If someone sets up a fake NTP server, would they be able to replicate time.google.com’s IP address?
I can set any IP address I want on my local network 
I’m glad I decided to make it open source.
Doesn't that make it even easier for anyone to decrypt anything without waiting for a specific time server answer?