基于NTP的信息网络时间同步安全分析与建议

网络时间同步技术在多个信息化领域得到了广泛的应用,近年针对网络时间同步的攻击行为时有发生,有必要对典型攻击行为、安全机制和安全风险进行分析,提升信息网络的安全性能。本文描述了典型领域时间失效造成可能造成的后果,分析了针对网络时间同步(NTP)的典型攻击手段和行为,提出了网络时间部署时的安全建议。

Network time synchronization technology has been widely used in many information fields. In recent years, attacks of network time synchronization occur frequently. It is necessary to analyze typical attack behaviors, security mechanisms and security risks to improve the security performance of information networks. This paper describes the possible consequences of time failure in typical information fields, analyses attack methods and behaviors of network time synchronization (NTP), and puts forward security suggestions for network time synchronization deployment.