synchronization (good for you not for the bank).

Even computer networks that on the face of it do not rely on time sensitive transactions also need to be adequately synchronized as it could be near impossible to track down errors or protect the system from malicious attacks if the timestamps on differ on various machines on the network.

Many organisations opt to use internet time servers as a source of UTC (Coordinated Universal Time) – the atomic clock controlled global timescale. Although there are many security issues in doing so such as leaving a hole in the firewall to communicate with the time server and not having any authentication for the time synchronization protocol NTP (Network Time Protocol).

However, in saying that many network administrators still opt to use online time servers as a UTC source regardless of the security implications although there are other issues that administrators should be aware of. On the internet there are two types of time server – stratum 1 and stratum 2. Stratum 1 servers receive a time signal direct from an atomic clock while stratum 2 servers receive a time signal from a stratum 1 server. Most internet stratum 1 servers are closed – unavailable to most administrators and there can be some shortfall in accuracy in using a stratum 2 server.

For the most accurate, secure and precise timing information external NTP time servers are the best option as these are stratum 1 devices that can synchronize hundreds of machines on a network to the exact same UTC time.

Reported GPS Fears Should Not Affect Time Synchonisation

  |   By

Following recent media reports on the lack of investment in the USA’s Global Navigation Satellite System – GPS (Global Positioning System) and the potential failure of navigational receivers in recent years, time synchronisation specialists, Galleon Systems, would like to ensure all their customers that any failure of the GPS network will not affect current GPS NTP time servers.

Recent media reports following a study by the US government’s accountability office (GAO), that concluded mismanagement and a lack of investment meant some the current number of 31 operational satellites may fall to below 24 at times in 2011 and 2012 which would hamper its accuracy.

However, the UK’s National Physical Laboratory are confident that any potential problems of the GPS navigation facilities will not affect timing information utilised by GPS NTP servers.

A spokesman for the UK’s National Physical Laboratory confirmed that timing information should be unaffected by any potential future satellite failure.

“There is estimated to be a 20% risk that in 2011-2012 the number of satellites in the GPS constellation could drop below 24 at times.

“If that were to happen, there could be a slight reduction in the position accuracy of GPS receivers at some periods, and in particular they might take longer to acquire a fix in some locations when first powered up. However, even then the effect would be a degradation of performance, rather than complete failure to operate.

“A GPS timing receiver is unlikely to be affected significantly since, once it has determined its position when turned on, every satellite it observes provides it with useful timing information. A small reduction in the number of satellites in view should not degrade its performance much.”

The NTP Time Server Essential Network Protection

  |   By

There are a myriad of hardware and software methods of protecting computers. Anti-virus software, firewalls, spyware and routers to name but a few yet perhaps the most important tools for keeping a network safe is often the most overlooked.

One of the reasons for this is that the network time server’s often referred to as the NTP time server (after the protocol Network Time Protocol) primary task is time synchronisation and not security.

The NTP server’s primary task is to retrieve a time signal from a UTC source (Coordinated Universal Time) which it then distributes it amongst the network, checking the clock on each system device and ensuring its running in synchronisation with UTC.

Here is where many network administrators fall down. They know that time synchronisation is vital for computer security. Without it, errors can not be logged (or even spotted) network attacks can’t be countered, data can be lost and if a malicious user does get into the system it is near impossible to discover what they were up to without all machines on a network corresponding to the same time.

However, the NTP server is where many network administrators think they can save a little money. ‘Why bother?’ ‘They say, ‘when you can log on to an Internet NTP server for free.’

Well, as the old saying goes there is no such thing as a free lunch or as it goes a free source of UTC time. Using internet time providers may be free but this is where many computer networks leave themselves open to abuse.

To utilise an internet source of time such as Microsoft’s, NIST or one of those on the NTP pool project may be free but they are also outside a networks firewall and these is where many network administrators come unstuck.

How to Synchronise Your PC to an Atomic Clock

  |   By

The world’s technologies have advanced dramatically over the last few decades with innovations likes the internet and satellite navigation having changed the way we live our lives.

Atomic clocks pay a key role in these technologies; their time signals are what are used by GPS receivers to plot location and many applications and transactions across the internet if it wasn’t for highly precise synchronisation.

In fact a global timescale has been developed that is based on the time told by atomic clocks. UTC (Coordinated Universal Time) ensures that computer networks across the globe can be synchronised to the exact same time.

Synchronising computers and networks to atomic clocks is relatively straight forward thanks in part to NTP (Network Time Protocol), a version of which is included in most operating systems and is also thanks to the number of public NTP servers that exist on the internet.

To synchronise a Windows PC to an atomic clock is done by simply double clocking the clock on the task bar and then configuring the Internet Time tab to a relevant NTP server. A list of public NTP servers can be found at the NTP pool website.

When configuring networks to UTC however, a public NTP server is not suitable as there are security issues about polling a time source outside the firewall. Public servers are also known as stratum 2 servers which means they receive the time from another device that gets it from an atomic clock. This indirect method means that there is often a compromise in accuracy, furthermore if the internet connection goes down or the time server site then the network will soon drift away from UTC.

A far more secure and stable method is to invest in a dedicated NTP time server. These devices receive a time signal directly from an atomic clock, either produced by a national physics lab like NIST or NPL via long wave radio or from GPS satellites.

A single dedicated NTP server will provide a stable, reliable and highly precise source of UTC and allow networks of hundreds and even thousands of devices to be synchronised to NTP.

The Concept of Time

  |   By

Time is something that we are all familiar with, it governs our lives even more so than money and we are constantly ‘at war’ with time as we battle to conduct our daily tasks before it runs out.

Yet when we start to examine time we discover that the concept of time we begin to realise that a non-ending linear distance between different events that we call time is purely a human invention.

Of course time exists but it certainly doesn’t follow the rules that the human concept of time does. It is not never ending or constant and changes and warps depending on speed of observers and the pull of gravity. In fact it was Einstein’s theories on relativity that gave human kind its first glimpse as to what time really is and how it affects our daily lives.

Einstein described a four-dimensional space-time, where time and space are inextricably woven together. This space-time gets warped and bent by gravity slowing time (or our perception of it). Einstein also, he suggested that the speed of light was the only constant in the universe and time altered depending on the relative speed to it.

When it comes to keeping track of time, Einstein’s theories can hamper any attempts at chronology. If both gravity and relative speed can affect time then it becomes difficult to measure time accurately.

We long ago abandoned the idea of using the celestial bodies and Earth’s rotation as a reference for our timekeeping as it was recognised in the early twentieth century that Earth’s rotation wasn’t at all accurate or reliable. Instead, we have depended n the oscillations of atoms to keep track of time. Atomic clocks measure atomic ticks of particular atoms and our concept of time is based on these ticks with every second being equal to over 9 billion oscillation of the caesium atom.

Even though we now base time on atomic oscillations, technologies such as GPS satellites (Global Positioning System) still have to counter the effects of lower gravity. In fact the effects of time can be monitored so accurately thanks to atomic clocks that those at different altitudes above sea level run at slightly differing speeds which has to be compensated for.

Atomic clocks can also be used to synchronise a computer network ensuring that they are running as accurately as possible. Most NTP time servers operate by utilising and distributing the time signal broadcast by an atomic clock (either through GPS or long wave) using the protocol NTP (Network Time Protocol).

Why the Need for NTP

  |   By

Network Time Protocol is an Internet protocol used to synchronize computer clocks to a stable and precise time reference. NTP was originally developed by Professor David L. Mills at the University of Delaware in 1985 and is an Internet standard protocol and is used in most network time servers, hence the name NTP server.

NTP was developed to solve the problem of multiple computers working together and having the different time. Whilst, time usually just advances, if programs are running on different computers time should advance even if you switch from one computer to another. However, if one system is ahead of the other, switching between these systems would cause time to jump forward and back.

As a consequence, networks may run their own time, but as soon as you connect to the Internet, effects become visible. Just Email messages arrive before they were sent, and are even replied to before they were mailed!

Whilst this sort of problem may seem innocuous when it comes to receiving email, however, in some environments a lack of synchronisation can have disastrous results this is why air traffic control was one of the first applications for NTP.

NTP uses a single time source and distributes it amongst all devices on a network it does this by using an algorithm that works out how much to adjust a system clock to ensure synchronisation.

NTP works on a hierarchical basis to ensure there are no network traffic and bandwidth problems. It uses a single time source, normally UTC (coordinated universal time) and receives time requests from the machines on the top of the hierarch which then pass the time on further down the chain.

Most networks that utilise NTP will use a dedicated NTP time server to receive their UTC time signal. These can receive the time from the GPS network or radio transmissions broadcast by national physics laboratories. These dedicated NTP time servers are ideal as they receive time direct from an atomic clock source they are also secure as they are situated externally and therefore do not require interruptions in the network firewall.

NTP has been an astronomical success and is now used in nearly 99 per cent of time synchronisation devices and a version of it is included in most operating system packages.

NTP owes much of its success to the development and support it continues to receives nearly three decades after its inception which is why t is now used throughout the world in NTP servers.

Security and Synchronisation

  |   By

Security is often the most worried about aspect of running a computer network. Keeping unwanted users out whilst allowing freedom for users to access network applications is a full time job. Yet many network administrators fail to pay any heed to one of the most crucial aspects of keeping a network secure – time synchronisation.

Time synchronisation is not just important but it is vital in network security and yet it is staggering how many network administrators disregard it or fail to have their systems properly synchronised.

Ensuring the same and correct time (ideally UTC – Coordinated Universal Time) is on each network machine is essential as any time delays can be an open door for hackers to slip in undetected and what is worse if machines do get hacked are not running the same time it can be near impossible to detect, repair and get the network back up and running.

Yet time synchronisation is one of the simplest of tasks to employ, particularly as most operating systems have a version of the time protocol NTP (Network Time Protocol).

Finding an accurate time server can sometimes be problematic particularly if the network is synchronised across the internet as this can raise other security issues such as having an open port in the firewall and a lack of possible authentication by NTP to ensure the signal is trusted.

However, an easier method for time synchronisation, being both accurate and secure, is to use a dedicated NTP time server (also known as network time server). An NTP server will take a time signal direct from GPS or from the national time and frequency radio transmissions put out by organisations such as NIST or NPL.

By using a dedicated NTP server the network will become a lot securer and if the worst does happen and the system does fall victim to malicious users then having a synchronised network will ensure it is easily solvable.