Keeping Your Network Secure A Beginners Guide

  |   By

Network security is vitally important for most business systems. Whilst email viruses and denial-of-service attacks (DoS attack) may cause us headaches on our home systems, for businesses, these sorts of attacks can cripple a network for days – costing businesses hundreds of millions each year in lost revenue.

Keeping a network secure to prevent this type of malicious attack is usually of paramount importance for network administrators, and while most invest heavily in some forms of security measures there is often vulnerabilities inadvertently left exposed.

Firewalls are the best place to begin when you are trying to develop a secure network. A firewall can be implemented in either hardware or software, or most commonly a combination of both. Firewalls are used to prevent unauthorized users from accessing private networks connected to the Internet, especially local intranets. All traffic entering or leaving the intranet pass through the firewall, which examines each message and blocks those that do not meet the specified criteria.

Anti-virus software works in two ways. Firstly it acts similarly to a firewall by blocking anything that is identified in its database as possibly malicious (viruses, Trojans, spyware etc). Secondly Anti-virus software is used to detect, and remove existing malware on a network or workstation.

One of the most over-looked aspects of network security is time synchronization. Network administrators either fail to realise the importance of synchronization between all devices on a network. Failing to synchronize a network is often a common security issue. Not only can malicious users take advantage of computers running at different times but if a network is struck by an attack, identifying and rectifying the problem can be near impossible if every device is running on a different time.

Even when a network administrator is aware of the importance of time synchronization they often make a common security mistake when attempting to synchronize their network. Instead of investing in a dedicated time server that receives a secure source of UTC (Coordinated Universal Time) externally from their network using atomic clock sources like GPS, some network administrators opt to use a shortcut and use a source of Internet time.

There are two major security issues in using the Internet as a time server. Firstly, to allow the time code through the network a UDP port (123) has to be left open in the firewall. This can be taken advantage of by malicious users who can use this open port as an entrance to the network. Secondly, the inbuilt security measure used by the time protocol NTP, known as authentication, doesn’t work across the Internet which means that NTP has no guarantee the time signal is coming from where it is supposed to.

To ensure your network is secure isn’t it time you invested in an external dedicated NTP time server?

Reasons for Atomic Clock Timing

  |   By

Atomic clocks have, unbeknown to most people, revolutionised our technology. Many of the ways we trade, communicate and travel are now solely dependent on timing from atomic clock sources.

A global community often means that we have to communicate with people on other areas of the world and in other time zones. For this purpose a universal time zone was developed, known as UTC (Coordinated Universal Time), which is based on the time told by atomic clocks.

Atomic clocks are incredibly accurate, losing only a second in every hundred million years, which is staggering when you compare it to digital clocks that will lose that much time in a week.

But why do we need such accuracy in timekeeping? Much of the technology we employ in modern times is designed for global communication. The Internet is a good example. So much trade is done across continents in fields such as the stock exchange, seat reservation and online auctioning that exact time is crucial. Imagine you are bidding for an item on the Internet and you place a bid a few seconds before the end, the last and highest bid, would it be fair to lose the item because the clock on your ISP was a little fast and the computer therefore thought the bidding was over. Or what about seat reservation; if two people on different sides of the globe book a seat at the same time, who gets the seat. This is why UTC is vital for the internet.

Other technologies too such as global positioning and air traffic control are reliant on atomic clocks to provide accuracy (and in the case of air traffic is paramount for safety). Even traffic lights and speed cameras have to be calibrated with atomic clocks otherwise speeding ticket may not be valid as they could be questioned in court.

For computer systems NTP time servers are the preferred method for receiving and distributing a source of UTC time.

Time Server Basic Questions Answered

  |   By

What is a time server?

A time server is a device that receives and distributes a single time source across a computer network for the purposes of time synchronization. These devices are often referred to as a NTP server, NTP time server, network time server or dedicated time server.

And NTP?

NTP – Network Time Protocol is a set of software instructions designed to transfer and synchronize time across LANs (Local Area Network) or WANS (Wider Area Network). NTP is one of the oldest known protocols in use today and is by far the most commonly used time synchronization application.

What timescale should I use?

Coordinated Universal Time (UTC) is a global timescale based on the time told by atomic clocks. UTC doesn’t take into account time zones and is therefore ideal for network applications as in principle by synchronizing a network to UTC you are in effect synchronizing it to every other network that utilises UTC.

Where does a time server receive the time from?

A time server can utilise the time from anywhere such as a wrist watch or wall clock. However, any sensible network administrator would opt to use a source of UTC time to ensure the network is as accurate as possible. UTC is available from several ready sources. The most used is perhaps the internet. There are many ‘time servers’ on the internet that distribute UTC time. Unfortunately, many are not at all accurate an in using an internet time source you could be leaving the network vulnerable as malicious users can take advantage of the open port in the firewall where the timing information flows.

It is far better to use a dedicated NTP time server that receives the UTC time signal external to the network and firewall. The best methods for doing this is to either use the GPS signals transmitted from space or the national time and frequency transmissions broadcast by several countries in long wave.

Using a NTP Server in your Network

  |   By

The Network Time Protocol server is used in computer networks all over the world. It keeps an entire network’s systems and devices synchronised to the same time, normally a source of UTC (Coordinated Universal Time).

But is a NTP time server a necessary requirement and can your computer network survive without one?  The short answer is perhaps yes, a computer network can survive without a NTP server but the consequences can be dramatic.

Computers are meant to make our lives easier but any network administrator will tell you they can cause an awful amount of difficulty when they inevitably go wrong and without adequate time synchronisation, identifying an error and putting it right can be nearly impossible.

Computers use the time in the form of a timestamp as the only reference they have to distinguish between two events. Whilst computers and networks will still function without adequate synchronisation they are extremely vulnerable. Not only is locating and correcting errors extremely difficult if machines are not synchronised the network will be vulnerable to malicious users and viral software that can take advantage of it.

Furthermore, failing to synchronise to UTC can cause problems if the network is to communicate with other networks that are synchronised. Any time sensitive transactions could fail and the system could be open to potential fraud or other legal implications as proving the time of a transaction could be near impossible.

NTP servers are easy to install and receive the UTC time signal from either long wave transmissions or the GPS satellite network which they then distribute amongst the network’s machines. As a dedicated NTP time server operates externally to the network firewall it does so without compromising security.

Does my Computer Network Need to be Synchronized to an Atomic Clock?

  |   By

Time synchronization with network time protocol servers (NTP servers) is now a common consideration for network administrators, although, keeping exact time as told by an atomic clock on a computer network is often seen as unnecessary by some administrators

So what are the advantages of synchronizing to an atomic clock and is it necessary for your computer network?  Well the advantages of having accurate time synchronization are manifold but it is the disadvantages of not having it that are most important.

UTC time (Coordinated Universal Time) is a global timescale that is kept accurate by a constellation of atomic clocks from all over the world. It is UTC time that NTP time servers normally synchronize too. Not just that it provides a very accurate time reference to for computer networks to synchronize too but also it is used by millions of such networks across the globe therefore synchronizing to UTC is equivalent to synchronizing a computer network to every other network on the globe.

For security reasons it is imperative that all computer networks are synchronized to a stable time source. This doesn’t have to be UTC any single time source will do unless the network conducts time sensitive transactions with other networks then UTC becomes crucial otherwise errors may occur and these can vary from emails arriving before they were despatched to loss of data.  However, as UTC is governed by atomic clocks it makes it a highly accurate and auditable source of time.

Some network administrators take the shortcut of using an internet time server as a source of UTC time, forgoing the need for a dedicated NTP device. However, there are security risks in doing such a thing. Firstly, the inbuilt security mechanism used by NTP, called authentication, which confirms a time source is where and who it claims it is, is unavailable across the internet. Secondly, internet time servers are outside the firewall which means a UDP port needs to be left open to allow the time signal traffic. This can be manipulated by malicious users or viral programs.

A dedicated NTP time server is external to the network and receives the UTC atomic clock time from with either the GPS satellite system (global positioning system) or specialist radio transmissions broadcast by national physics laboratories.

Computers, Communications, Atomic Clocks and the NTP Server

  |   By

Time synchronisation on computer networks is often conducted by the NTP server. NTP time servers do not generate any timing information themselves but are merely methods of communicating with an atomic clock.

The precision of an atomic clock is widely talked about. Many of them can maintain time to nanosecond precision (billionths of a second) which means they won’t drift beyond a second in accuracy in hundreds of millions of years.

However, what is less understood and talked about is why we need to have such accurate clocks, after-all the traditional methods of keeping time such as mechanical clocks, electronic watches and using the rotation of the Earth to keep track of the days has proved reliable for thousands of years.

However, the development of digital technology over recent years has been nearly solely reliant on the ultra high precision of an atomic clock. One of the most widely used applications for atomic clocks is in the communications industry.

For several years now telephone calls taken in most industrialized countries are now transmitted digitally. However, most telephone wires are simply copper cables (although many telephone companies are now investing in fibre optics) which can only transmit one packet of information at a time. Yet telephone wires have to carry many conversations down the same wires at the same time.

This is achieved by computers at the exchanges switching from one conversation to another thousands of times every second and all this has to be controlled by nano-second precision otherwise  the calls will become out of step and get jumbled – hence the need for. Atomic clocks; mobile phones, digital TV and Internet communications use similar technology.

The accuracy of atomic clocks is also the basis for satellite navigation such as GPS (global positioning system). GPS satellites contain an onboard atomic clock that generates and transmits a time signal. A GPS receiver will receive four of theses signals and use the timing information to work out how long the transmissions took to reach it and therefore the position of the receiver on Earth.

Current GPS systems are accurate to a few metres but to give an indication of how vital precision is, a one second drift of a GPS clock could see the GPS receiver be inaccurate by over 100 thousand miles (because of the  huge distances light and therefore transmissions take in one second).

Many of these technologies that depend on atomic clocks utilise NTP servers as the preferred way to communicate with atomic clocks making the NTP time server one of the most crucial pieces of equipment in the communication industries.

Essentials of Traffic Management NTP Server

  |   By

There are now reportedly as many cars on the road as there are households and it only takes a brief journey during rush hour to realise that this claim is quite possibly true.

Congestion is a huge problem in our towns and cities and controlling this traffic and keeping it moving is one of the most essential aspects of reducing congestion. Safety is also a concern on our roads as the chances of all those vehicles travelling around without occasionally hitting each other is close to zero but the problem can be exemplified by poor traffic management.

When it comes to controlling the traffic flows of our cities there is no greater weapon than the humble traffic light. In some cities these devices are simple timed lights that stop traffic one way and allow it the other and vice versa.

However, the potential of how traffic lights can reduce congestion is now being realised and thanks to the millisecond synchronisation made possible with NTP servers is now drastically reducing congestion is some of the world’s major cities.

Rather than just simple timed segments of green, amber and red, traffic lights can respond to the needs of the road, allowing more cars through in one direction whilst reducing it in others. They can also be used in conjunction with each other allowing green light passageways for cars in main routes.

However, all this is only possible if the traffic lights system throughout the whole city is synchronised together and that can only be achieved with a NTP time server.

NTP (Network Time Protocol) is simply an algorithm that is widely used for the purposes of synchronisation. A NTP server will receive a time signal from a precise source (normally an atomic clock) and the NTP software then distributes it amongst all devices on a network (in this case the traffic lights).

The NTP server will continually check the time on each device and ensure it corresponds to the time signal, ensuring all devices (traffic lights) are perfectly synchronised together allowing the entire traffic light system to be managed as a single, flexible traffic management system rather than individual random lights.

The Concept of Time

  |   By

Time is something that we are all familiar with, it governs our lives even more so than money and we are constantly ‘at war’ with time as we battle to conduct our daily tasks before it runs out.

Yet when we start to examine time we discover that the concept of time we begin to realise that a non-ending linear distance between different events that we call time is purely a human invention.

Of course time exists but it certainly doesn’t follow the rules that the human concept of time does. It is not never ending or constant and changes and warps depending on speed of observers and the pull of gravity. In fact it was Einstein’s theories on relativity that gave human kind its first glimpse as to what time really is and how it affects our daily lives.

Einstein described a four-dimensional space-time, where time and space are inextricably woven together. This space-time gets warped and bent by gravity slowing time (or our perception of it). Einstein also, he suggested that the speed of light was the only constant in the universe and time altered depending on the relative speed to it.

When it comes to keeping track of time, Einstein’s theories can hamper any attempts at chronology. If both gravity and relative speed can affect time then it becomes difficult to measure time accurately.

We long ago abandoned the idea of using the celestial bodies and Earth’s rotation as a reference for our timekeeping as it was recognised in the early twentieth century that Earth’s rotation wasn’t at all accurate or reliable. Instead, we have depended n the oscillations of atoms to keep track of time. Atomic clocks measure atomic ticks of particular atoms and our concept of time is based on these ticks with every second being equal to over 9 billion oscillation of the caesium atom.

Even though we now base time on atomic oscillations, technologies such as GPS satellites (Global Positioning System) still have to counter the effects of lower gravity. In fact the effects of time can be monitored so accurately thanks to atomic clocks that those at different altitudes above sea level run at slightly differing speeds which has to be compensated for.

Atomic clocks can also be used to synchronise a computer network ensuring that they are running as accurately as possible. Most NTP time servers operate by utilising and distributing the time signal broadcast by an atomic clock (either through GPS or long wave) using the protocol NTP (Network Time Protocol).

Why the Need for NTP

  |   By

Network Time Protocol is an Internet protocol used to synchronize computer clocks to a stable and precise time reference. NTP was originally developed by Professor David L. Mills at the University of Delaware in 1985 and is an Internet standard protocol and is used in most network time servers, hence the name NTP server.

NTP was developed to solve the problem of multiple computers working together and having the different time. Whilst, time usually just advances, if programs are running on different computers time should advance even if you switch from one computer to another. However, if one system is ahead of the other, switching between these systems would cause time to jump forward and back.

As a consequence, networks may run their own time, but as soon as you connect to the Internet, effects become visible. Just Email messages arrive before they were sent, and are even replied to before they were mailed!

Whilst this sort of problem may seem innocuous when it comes to receiving email, however, in some environments a lack of synchronisation can have disastrous results this is why air traffic control was one of the first applications for NTP.

NTP uses a single time source and distributes it amongst all devices on a network it does this by using an algorithm that works out how much to adjust a system clock to ensure synchronisation.

NTP works on a hierarchical basis to ensure there are no network traffic and bandwidth problems. It uses a single time source, normally UTC (coordinated universal time) and receives time requests from the machines on the top of the hierarch which then pass the time on further down the chain.

Most networks that utilise NTP will use a dedicated NTP time server to receive their UTC time signal. These can receive the time from the GPS network or radio transmissions broadcast by national physics laboratories. These dedicated NTP time servers are ideal as they receive time direct from an atomic clock source they are also secure as they are situated externally and therefore do not require interruptions in the network firewall.

NTP has been an astronomical success and is now used in nearly 99 per cent of time synchronisation devices and a version of it is included in most operating system packages.

NTP owes much of its success to the development and support it continues to receives nearly three decades after its inception which is why t is now used throughout the world in NTP servers.

WWVB Explained

  |   By

The NTP time server (Network Time Protocol) is an essential tool for keeping networks synchronised. Without adequate synchronization, computer networks can be left vulnerable to security threats, data loss, fraud and may find it impossible to interact with other networks across the globe.

Computer networks are normally synchronised to the global timescale UTC (Coordinated Universal Time) enabling them to communicate efficiently with other networks also running UTC.

Whilst UTC time sources are available across the Internet these are not secure (being outside the firewall) and many are either too far away to provide adequate precision or are too inaccurate to begin with.

The most secure methods of receiving a UTC time source are to use a dedicated NTP Time Server. These devices can receive a secure and accurate time signal either the GPS network (Global Positioning System) available anywhere across the globe with a good view of the sky or through specialist radio transmission broadcast by national physics laboratories.

In the US the National Institute for Standards and Time (NIST) broadcast a time signal from near Fort Collins, Colorado. The signal, known as WWVB can be received all over North America (including many parts of Canada) and provides an accurate and secure method of receiving UTC.

As the signal is derived from atomic clocks situated at the Fort Collins site, WWVB is a highly accurate method of synchronising time and is also secure as a dedicated NTP time server acts as an external source.