The Story
Keeping track of time is critical for servers and clients on the Internet. NTP is how the Internet keeps track of time. Since NTP implementations are so critical and they're on the network, it's important that they be secure.
The most popular NTP implementations today are written in C and thus not memory safe. We're aiming to fix that.
What We've Done
Work on the client, server, and NTS support is complete and ready for production deployment.
The work was done by Tweede golf under contract with ISRG's Prossimo project.
A third party security audit performed by Radically Open Security was completed.
What's Next
Prossimo's work here is done. Tweede Golf's Project Pendulum is the new home for ntpd-rs, we thank them for all of their great work!
Packages
Links
More from the Prossimo blog
More Memory Safety for Let’s Encrypt: Deploying ntpd-rs
NTP is critical to how TLS works, and now it’s memory safe at Let’s Encrypt.
Memory Safe Network Time (NTP) Has New Home, Seeks Early Adopters
Bringing more safety to a critical network-based service.
A Memory Safe Implementation of the Network Time Protocol
NTP is critical to the Internet’s functioning and we’ve collaborated with Tweede golf to build a high-performance, memory safe implementation.
Funders
