A security administrator is implementing a SIEM and needs to ensure events can be compared against each other based on when the events occurred and were collected.
Which of the following does the administrator need to implement to ensure this can be accomplished?
A . TOTP
B . TKJP
C . NTP
D . HOTP
Answer: C