Time Synchronisation

NTP servers are a vital tool for any business that needs to communicate globally and securely. NTP servers distribute Coordinated Universal Time (UTC), the world’s global timescale based on the highly accurate time told by atomic clocks.

NTP (Network Time Protocol) is the protocol used to distribute the UTC time across a network it also ensures all time is accurate and stable. However, there are many pitfalls in setting up a NTP network, here are the most common:

Using the correct time source

Attaining the most suitable time source is fundamental in setting up a NTP network. The time source is going to be distributed amongst all machines and devices on a network so it is vital that it is not only accurate but also stable and secure.

Many system administrators cut corners with a time source. Some will decide to use an Internet based time source although these are not secure as the firewall will require an opening and also many internet sources are either wholly inaccurate or too far away to afford any useful precision.

There are two highly secure methods of receiving a UTC time source. The first is to utilise the GPS network which although doesn’t transmit UTC, GPS time is based on International atomic time and is therefore easy for NTP to convert. GPS time signals are also readily available all over the globe.

The second method is to use the long wave radio signals broadcast by some national physical laboratories. These signals, however, are not available in every country and they have a finite range and are susceptible to interference and local topography.

Organising Strata

Stratum levels describe the distance between a device and the reference clock. For instance an atomic clock based in a physics laboratory or GPS satellite is a stratum 0 device. A stratum 1 device is a time server that receives time from a stratum 0 device so any dedicated NTP server is stratum 1. Devices that receive the time from the time server such as computers and routers are stratum 2 devices.

NTP can support up to 16 stratum levels and although there is a drop-off in accuracy the further away you go stratum levels are designed to allow huge networks to all receive a time from a single NTP server without causing network congestion or a blockage in the bandwidth.

When using a NTP server it is important to not overload the device with time requests so the network should be divided with a select number of machines taking requests from the NTP server (the NTP server manufacturer can recommend the number of requests it can handle). These stratum 2 devices can ten be used as time references for other devices (which become stratum 3 devices) on very large networks these can then be used as time references themselves.

Synchronising a network is often considered a headache by network administrators who fear that getting it wrong can lead to disastrous results and while there is no deny that a lack of synchronisation can cause unforeseen problems particularly with time sensitive transactions and security, perfect synchronisation is simple if these steps are followed:

1. Use a dedicated NTP server. The NTP server is a device that receives a single time source then distributes it amongst a network of computers using the protocol NTP (Network Time Protocol) one of the oldest Internet based protocols and by far the most widely used time synchronisation software. NTP is often packaged with modern operating systems such as Windows or Linux although there is no substitute for a dedicated NTP device.

2. Always use a UTC time source (Coordinated Universal Time). UTC is based on GMT (Greenwich Meantime) and International Atomic Time (TAI) and is highly accurate. UTC is used by computer networks all over the world ensuring that commerce and trade are all using the same timescale.

3. Use a secure an accurate time signal. Whilst time signals are available all over the Internet they are unpredictable in their accuracy and while some may offer decent enough precision an Internet time server is outside a networks firewall which if left open to receive a timecode will cause vulnerabilities in the security of the network. Either GPS (global positioning system) or a dedicated radio signal such as those transmitted by national physics laboratories (such as MSF – UK, WWVB – USA, DCF –Germany) offer secure and reliable methods of receiving a secure and accurate time signal.

4. Organise a network into stratum, levels. Strata ensure that the NTP server is not inundated with time requests and that the network bandwidth doesn’t become congested. A stratum tree is organised by a few select machines being stratum 2 devices in that they receive a time signal from the NTP server (stratum 1 device) these in turn distribute the time to other devices (stratum 3) and so on.

5. Ensure all machines are utilising UTC and the NTP server tree. A common error in time synchronisation is to not ensure all machines are properly synchronised, just one machine running inaccurate time can have unforeseen consequences.

UTC – Coordinated Universal Time (from the French: Universel Temps Coordonné) is a global timescale based on Greenwich Meantime (GMT – from the Greenwich Meridian line where the sun is above at 12 noon). But accounts for the natural slowing of the Earth’s rotation. It is used globally in commerce, computer networks via a NTP server, air-traffic control and the World’s stock exchanges to name but a few of its applications.

UTC is really the only solution for time synchronisation needs. While it is just as possible to synchronise a computer network with an NTP server to a time other than UTC it is pointless. As UTC is utilised by computer networks all across the globe by using a UTC time source that means your network can synchronise with every other network in the world that is synchronised to UTC.

UTC is most commonly received from across the Internet, however, this can only be recommended for small network users where either accuracy or security is an issue. An Internet based UTC source is external to the firewall so will leave a potential hole for malicious users to exploit.

Two secure methods of receiving UTC are commonly available. These are either the GPS network (Global Positioning System) or specialist radio transmission broadcast on long wave from several of the world’s national physics laboratories. The two methods have both advantages and disadvantages which need to be ascertained before a method is selected.

A radio transmission such as the UK’s MSF, the German DCF-77 or the USA’s WWVB signal are vulnerable to local topography although many of these signals can be picked up indoors. Whilst not every country transmits a UTC radio signal around the neighbouring countries that do it is possible to still receive it.

GPS on the other hand is available literally anywhere on the globe. The signal comes directly from above and as long as the antenna has a good clear view of the sky it can be received anywhere. However, as the antenna has to be on a roof looking up this can have logistical problems (particularly for very tall buildings).

Specialist dedicated network time servers are available that can actually receive both methods of UTC but whether using GPS or a radio transmissions synchronisation of a network to within a few milliseconds is possible.

1. The business world is now more global than ever with as much likelihood of  your customer’s being from the other side of the planet as from around the corner. Any transactions conducted virtually across the Internet require adequate time synchronisation otherwise your company can be open to abuse or fraud, customers may claim they paid you at a certain time but how do you ascertain if they have without adequate synchronisation?

2. Does your system conduct time sensitive transactions? Computers have only one reference between events and that is time. If a network is not synchronised then many events and transactions may fail to happen. This can have a knock-on effect as one transaction or event fails so do others and without adequate synchronisation it may be quite a while before anyone realises the errors.

3. Do you have valuable or sensitive data? A lack of synchronisation can often lead to data loss. Storage and retrieval is also time reliant so if a computer believes the time data should have been saved has past then it may assume the data is already saved. The problem can be exaggerated if the data is continually updated as the inaccurate timestamps may mean that certain updates are not completed.

4. Is security important to your business? A lack of time synchronisation can leave a computer network open to malicious users, hackers and even fraud. If computers on a network are running different times then this can be exploited by malicious users and without time synchronisation you may not even know they have been there. A perfectly synchronised network will also offer legal protection with a NTP server (Network Time Protocol) being auditable and unquestioned in a court of law.

5. Is the credibility of your company important? A lack of synchronisation can be extremely costly not just in time and money but also in the credibility of your company. Without synchronisation a network will be vulnerable to mistakes and while these may be easily rectified once a customer has to complain word will soon get out.

Running a synchronised network adhering to Universal Coordinated Time (UTC) the world’s standard timescale is fairly simple. Dedicated NTP time servers that receive a UTC time source from either a radio transmission or the GPS network (Global Positioning System).are readily available, simple to set up, accurate and secure.

The NTP server is a tool for keeping computer networks synchronised. Without adequate synchronisation networks can be left vulnerable to security threats, data loss, fraud and may find it impossible to interact with other networks across the globe.

Computer networks are normally synchronised to the global timescale UTC (Coordinated Universal Time) enabling them to communicate effectively with other networks also running UTC.

In Europe there are several methods of receiving UTC time. The Internet is an obvious choice but as these time signals are external to the network firewall they can prove a security risk. Internet time sources can also be unreliable in their precision or too far away to make any useful synchronisation.

The GPS network is available everywhere on the planet as long as there is a good clear view of the sky and many NTP server devices are designed to receive such a signal.

In Europe there is another alternative, however, to provide accurate and reliable time. The National Physics Laboratory near Frankfurt, Germany broadcast a long wave frequency time signal based on a constellation of atomic clocks. This time signal is known as the DCF-77 signal and is available across much of Europe (as far as Portugal during the evening).

DCF 77 is an reliable and secure method of receiving UTC and as it is derived from a constellation for atomic clocks is highly accurate.  A NTP server received a DCF time signal can provide accuracy to within a few milliseconds of UTC.

NTP – Network Time Protocol

SNTP – Simple Network Time Protocol

GPS – Global Positioning System

UTC – Coordinated Universal Time

MSF – Radio Time Signal for United Kingdom

WWVB – Radio Time Signal for American

DCF – Radio Time Signal for Germany

LAN – Local Area Network

UDP – User Datagram Protocol

TCP – Transmission Control Protocol

IP – Internet Protocol

TDF – Radio Time Signal for France

CHU – Radio Time Signal for Canada

JJY – Radio Time Signal for Japan

HBG – Radio Time Signal for Switzerland

USB – Universal Serial Bus

RTC – Real Time Clock

AM – Amplitude Modulation

APM – Automatic Power Management

DES – Data Encryption Standard

ESD – Electrostatic Discharge

FM – Frequency Modulation

IETF – Internet Engineering Task Force

IRIG – Inter-Range Instrumentation Group

MD5 – Message Digest

PPM – Part Per Million

PPS – Pulse Per Second

RFC – Request For Comments

SA – Selective Availability

TAI – International Atomic Time

SI – International System of Units

Network Time Protocol (NTP) is an Internet based protocol designed to distribute and synchronise time across a network.

NTP is in fact one of the oldest Internet protocols having been developed in the late 1980’s at Delaware University when the Internet was still in its infancy. It was devised by Professor David Mills and his team when they realised the need for accurate time synchronisation if computers were needed to communicate with each other.

A NTP server is a dedicated device that receives a single timing source and then distributes it amongst all network devices. A NTP server will receive the timing information through a number of ways but normally it is a UTC source (coordinated universal time) a global timescale based on the time as told by atomic clocks.

NTP handles the time in a different way to how humans perceive and deal with it. While we may split a time into seconds, minutes, hours, days, months and years; NTP regards time  as a single number which is the number of seconds since the ‘prime epoch’.

The prime epoch is a date set for when NTP began counting seconds. For NTP the prime Epoch is 00.01 on 1 January 1900 so that means on 1 January 2008 the time according to NTP will be 3405888000, which is the number of seconds since 1900.

The NTP server is now an essential part of the modern computer network. Without a dedicated NTP server administrators are forced to rely on unsecure and inaccurate Internet sources to synchronise their network clocks too.

The potential risks involved in this, namely leaving a hole open in the network firewall and the lack of the NTP security measure: authentication, means that networks that use an Internet based timing source are risking their system to attacks from malicious user and hackers.

It should also be noted that a survey of Internet based timing sources found less than a third were accurate to UTC time and those that were could still be too far away from client to make any useful synchronisation.

There are two types of dedicated NTP server, the GPS NTP server and the radio referenced NTP server. The difference between the two is based solely on the method they receive their UTC time source from. A GPS NTP server will use the signals broadcast from the GPS satellites above the Earth’s atmosphere. These signals are very reliable and can be picked up anywhere in the Worlds as long as the GPS antenna has a clear view of the sky.

The alternative is to use a dedicated NTP server that can receive a signal from the national time and frequency transmissions broadcast by several national physics laboratories. While not available in every country and quite vulnerable to interference these long-wave time signals are still an accurate and secure method of receiving UTC time. They are also ideally suited for network administrators who, for reasons of logistics can’t place a GPS antenna on the roof.

A NTP server is really just a time server that utilises Network Time Protocol (NTP). Whilst other time protocols do exist, NTP is by far the most commonly used and is utilised in over ninety percent of time servers.

NTP server and time server are therefore interchangeable terms but describe the same thing: a device used to receive and distribute a timing signal.

The timing signal utilised by most NTP servers is a UTC time source. UTC (Coordinated Universal Time) is a global time scale based on the time told by atomic clocks. By utilising UTC a NTP server can in affect, synchronise a network to the same time as millions of other computer networks from around the world. This has made possible many online global transactions that just simply wouldn’t be possible without UTC.

The timing signal is received by the NTP server (or time server) via a number of ways; the Internet, national time and frequency transmission (long wave) or the GPS (global positioning system) network. Once received the time server (NTP server) checks the authenticity of this signal (except from Internet sources where authentication is not possible), evaluates its accuracy then distributes it amongst the network.

To prevent a possible overload of time requests to the time server, machines that receive a time signal from the NTP server, can themselves be used as a time reference and the machines that receive a time signal from those can again be used as a reference. This hierarchy is called stratum levels. A NTP server is a stratum 1 device, a machine that receives a signal directly from the time server is a stratum 2 device and if a machine receives a signal from that it becomes stratum 3.

Network Time Protocol is a hierarchical protocol and is divided into stratum which define the distance from the reference clock. A reference clock source that relays UTC (Coordinated Universal Time) time and has little or no delay is known as a stratum-0 device. Stratum-0 servers cannot be used on the network, instead, they are directly connected to computers which then operate as primary time servers.

A primary server that receives a time signal from a stratum 0 device either through the GPS network or national time and frequency transmission is known as a stratum-1 device. On a network a stratum 1 time server supplies the time to other devices on the network which are known as stratum-2 devices. These also can be used as a time source and equipment that connects to a stratum-2 device to receive it become stratum-3 and so on.

NTP can handle up to 16 different stratum levels, although the lower down the hierarchy you go the less accurate the devices become. However, to make the system more reliable, each client can receive a time source from multiple servers. Stratum 2 devices and below can also synchronise with each other. The NTP software monitors continuously the figures of stability and accuracy of all the servers and always chooses a server with the best figures.

Multiple stratum are used an in larger networks because to bombard a single stratum-1 time server with NTP requests from thousands of machines could cause it to overload or block the network itself with workstations/routers etc repeatedly waiting for their time synchronisation requests to go through.

Network Time Protocol (NTP) is one of the Internet’s oldest protocols still in use. Developed by Dr David Mills from the University of Delaware, it has been in constant use and continually updated since 1985. NTP is a protocol designed to synchronize the clocks on computers and networks across the Internet or Local or Wider Area Networks (LANs/WANS).

In a modern global economy time synchronisation is essential for carrying out time sensitive transactions such as booking an airline ticket to bidding on an Internet auction site. If clocks were not synchronised to the same time you may find your airline seat sold after you had bought it and Ebay’s administrators would not be able to discover whose bid was the latest.

NTP is a multi-tiered system, each tier being called a stratum. Servers at each tier communicate with each other (peer) and provide time to lower strata. Servers at the top stratum, stratum 1 connect to an atomic clock either over the Internet or by a radio or GPS receiver while a stratum 2 server will connect to a stratum 1.

NTP uses an algorithm (Marzullo’s algorithm) to synchronise time on a network using time scales like UTC (Coordinated Universal Time or Temps Universel Coordonné) and can support such features as leap seconds – added to compensate for the slowing of the Earth’s rotation.

NTP (version 4 being the latest) can maintain time over the public Internet to within 10 milliseconds (1/100th of a second) and can perform even better over LANs with accuracies of 200 microseconds (1/5000th of a second) under ideal conditions.

NTP time servers work within the TCP/IP suite and rely on UDP (User Datagram Protocol). A less complex form of NTP called Simple Network Time Protocol (SNTP) that does not require the storing of information about previous communications, needed by NTP, is used in some devices and applications where high accuracy timing is not as important and is also included as standard in Windows software (although more recent versions of Microsoft Windows have the full NTP installed and the source code is free and readily available on the Internet).

The NTP program (known as a daemon on UNIX and a service on Windows) runs in the background and refuses to believe the time it is told until several exchanges have taken place, each passing a set of tests. If the replies from a server satisfy these ‘protocol specifications’, the server is accepted. It usually takes about five good samples (five minutes) until a NTP server is accepted as a source for synchronisation.

Synchronisation with NTP is relatively simple, it synchronises time with reference to a reliable clock source such as an atomic clock, although these are extremely expensive and are generally only to be found in large-scale physics laboratories, however NTP can use either the Global Positioning system (GPS) network or specialist radio transmission to receive UTC time from these clocks.

A simplified version of NTP called Simple Network Time Protocol (SNTP) exists that does not require the storing of information about previous communications as required by NTP. It is used in some devices and applications where high accuracy timing is not as important and is installed on older versions of Microsoft Windows. Windows since 2000 has included the Windows Time Service (w32time.exe) which uses SNTP to synchronise the computer clock. NTP is also available on UNIX and LINUX (download via NTP.org).