{"id":967,"date":"2008-10-25T08:30:21","date_gmt":"2008-10-25T08:30:21","guid":{"rendered":"https:\/\/www.galsys.co.uk\/news\/?p=967"},"modified":"2011-11-02T16:48:31","modified_gmt":"2011-11-02T16:48:31","slug":"network-time-protocol-security","status":"publish","type":"post","link":"https:\/\/www.galsys.co.uk\/news\/network-time-protocol-security\/","title":{"rendered":"Network Time Protocol Security"},"content":{"rendered":"<p>The protocol used by most network time servers is <a href=\"https:\/\/www.ntp.org\">NTP<\/a> (Network Time Protocol) and has been around for quite a long time yet it is constantly being updated and developed offering ever higher levels of accuracy and security.<\/p>\n<p>Synchronisation is an essential part of modern computer networks and is essential for keeping a system secure. Without NTP and time synchronisation a computer network can be vulnerable o malicious attacks and even fraud.<\/p>\n<p>Even with a perfectly synchronised network security can still be an issue but there are a few key steps that can be taken to ensure your network is kept secure.<\/p>\n<p>Always use a dedicated <a href=\"https:\/\/www.galsys.co.uk\/categories\/network-time-server.html\">Network Time Server<\/a>. Whilst Internet time sources are common place they are a time source situated outside the firewall. This will have obvious security draw backs as a malicious user can take advantage of the \u2018hole\u2019 left in your firewall to communicate with the NTP server. A dedicated <a href=\"https:\/\/www.galsys.co.uk\/categories\/ntp-server.html\">NTP server<\/a> will receive a time signal from an external source.<\/p>\n<p>Normally these types of dedicated time servers will utilise either the GPS network (Global Positioning System) or specialist national time and frequency radio transmissions. Both these time sources offer an accurate and reliable method of UTC time (coordinated universal time) whilst also being secure.<\/p>\n<p>Another way to ensure security is to take advantage of NTP\u2019s built-in security mechanism \u2013 authentication. Authentication is a set of encrypted keys that are used to establish if the time source is coming from where it is claiming to come from.<\/p>\n<p>Authentication verifies that each timestamp has come from the intended time reference by analysing a set of agreed encryption keys that are sent along with the time information. NTP, using Message Digest encryption (MD5) to un-encrypt the key, analyses it and confirms whether it has come from the trusted time source by verifying it against a set of trusted keys.<\/p>\n<p>Trusted authentication keys are listed in the NTP server configuration file (ntp.conf) and are stored in the ntp.keys file. The key file is normally very large but trusted keys tell the NTP server which set of subset of keys is currently active and which are not. Different subsets can be activated without editing the ntp.keys file using the trusted-keys config command.<\/p>\n<p>Authentication is highly important in protecting a <a href=\"https:\/\/www.atomic-clock.galleon.eu.com\/\">NTP server<\/a> from malicious attack; however Internet time sources can\u2019t be authenticated which doubles the risk of using an Internet based time reference.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The protocol used by most network time servers is NTP (Network Time Protocol) and has been around for quite a long time yet it is constantly being updated and developed offering ever higher levels of accuracy and security. Synchronisation is an essential part of modern computer networks and is essential for keeping a system secure.&hellip;<\/p>\n<p><a class=\"btn btn-primary\" href=\"https:\/\/www.galsys.co.uk\/news\/network-time-protocol-security\/\">Continue reading <i class=\"fas fa-arrow-right\"><\/i><\/a><\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3,8,9,12,13],"tags":[19,20,207,126,25,68,26,27,28,204,29,30,205,34,35],"class_list":["post-967","post","type-post","status-publish","format-standard","hentry","category-advanced-ntp","category-ntp-configuration","category-ntp-server-2","category-time-server","category-time-synchronisation","tag-gps-ntp-server","tag-gps-ntp-time-server","tag-gps-time-server","tag-linu","tag-network-time-server","tag-ntp","tag-ntp-clock","tag-ntp-gps-server","tag-ntp-gps-time-server","tag-ntp-server-2","tag-ntp-servers","tag-ntp-time-server","tag-time-server","tag-windows-ntp-server","tag-windows-server-2008"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.3 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Network Time Protocol Security - Galleon Systems<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.galsys.co.uk\/news\/network-time-protocol-security\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Network Time Protocol Security - Galleon Systems\" \/>\n<meta property=\"og:description\" content=\"The protocol used by most network time servers is NTP (Network Time Protocol) and has been around for quite a long time yet it is constantly being updated and developed offering ever higher levels of accuracy and security. Synchronisation is an essential part of modern computer networks and is essential for keeping a system secure.&hellip;Continue reading\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.galsys.co.uk\/news\/network-time-protocol-security\/\" \/>\n<meta property=\"og:site_name\" content=\"Galleon Systems\" \/>\n<meta property=\"article:published_time\" content=\"2008-10-25T08:30:21+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2011-11-02T16:48:31+00:00\" \/>\n<meta name=\"author\" content=\"Stuart\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@GalleonSystems\" \/>\n<meta name=\"twitter:site\" content=\"@GalleonSystems\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Stuart\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.galsys.co.uk\\\/news\\\/network-time-protocol-security\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.galsys.co.uk\\\/news\\\/network-time-protocol-security\\\/\"},\"author\":{\"name\":\"Stuart\",\"@id\":\"https:\\\/\\\/www.galsys.co.uk\\\/news\\\/#\\\/schema\\\/person\\\/d0bc412239981453c0bcd039a511f32a\"},\"headline\":\"Network Time Protocol Security\",\"datePublished\":\"2008-10-25T08:30:21+00:00\",\"dateModified\":\"2011-11-02T16:48:31+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.galsys.co.uk\\\/news\\\/network-time-protocol-security\\\/\"},\"wordCount\":410,\"keywords\":[\"gps ntp server\",\"gps ntp time server\",\"gps time server\",\"linu\",\"network time server\",\"ntp\",\"ntp clock\",\"ntp gps server\",\"ntp gps time server\",\"ntp server\",\"ntp servers\",\"ntp time server\",\"time server\",\"windows ntp server\",\"windows server 2008\"],\"articleSection\":[\"advanced NTP\",\"NTP configuration\",\"ntp server\",\"time server\",\"Time Synchronisation\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.galsys.co.uk\\\/news\\\/network-time-protocol-security\\\/\",\"url\":\"https:\\\/\\\/www.galsys.co.uk\\\/news\\\/network-time-protocol-security\\\/\",\"name\":\"Network Time Protocol Security - Galleon Systems\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.galsys.co.uk\\\/news\\\/#website\"},\"datePublished\":\"2008-10-25T08:30:21+00:00\",\"dateModified\":\"2011-11-02T16:48:31+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/www.galsys.co.uk\\\/news\\\/#\\\/schema\\\/person\\\/d0bc412239981453c0bcd039a511f32a\"},\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.galsys.co.uk\\\/news\\\/network-time-protocol-security\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.galsys.co.uk\\\/news\\\/network-time-protocol-security\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.galsys.co.uk\\\/news\\\/network-time-protocol-security\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.galsys.co.uk\\\/news\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Network Time Protocol Security\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.galsys.co.uk\\\/news\\\/#website\",\"url\":\"https:\\\/\\\/www.galsys.co.uk\\\/news\\\/\",\"name\":\"Galleon Systems\",\"description\":\"Sales: 0121 608 7230\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.galsys.co.uk\\\/news\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.galsys.co.uk\\\/news\\\/#\\\/schema\\\/person\\\/d0bc412239981453c0bcd039a511f32a\",\"name\":\"Stuart\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/fe4598bc8745112a8106520efd95cbf602b09ebe2ae1081d18f9c529f4707d72?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/fe4598bc8745112a8106520efd95cbf602b09ebe2ae1081d18f9c529f4707d72?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/fe4598bc8745112a8106520efd95cbf602b09ebe2ae1081d18f9c529f4707d72?s=96&d=mm&r=g\",\"caption\":\"Stuart\"},\"sameAs\":[\"https:\\\/\\\/www.galsys.co.uk\"],\"url\":\"https:\\\/\\\/www.galsys.co.uk\\\/news\\\/author\\\/stuart\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Network Time Protocol Security - Galleon Systems","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.galsys.co.uk\/news\/network-time-protocol-security\/","og_locale":"en_US","og_type":"article","og_title":"Network Time Protocol Security - Galleon Systems","og_description":"The protocol used by most network time servers is NTP (Network Time Protocol) and has been around for quite a long time yet it is constantly being updated and developed offering ever higher levels of accuracy and security. Synchronisation is an essential part of modern computer networks and is essential for keeping a system secure.&hellip;Continue reading","og_url":"https:\/\/www.galsys.co.uk\/news\/network-time-protocol-security\/","og_site_name":"Galleon Systems","article_published_time":"2008-10-25T08:30:21+00:00","article_modified_time":"2011-11-02T16:48:31+00:00","author":"Stuart","twitter_card":"summary_large_image","twitter_creator":"@GalleonSystems","twitter_site":"@GalleonSystems","twitter_misc":{"Written by":"Stuart","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.galsys.co.uk\/news\/network-time-protocol-security\/#article","isPartOf":{"@id":"https:\/\/www.galsys.co.uk\/news\/network-time-protocol-security\/"},"author":{"name":"Stuart","@id":"https:\/\/www.galsys.co.uk\/news\/#\/schema\/person\/d0bc412239981453c0bcd039a511f32a"},"headline":"Network Time Protocol Security","datePublished":"2008-10-25T08:30:21+00:00","dateModified":"2011-11-02T16:48:31+00:00","mainEntityOfPage":{"@id":"https:\/\/www.galsys.co.uk\/news\/network-time-protocol-security\/"},"wordCount":410,"keywords":["gps ntp server","gps ntp time server","gps time server","linu","network time server","ntp","ntp clock","ntp gps server","ntp gps time server","ntp server","ntp servers","ntp time server","time server","windows ntp server","windows server 2008"],"articleSection":["advanced NTP","NTP configuration","ntp server","time server","Time Synchronisation"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.galsys.co.uk\/news\/network-time-protocol-security\/","url":"https:\/\/www.galsys.co.uk\/news\/network-time-protocol-security\/","name":"Network Time Protocol Security - Galleon Systems","isPartOf":{"@id":"https:\/\/www.galsys.co.uk\/news\/#website"},"datePublished":"2008-10-25T08:30:21+00:00","dateModified":"2011-11-02T16:48:31+00:00","author":{"@id":"https:\/\/www.galsys.co.uk\/news\/#\/schema\/person\/d0bc412239981453c0bcd039a511f32a"},"breadcrumb":{"@id":"https:\/\/www.galsys.co.uk\/news\/network-time-protocol-security\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.galsys.co.uk\/news\/network-time-protocol-security\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.galsys.co.uk\/news\/network-time-protocol-security\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.galsys.co.uk\/news\/"},{"@type":"ListItem","position":2,"name":"Network Time Protocol Security"}]},{"@type":"WebSite","@id":"https:\/\/www.galsys.co.uk\/news\/#website","url":"https:\/\/www.galsys.co.uk\/news\/","name":"Galleon Systems","description":"Sales: 0121 608 7230","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.galsys.co.uk\/news\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.galsys.co.uk\/news\/#\/schema\/person\/d0bc412239981453c0bcd039a511f32a","name":"Stuart","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/fe4598bc8745112a8106520efd95cbf602b09ebe2ae1081d18f9c529f4707d72?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/fe4598bc8745112a8106520efd95cbf602b09ebe2ae1081d18f9c529f4707d72?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/fe4598bc8745112a8106520efd95cbf602b09ebe2ae1081d18f9c529f4707d72?s=96&d=mm&r=g","caption":"Stuart"},"sameAs":["https:\/\/www.galsys.co.uk"],"url":"https:\/\/www.galsys.co.uk\/news\/author\/stuart\/"}]}},"_links":{"self":[{"href":"https:\/\/www.galsys.co.uk\/news\/wp-json\/wp\/v2\/posts\/967","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.galsys.co.uk\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.galsys.co.uk\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.galsys.co.uk\/news\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.galsys.co.uk\/news\/wp-json\/wp\/v2\/comments?post=967"}],"version-history":[{"count":0,"href":"https:\/\/www.galsys.co.uk\/news\/wp-json\/wp\/v2\/posts\/967\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.galsys.co.uk\/news\/wp-json\/wp\/v2\/media?parent=967"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.galsys.co.uk\/news\/wp-json\/wp\/v2\/categories?post=967"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.galsys.co.uk\/news\/wp-json\/wp\/v2\/tags?post=967"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}