On Borrowed Time: Measurement-Informed Understanding of the NTP Pool's Robustness to Monopoly Attacks
Robert Beverly
Network and Distributed System Security (NDSS) Symposium 2026 · Day 3 · Network Security
This research presents the first exhaustive characterization of the **NTP pool** -- the volunteer-based, crowdsourced time distribution system that serves as critical internet infrastructure for millions of embedded and IoT devices worldwide. By reverse-engineering the NTP pool's web APIs, the researchers were able to completely enumerate all servers, accounts, and country zones without the noisy DNS-based enumeration methods used in prior work.
AI review
A thorough measurement study of the NTP pool that reveals alarming monopolization potential -- 10 servers can dominate most countries' time infrastructure. The API reverse engineering for complete enumeration is clever, and the live validation on Hungary's IPv6 zone proves the attack works in practice. However, this is fundamentally a measurement and infrastructure analysis paper rather than an exploitation paper, and the actual time-shifting attack is left to prior work.