Iyo IETF (Internet Engineering Task Force) komiti, iyo inovandudza Internet protocol uye zvivakwa,
Kumisikidza NTS inhanho yakakosha yekuvandudza chengetedzo yenguva yekuyananisa masevhisi uye kudzivirira vashandisi kubva pakurwiswa kunotevedzera sevha yeNTP iyo mutengi anobatana nayo. Kubata kwevanorwisa kuisa nguva isiriyo kunogona kushandiswa kukanganisa kuchengetedzeka kwemamwe maprotocol anoziva nguva, seTLS. Semuyenzaniso, kushandura nguva kunogona kutungamirira mukududzirwa zvisizvo kwedata nezve huchokwadi hwezvitupa zveTLS. Kusvika ikozvino, NTP uye symmetric encryption yenzira dzekutaurirana hazvina kuita kuti zvikwanisike kuvimbisa kuti mutengi anopindirana nechinangwa uye kwete spoofed NTP server, uye kiyi yechokwadi haina kupararira nekuti yakanyanya kuomarara kugadzirisa.
NTS inoshandisa zvinhu zveruzhinji kiyi zvivakwa (PKI) uye inobvumira kushandiswa kweTLS neAEAD (Authenticated Encryption with Associated Data) encryption kuti cryptographically kudzivirira mutengi-server kudyidzana vachishandisa NTP (Network Time Protocol). NTS inosanganisira maviri akapatsanurwa maprotocol: NTS-KE (NTS Kiyi Kugadzwa kwekubata kwekutanga kutendeseka uye kiyi nhaurirano pamusoro peTLS) uye NTS-EF (NTS Extension Fields, ine basa rekunyorera uye kutendeseka kweiyo nguva yekuyananisa chikamu). NTS inowedzera akati wandei akatambanudzwa kumapaketi eNTP uye inochengeta ruzivo rwese rwenyika chete kudivi remutengi uchishandisa cookie mechanism. Network port 4460 yakagoverwa kugadzirisa zvinongedzo kuburikidza neNTS protocol.
Kuitwa kwekutanga kweiyo yakamisikidzwa NTS kunotsanangurwa mukuburitswa kwazvino kuburitswa
Source: opennet.ru