Which feature verifies the trustworthiness of NTP responses?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Enhance your networking knowledge! Tackle our Transport Layer Protocols and Functions Test featuring flashcards and multiple-choice questions with insightful hints and explanations. Elevate your exam readiness now!

Multiple Choice

Which feature verifies the trustworthiness of NTP responses?

Explanation:
Network Time Security provides authentication and integrity for NTP responses, ensuring you can trust the time data you receive. NTP by itself can be spoofed or tampered with, so a client could be led to believe an incorrect time if an attacker interferes with the messages. NTS solves this by first performing a key establishment (NTS-KE) to obtain cryptographic keys, then using those keys to protect subsequent NTP traffic with authenticated encryption and MACs. This lets the client verify that each NTP reply actually came from the trusted server and has not been altered in transit, restoring trust in the time source. DNSSEC, DoH, and PTP don’t provide this specific protection for NTP responses. DNSSEC secures DNS answers, DoH hides DNS traffic, and PTP is a separate time-sync protocol used mainly in local networks for high-precision timing. None of these verify the trustworthiness of NTP responses in the way NTS does.

Network Time Security provides authentication and integrity for NTP responses, ensuring you can trust the time data you receive. NTP by itself can be spoofed or tampered with, so a client could be led to believe an incorrect time if an attacker interferes with the messages. NTS solves this by first performing a key establishment (NTS-KE) to obtain cryptographic keys, then using those keys to protect subsequent NTP traffic with authenticated encryption and MACs. This lets the client verify that each NTP reply actually came from the trusted server and has not been altered in transit, restoring trust in the time source.

DNSSEC, DoH, and PTP don’t provide this specific protection for NTP responses. DNSSEC secures DNS answers, DoH hides DNS traffic, and PTP is a separate time-sync protocol used mainly in local networks for high-precision timing. None of these verify the trustworthiness of NTP responses in the way NTS does.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy