Security in Depth for Time Delivery in Financial Trading Networks
Wednesday | 9:35 - 9:55 am
Clock synchronization is critical to the integrity and performance of financial trading networks and is also mandated by increasingly stringent regulations. As high accuracy clock distribution becomes common, it becomes subject to the same level of security issues that have been seen in other critical network and computing systems. But methods that improve security in other areas may be ineffective or worse in the clock synchronization domain. For example, encrypting PTP/NTP packets can introduce timing errors and interfere with intermediate packet processing by stratum servers, boundary clocks and transparent clocks. This talk will describe methods of security in depth, where each segment of a clock synchronization system, from GNSS receivers or Time-as-a-Service demarcation points to end users of time in application servers are instrumented and interconnected in overlapping security domains.