Security News > 2020 > October > Internet Engineering Task Force Proposes Standard for Network Time Security
The Internet Engineering Task Force has published RFC8915, its proposed standard for network time security.
The existing issues affecting basic NTP include DDoS amplification, packet manipulation, and replay attacks - the last two being implemented by man-in-the-middle attacks that can forge messages and falsify the time.
"Certain nonstandard and/or deprecated features of the Network Time Protocol enable clients to send a request to a server that causes the server to send a response much larger than the request," notes the standard.
Netnod is a Swedish firm that provides NTP, NTS and Precision Time Protocol services.
"Netnod is proud to have been at the forefront of developing the NTS standard and implementations. We will continue to focus on services such as NTS to make the Internet as secure and robust as possible for everyone."