This event has ended. Create your own event → Check it out
This event has ended. Create your own
View analytic
Wednesday, March 30 • 11:20am - 12:10pm
Security Evaluation of NTP - Matthew Van Gundy, Cisco

Sign up or log in to save this to your schedule and see who's attending!

Accurate time keeping is critical to the safe operation of many Internet systems.  A vast number of Internet systems use the Network Time Protocol (NTP) to synchronize their system clocks making the NTP reference implementation de facto critical infrastructure.

In late 2014 and early 2015, the disclosure of several serious vulnerabilities in the Network Time Protocol daemon (ntpd) raised awareness of potential problems with NTP.  As a member of the Linux Foundation Core Infrastructure Initiative (CII) Steering Group, Cisco
contributed to the CII effort by performing a security evaluation of ntpd.

In this talk, we'll discuss the results of our evaluation: the vulnerabilities we found, areas of strength and weakness, recommendations for hardening your NTP infrastructure, and possible directions for future work.

avatar for Matthew Van Gundy

Matthew Van Gundy

Technical Leader, Cisco Systems, Inc
I'm a Technical Leader in the Advanced Security Initiatives Group | at Cisco Systems where my team members and I work to identify and | mitigate security weaknesses and vulnerabilities in Cisco | products and services. | | I received my Ph.D. in Computer Science at the University of | California, Davis where my research focused on a number of aspects | of computer security including privacy preserving technologies, | censorship... Read More →

Wednesday March 30, 2016 11:20am - 12:10pm
Alpine Ballroom A

Attendees (15)