34,00 €*
Versandkostenfrei per Post / DHL
Aktuell nicht verfügbar
Learn the risks associated with Network Time Protocol (NTP) security and how to minimize those risks in daily deployment. Disruption of NTP services can interrupt communication between servers on the network and take an entire network offline.
Beyond disrupting communication, flaws in the NTP daemon itself can make servers vulnerable to external attack-attacks that often go unnoticed. NTP is being used more frequently in Distributed Denial of Service (DDoS) attacks. It is a User Datagram Protocol (UDP) with encryption schemes that are not often used or are poorly implemented, making it susceptible to spoofing.
Despite all of the security challenges, the fact is that NTP is critical to most modern networks. It is one of those "set it and forget it" protocols that network administrators and even security professionals don't understand in depth. However, an attacker who does understand the security flaws can wreak havoc on an insecure network.
NTP Security: A Quick-Start Guide provides a deeper understanding of the protocol itself and how to deploy a strategy using the protocol throughout a network in a secure manner. Your security team will be able to provide better guidance to the system and network teams who will then be able to better manage the day-to-day implementation.
This succinct resource offers practical guidance to an underserved topic (actually, not served at all). Coverage includes:
- An understanding of NTP and the importance of time synchronization in modern networks Issues in NTP security, including an analysis of NTP traffic
- A review of the vulnerabilities and flaws in the protocol Practical solutions for securing NTP and building a robust infrastructure
- Effective alternatives to NTP
Learn the risks associated with Network Time Protocol (NTP) security and how to minimize those risks in daily deployment. Disruption of NTP services can interrupt communication between servers on the network and take an entire network offline.
Beyond disrupting communication, flaws in the NTP daemon itself can make servers vulnerable to external attack-attacks that often go unnoticed. NTP is being used more frequently in Distributed Denial of Service (DDoS) attacks. It is a User Datagram Protocol (UDP) with encryption schemes that are not often used or are poorly implemented, making it susceptible to spoofing.
Despite all of the security challenges, the fact is that NTP is critical to most modern networks. It is one of those "set it and forget it" protocols that network administrators and even security professionals don't understand in depth. However, an attacker who does understand the security flaws can wreak havoc on an insecure network.
NTP Security: A Quick-Start Guide provides a deeper understanding of the protocol itself and how to deploy a strategy using the protocol throughout a network in a secure manner. Your security team will be able to provide better guidance to the system and network teams who will then be able to better manage the day-to-day implementation.
This succinct resource offers practical guidance to an underserved topic (actually, not served at all). Coverage includes:
- An understanding of NTP and the importance of time synchronization in modern networks Issues in NTP security, including an analysis of NTP traffic
- A review of the vulnerabilities and flaws in the protocol Practical solutions for securing NTP and building a robust infrastructure
- Effective alternatives to NTP
Allan Liska is a Consulting Systems Engineer with FireEye, and has more than 16 years of experience in the world of information security. He has worked both as a security practitioner and an ethical hacker, so he is familiar with both sides of the security aisle and, through his work at Symantec and iSIGHT Partners, has helped countless organizations improve their security posture using more effective intelligence. In addition to security experience, Mr. Liska also authored The Practice of Network Security, Building an Intelligence-Led Security Program, and contributed the security-focused chapters to The Apache Administrators Handbook.
Network Time Protocol (NTP) attacks are a growing threat and security teams will have the information they need to be ahead of the curve
Practical guidance is given to configure a more secure NTP across multiple platforms
Alternatives to NTP are discussed, including finding a better, more secure, solution to time synchronization
Chapter 1. Understanding NTP.- Chapter 2. Issues in NTP Security.- Chapter 3. Vulnerabilities in NTP.- Chapter 4. Securing NTP.- Chapter 5. Building Robust NTP Infrastructure.- Chapter 6. Alternatives to NTP.
| Erscheinungsjahr: | 2016 |
|---|---|
| Genre: | Informatik |
| Rubrik: | Naturwissenschaften & Technik |
| Medium: | Taschenbuch |
| Inhalt: |
xv
90 S. 3 s/w Illustr. 90 p. 3 illus. |
| ISBN-13: | 9781484224113 |
| ISBN-10: | 1484224116 |
| Sprache: | Englisch |
| Herstellernummer: | 978-1-4842-2411-3 |
| Einband: | Kartoniert / Broschiert |
| Autor: | Liska, Allan |
| Hersteller: |
Apress
Apress L.P. |
| Maße: | 237 x 156 x 12 mm |
| Von/Mit: | Allan Liska |
| Erscheinungsdatum: | 12.12.2016 |
| Gewicht: | 0,187 kg |
Allan Liska is a Consulting Systems Engineer with FireEye, and has more than 16 years of experience in the world of information security. He has worked both as a security practitioner and an ethical hacker, so he is familiar with both sides of the security aisle and, through his work at Symantec and iSIGHT Partners, has helped countless organizations improve their security posture using more effective intelligence. In addition to security experience, Mr. Liska also authored The Practice of Network Security, Building an Intelligence-Led Security Program, and contributed the security-focused chapters to The Apache Administrators Handbook.
Network Time Protocol (NTP) attacks are a growing threat and security teams will have the information they need to be ahead of the curve
Practical guidance is given to configure a more secure NTP across multiple platforms
Alternatives to NTP are discussed, including finding a better, more secure, solution to time synchronization
Chapter 1. Understanding NTP.- Chapter 2. Issues in NTP Security.- Chapter 3. Vulnerabilities in NTP.- Chapter 4. Securing NTP.- Chapter 5. Building Robust NTP Infrastructure.- Chapter 6. Alternatives to NTP.
| Erscheinungsjahr: | 2016 |
|---|---|
| Genre: | Informatik |
| Rubrik: | Naturwissenschaften & Technik |
| Medium: | Taschenbuch |
| Inhalt: |
xv
90 S. 3 s/w Illustr. 90 p. 3 illus. |
| ISBN-13: | 9781484224113 |
| ISBN-10: | 1484224116 |
| Sprache: | Englisch |
| Herstellernummer: | 978-1-4842-2411-3 |
| Einband: | Kartoniert / Broschiert |
| Autor: | Liska, Allan |
| Hersteller: |
Apress
Apress L.P. |
| Maße: | 237 x 156 x 12 mm |
| Von/Mit: | Allan Liska |
| Erscheinungsdatum: | 12.12.2016 |
| Gewicht: | 0,187 kg |
Ähnliche Produkte
Lieferzeit 1-2 Wochen
Aktuell nicht verfügbar
Aktuell nicht verfügbar
Lieferzeit 4-7 Werktage
Aktuell nicht verfügbar
Lieferzeit 2-3 Wochen
Aktuell nicht verfügbar
Lieferzeit 4-7 Werktage