• Home
• Products
  • SecureNTP - Time Management
  • DirectConnect - Time Delivery
  • Consulting & Auditing
• Solutions
  • Making GPS Provable
  • PCI Compliance
  • OATS Compliance
  • Third Party Assessments
• Support
  • Knowledgebase
    • FAQ's
    • Glossary
  • Bug Tracking
  • CTO's Support Blog
• News
• About
  • Contacts
  • Time Centers
  • Management
  • Privacy

SecureNTP™ - Provable Time Management

The SecureNTP service is a best-of-breed combination of identity-controlled NTP time-services, and a networking security and logging practice that fully meets the requirements in PCI DSS Section 10.4 and FINRA OATS Section 6953. Through strong authentication and logging, SecureNTP creates a provable time practice for any business.

In most cases SecureNTP requires no installation of hardware or software, since your business is likely already running the NTP protocol. Once you have registered with Certichron, it only takes a few minor configuration changes and installation of a the digital key, along with setting up audit logging and key management practices - that's it.

SecureNTP benefits include:

1. Access to our private Stratum-1 time servers that are peered with NIST-calibrated time servers.
2. Digitally certified time stamps that authenticate the source of the time setting and demonstrate that the data was derived from the "legal" source of time in the US (i.e. NIST).
3. Managed alarms that notify you when the time server or client is not performing within stated parameters
4. Access to online audit logs and time tracking dashboards maintained in Certichron's five timing centers
5. Continuing off-site storage of audit logs and time setting data for future reference in forensic investigations or litigation.
6. Optional direct access to our time centers through a dedicated extranet connection with your network

Why you need SecureNTP - It’s a given that you need to keep the time on your business systems in sync. If time is not set correctly, your digital certificates and change control processes will fail, audit logs will become unreliable, forensics will become a nightmare, and your auditors and regulators will conclude that your controls are deficient. Worse, if you submit digital evidence as part of litigation and your time stamps conflict or cannot be verified, you run the risk that your evidence will not be admissible or credible.

Even if your time is synchronized across all platforms, you need to ensure that your time came from a recognized and reliable source that an auditor, PCI Qualified Security Assessor or court will accept. There are thousands of time servers on the Internet, but only a few provide a legally accepted source of government time. In the United States that source is the National Institute of Standards and Technology (NIST) and Certichron is the leading provider of commercially available NIST time in the United States.

Free Trial Offer - For a limited time Certichron is providing free access to its SecureNTP service so you can test the ease of use and reliability. Just send an email to sales@certichron.com for a registration package.

Certichron provides secure and auditable time services that allow companies to provably synchronize their desktops and transaction servers with regionally deployed, Federally-traceable time servers (using the Internet or a private extranet). For more information on our services and technologies, please email Certichron with your requirements or contact the sales office directly at 800-511-2301 (9-5 PST). Certichron, Inc. © 2009 Privacy Policy Terms of Use