SNTP Security (Windows Embedded CE 6.0)

1/6/2010

Running SNTP has a potential security risk because this technology can be used to schedule events, manage security certificates and determine if a certificate has expired. Running SNTP on a public network may expose the device to the typical security concerns associated with networking.

Best Practices

Enable a firewall on your network device

For enterprise environments, Microsoft recommends the use of a network firewall with intrusion protection, such as Microsoft Internet Security and Acceleration (ISA) Server. For more information, visit this Microsoft Web site.

For non-enterprise environments or for added protection, Microsoft recommends that you include and configure the Windows Embedded CE Firewall on the network device. For more information about the Windows Embedded CE IP Firewall and how to configure it, see Firewall.

For information about configuring the IP firewall to properly manage traffic destined for the internal network, see IP Firewall Reference.

Default Registry Settings

You should be aware of the registry settings that impact security. If a value has security implications you will find a Security Note in the registry settings documentation.

For SNTP registry information, see SNTP Registry Settings.

See Also

Other Resources

Simple Network Time Protocol (SNTP)
Enhancing the Security of a Device