Professional Documents
Culture Documents
Karen O’Donoghue
Director, Internet Trust Technology
odonoghue@isoc.org
Presentation title – Client name
Humans have always measured time…
2
Accurate time is vitally important.
3
Where does accurate time come from? UTC
Time Dissemination
• Distribution of time and Time
frequency information (e.g. GNSS) Dissemination
5
Security has not been a high
priority of the time
synchronization community in the past…
6
Attacks are occurring…
7
Vulnerabilities are being discovered…
8
Multiple sources of problems…
Lack of adequate
security
mechanisms
9
And yet…
Until 2020!
10
IETF approach to the problem…
Flaws in
configuration and
NTP Best Current Practice (RFC 8633)
implementation of
the protocol.
Lack of adequate
Network Time Security (NTS)
security mechanisms
11
Network Time Security (NTS)
13
It’s time to focus on the road to deployment…
14
Steps on the road to NTS deployment
Interoperability Testing
Commercial products
Preliminary deployments
15
Internet Society Time Security Project
Developing NTS
•Lessons Learned and BCPs
deployment
•Monitoring Tools
guidance
16
It is Time to Act!
Join us:
• Send email to odonoghue@isoc.org
Follow us:
• https://www.internetsociety.org/issues/time-
security/
Any questions?
17
A few resources
https://datatracker.ietf.org/group/ntp/about/
https://www.internetsociety.org/blog/2017/09/ti
me-synchronization-security-trust/
https://www.internetsociety.org/resources/doc/2
017/new-security-mechanisms-network-time-
synchronization-protocols/
https://www.netnod.se/time-and-
frequency/network-time-security
https://www.netnod.se/time-and-
frequency/how-to-use-nts
18
Thank you. Rue Vallin 2
CH-1201 Geneva
Switzerland
11710 Plaza America Drive
Suite 400
Reston, VA 20190, USA
odonoghue@isoc.org
internetsociety.org
@internetsociety
19