NTP's Fate Hinges On 'Father Time' - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT
IoT
IT Life
News
3/11/2015
06:06 PM
Connect Directly
Twitter
RSS
E-Mail
100%
0%

NTP's Fate Hinges On 'Father Time'

The Network Time Protocol provides a foundation to modern computing. So why does NTP's support hinge so much on the shaky finances of one 59-year-old developer?

(Image: 237607 via Pixabay)

(Image: 237607 via Pixabay)

Why Synchronizing Time Matters

Every computer has a clock, but in general computers "are known to have bad clocks," said John Engates, CTO of Rackspace, in talking about NTP. Getting two computers to agree on the time can be difficult. The NTP protocol has, for 30 years, consulted the best clocks available and derived a consensus time, which it then imposes across a mapped hierarchy of servers and their client PCs.

Greenwich Mean Time is a known source of reliable time, as is the US Naval Observatory. Their time is based on the solar day -- the time it takes for the earth to complete one 24-hour, 360-degree rotation while in orbit around the sun. NTP consults UTC or Universal Coordinated Time, which is Greenwich Mean Time expressed in the military's 24:00:00 hours terms.

On a daily basis, NTP also consults atomic clocks, which tick off precise seconds based on radioactive Cesium-133 decomposition. A GPS receiver can be tied into an NTP server, and use the transmission of a GPS satellite to get the correct atomic time. A GPS satellite has three atomic clocks, so if one falls out of synch, the other two can overrule it and keep the system on track. For GPS time to be off by a billionth of a second means its answer to a location query will be off by a foot. So GPS relies on precisely counted time, not the solar day.

NTP's job is, in some ways, simple: Consult UTC and atomic clocks and come up with the correct time. But, as Engates said, "Time gets complicated fast."

The solar day varies slightly from year to year. The earth wobbles. Tidal friction slows the earth's rotation by a tiny fraction of a second each year. Geophysical events, like the huge earthquake in 2004 in the Indian Ocean, cost the earth's rotation another fraction of a second. GMT and UTC account for these changes with leap seconds; atomic clocks do not. Currently, there's a 35-second gap between the two.

NTP can referee those differences, allowing it to synchronize operations as computer systems grow larger and more distributed. The Internet wouldn't function as well without it. Network Time Protocol doesn't just determine the correct time, but implements synchronized time between two systems. NTP software on a client or remote server asks an NTP reference server for a time check. The NTP software on the requestor captures how long it took for the query to reach its destination, and adds that amount of time to the time stamp that comes back.

Despite variances in traversing a network due to congestion and other causes, this NTP process will usually leave two systems coordinated to within 10 milliseconds (10 thousandths of a second) of each other. If the two are on the same campus network, the adjustment is likely to be within one thousandth of a second or less.

That's not as precise as what can be achieved with Precision Time Protocol, an IEEE standard released in 2002. But NTP is already in place, with proven reliability, and it's easy to use. "Basic configurations [of an NTP server] involve no more than a few statements," wrote Peter Rybaczyk in his book, Expert Network Time Protocol. Even PTP starts with NTP, then tries to make it more precise.

NTP has another point in its favor: A strong record on security (so far). It's a protocol whose misuse could corrupt and cause the failure of manufacturing systems, chemical processing, financial markets, and satellite communications. Its reliability is tied to billions of dollars of transactions a day; the NTP time stamp is one of the few ways equities firms have of proving to regulators they were in compliance of making a trade when they said they did. So far, it has withstood the danger of being hacked.

The Heartbleed vulnerability in OpenSSL opened the open source community's eyes to the threat from benign neglect of these foundational elements of the computing world and the Internet. As with Secure Sockets Layer, the Linux Foundation views NTP as critical to the continued reliability of both Linux and the Internet.

Next Page: NTP on shaky financial ground

Charles Babcock is an editor-at-large for InformationWeek and author of Management Strategies for the Cloud Revolution, a McGraw-Hill book. He is the former editor-in-chief of Digital News, former software editor of Computerworld and former technology editor of Interactive ... View Full Bio

We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
Previous
3 of 5
Next
Comment  | 
Print  | 
More Insights
Comments
Oldest First  |  Newest First  |  Threaded View
Page 1 / 4   >   >>
hstenn
100%
0%
hstenn,
User Rank: Apprentice
3/11/2015 | 6:58:32 PM
It's fine to send big money directly to NTF!
Wow, thanks for the great article, sir!

I've always considered myself either the "janitor of time" or maybe NTP's babysitter.

From my point of view, we want lots of companies and individuals to "join" Network Time Foundation.  We are also very happy to receive direct donations.  As long as we get enough donations from enough sources to meet the IRS Public Support Test we're happy, and all is well.

 
Charlie Babcock
100%
0%
Charlie Babcock,
User Rank: Author
3/11/2015 | 11:02:50 PM
Are you ready to roll back the next Leap Second?
Harlan Stenn is the only person I know who has already laid plans to cope with the Leap Second that will need to be subtracted from the solar day on June 30, when the discrepancy  between UTC and TAI will reach 36 seconds. For that, I'm afraid we must call him Father Time, even though he doesn't much like the moniker. (Leap Seconds occur irregularly, averaging one every 18 months.)
Todder
100%
0%
Todder,
User Rank: Moderator
3/12/2015 | 9:47:20 AM
Re: Are you ready to roll back the next Leap Second?
Very good article Charlie. One of the best I've read in a long time. Hopefully this stirs up some funds for Harlan and the project. I'm also surprised that academia hasn't jumped right back in on NTP.
Somedude8
100%
0%
Somedude8,
User Rank: Ninja
3/12/2015 | 11:41:52 AM
Let it fail?
Companies will pay as little as they have to for any given service. Its not greed, its just their nature. They have been used to getting NTP for free for so long, they aren't likely to start coughing up funds out of the goodness of their hearts.

Harlan's efforts sound like they have been truly heroic, and at that heroic pace for a very long time. But I think he is flat out being taken advantage of, and will continue to be until he puts his foot down. Maybe just flat out refuse to work more than 15 or 20 hours per week on it, putting the rest of his time in to his consulting business or something. I know that $7k per month looks good on paper, but I gaurantee its not nearly as much in practice.

Let it fail. That will bring the needed attention as funding. Its harsh, and in many ways against the open source spirit, but the guy has been taken advantage of long enough. When Google and Apple and others aren't even chipping in a little bit, especially taking in to account the huge consideration he gave Apple, then the whole thing is just wrong.
gmerriman112
100%
0%
gmerriman112,
User Rank: Strategist
3/12/2015 | 12:33:55 PM
Typical of the way things are going
I think the problems noted here are symptomatic of a larger problem. It seems that everyone these days is focused on getting rich with the next "Yo!" app or shiny new wearable gizmo that nobody is worried about keeping the foundations on which all this new technology depends. If the industry as a whole does not come to grips with this problem soon I fear we are in for a rough time ahead.
Doug Henschen
100%
0%
Doug Henschen,
User Rank: Moderator
3/12/2015 | 12:50:53 PM
Re: It's fine to send big money directly to NTF!
Keep up the good work, as best as you can as long as you can, but by all means cultivate a backup, particularly if Charlie's article helps spur more funding. This seems like it's too imporant to rest on your shoulders alone. What if you get hit by a truck? Too bad you can't set up a little tarrif for accessing NTP!
Tony A
100%
0%
Tony A,
User Rank: Moderator
3/12/2015 | 1:58:58 PM
Truly Disturbing
This is the most unsettling thing I've read since a report many years ago that said all international Internet traffic was being routed through a garage in Virginia. Truly amazing how vulnerable the entire infrastructure is in spite of the fact that it is now the  single most important vehicle for both business and defense.

So nobody wants to pay for an infrastructure service that is crucial to the Pentagon, the stock market, major search providers, ISP's and satellite communications? I say you send Goldman Sachs, Google, Microsoft and a few others - don't forget our friends at Verizon and Time Warner who oppose net neutrality - a letter written on a Smith Corona typewriter saying that the servers will be going down for one second at 12:00:00 a.m. next Monday, to save energy costs. Then see if they come up with some funding.

"We don't contribute to open source projects" - that's a classic. Google spends more on sushi and GS on annual bonuses than they are willing to spend on a service that their entire revenue streams depend on. As if the Internet were a natural resource like air and water and they are just entitled to it. It's unbelievable what we put up with from these companies. They should fund a pension for Mr. Stenn and his family in addition to ponying up a few million $ to keep the service stable and secure.
EJW
50%
50%
EJW,
User Rank: Apprentice
3/12/2015 | 4:59:11 PM
No Free Lunch
I have just read Charles Babcocks excellent article about NTP.org and Harlan Stenn.

I wasn't aware of the situation: it is utterly shameful that the likes of Apple, Google and others have allowed this to occur while freeloading on the software that allows them to make millions.

And it is not just the IT industry:

"...the NTP time stamp is one of the few ways equities firms have of proving to regulators they were in compliance of making a trade..."

So where are the contributions from Wall Street?

There is no free lunch!

Sooner or later everything must be paid for by someone; from NTP to PBS and even whole economies (just ask the Greeks).

I just made my contribution.

Charlie Babcock
50%
50%
Charlie Babcock,
User Rank: Author
3/12/2015 | 5:56:51 PM
Yes, some contribute, some don't
Good comment from EJW, an IT manager in the Calif. State University system, and Tony J, thanks. I would like to note that Google is a contributor to the Linux Foundation's Core Infrastructure Initiative, now supporting Stenn. The CII includes Amazon, IBM, others and supports Werner Koch's Gnu PG in Germany & other projects as well. But there aren't enough $$ to go around. Stenn's non-profit is at www.nwtime.org. Checks can be sent to Network Time Foundation, PO Box 918, Talent, OR. 97540.
I_just_wanna_say_
50%
50%
I_just_wanna_say_,
User Rank: Apprentice
3/12/2015 | 11:12:21 PM
Re: Let it fail?
Or alternatively, Apple, who just announced the Apple Watch, could set up a small endowment to support the project in perpetuity and use that as a marketing hook.  Just think, the Apple Watch, a product that seems completely pointless to most people could suddenly become a badge of geeky insider knowledge ---

OK I'm naive.
Page 1 / 4   >   >>
Slideshows
10 Trends Accelerating Edge Computing
Cynthia Harvey, Freelance Journalist, InformationWeek,  10/8/2020
Commentary
Is Cloud Migration a Path to Carbon Footprint Reduction?
Joao-Pierre S. Ruth, Senior Writer,  10/5/2020
News
IT Spending, Priorities, Projects: What's Ahead in 2021
Jessica Davis, Senior Editor, Enterprise Apps,  10/2/2020
White Papers
Register for InformationWeek Newsletters
2020 State of DevOps Report
2020 State of DevOps Report
Download this report today to learn more about the key tools and technologies being utilized, and how organizations deal with the cultural and process changes that DevOps brings. The report also examines the barriers organizations face, as well as the rewards from DevOps including faster application delivery, higher quality products, and quicker recovery from errors in production.
Video
Current Issue
[Special Report] Edge Computing: An IT Platform for the New Enterprise
Edge computing is poised to make a major splash within the next generation of corporate IT architectures. Here's what you need to know!
Slideshows
Flash Poll