# Time Synchronization and NTP Security One-sentence definition: Keep clocks accurate and secure to ensure reliable logs and protocols. ## Key Facts - Tiered NTP hierarchy; authenticated NTP where available; restrict queries. - Monitor skew and drift; alert on outliers; redundant time sources. - Protect time servers (no internet exposure without controls). - **Verify:** check official (ISC)² CBK and current exam outline. ## Exam Relevance - Choose NTP hygiene to maintain forensic timelines. **Mnemonic:** “**Right time, right truth**.” ## Mini Scenario Q: SIEM correlation broken—root cause? A: Clock skew; fix NTP and re-ingest. ## Revision Checklist - Two NTP protections. - Monitoring item. - Exposure risk. ## Related [[Log Integrity Time Sync and Retention]] · [[Security Operations Center (SOC) Fundamentals]] · [[MITRE ATT&CK Mapping for Testing]] · [[DNS Security Operations (Logging RPZ DNSSEC)]] · [[Domain 7 - Index]]