SlideShare une entreprise Scribd logo

Best practices for resilient NIST/UTC traceable sub-µsec timestamping of financial trades

ADVA
ADVA

In his talk at WSTS, Nino De Falcis examined how timing in financial networks can be protected by leveraging a defense-in-depth framework based on zero-trust PNT sources.

Technologie
1  sur  13
Best practices for resilient, NIST/UTC-traceable sub-µsec timestamping of financial trades May 11, 2022 (9:10-9:25a) | WSTS, Denver, CO | Nino De Falcis, Sr. director, sync business development, Americas, Oscilloquartz, ADVA Business clock regulations | Resilient PNT mandate | NTP/PTP sync | Server with integrated PCIe GNSS PTP GM
PNT assurance PNT* cyber threats are at an all-time high everywhere and are growing in sophistication *Positioning, Navigation & Timing | T enables P & N | aPNT+ (assured PNT Can Wall Street business trading clock survive the next cyberattack?
© 2022 ADVA. All rights reserved. 3 US FINRA CAT • Trader clock accuracy: 50ms • Exchange clock accuracy: 100µs • Clock traceability: NIST (GNSS) • CAT: consolidated audit trail archiving all trading orders in a central repository for regulatory compliance, with self-reporting accuracy deviations per CAT 2020-02 EU ESMA MIFID II RTS 25 • Exchange/Trader clock accuracy: 100µs • Clock traceability: UTC (GNSS) vs. algo HFT accuracy target: 10-100’s of ns for network/trade optimization measurements Client/Server/VM timestamping requirements Business clock regulations in financial trading • Clock technology: NTP/PTP • Clock compliance: proof of accuracy/deviation reporting thru stored client data logs • Regulatory audits/fines: typ. up to 7 years of logged/archived data for forensics COMMON
© 2022 ADVA. All rights reserved. 4 Why time is money in financial markets • If the time is off, the best price/profit is off too! • Trader 3, whose server’s time accuracy is tighter to NIST/UTC standard time, gets the best price/profit! Server time accuracy vs. NIST/UTC standard time Trading price (line chart) 3 traders with a different server business clock Price variations with inaccurate business clocks trader 3 trader 1 trader 2 NIST/UTC standard time price spread Trading price (candlestick chart) Server time Price variations across trading servers with inaccurate business clocks Green dots show the best price with the correct NIST/UTC time
© 2022 ADVA. All rights reserved. 5 Driven by US Federal Executive Order 13905 and UK & Euro Commissions • PNT stands for Positioning, Navigation & Timing, and T is essential to enable P & N • Protect government/industry critical infrastructure against PNT disruptions from GPS/GNSS jamming/spoofing & other network timing cyberattacks • Deploy resilient, assured & self-survivable PNT systems • Target critical infrastructure under national security threats • Use published resilient PNT guidelines & standard in progress • DHS Resilient PNT Conformance Framework • NIST Cybersecurity Framework for PNT Profile • IEEE P1952 Resilient PNT for User Equipment Standard working group What is the resilient PNT? Power grids Finance Transportation Communications Data centers resiliency levels clock sources 1 2 3 N multisource 1 2 3 4 next-gen system
© 2022 ADVA. All rights reserved. 6 What’s the problem in financial markets? $1B/day in economic cost if GPS/PNT is disrupted* *source: RTI & NIST 2019 GPS & US critical infrastructure under national security threats Finance Communications Power grids Transportation Data centers All supported by PNT cyberthreats
© 2022 ADVA. All rights reserved. 7 What are the PNT cyberthreats & GNSS vulnerabilities? RARE Cyberattacks GPS/GNSS receiver Jamming RARE GPS/GNSS degradation causes Environmental GPS/GNSS ground segment errors Adjacent-band transmitters Spoofing External GPS/GNSS level Internal network level COMMON NTP PTP More frequent PNT cyberthreats / / Network interference Client clock Boundary clock
© 2022 ADVA. All rights reserved. 8 Networkwide Sync Mgmt & Compliance System WAN network packet LAN network Redundant single GPS/GNSS source timing architecture Data Center 1 (DC 1) GM-A (GNSS NTP/PTP grandmaster time server) Data Center 2 (DC 2) PTP failover backup cross reference monitoring 1 2 3 GPS/GNSS PNT cyberthreats GM-B PTP Client machine/Server/VM PTP 4 NTP 4 4 Client software sync monitor/ non-compliance alerting PNT assurance
© 2022 ADVA. All rights reserved. 9 Networkwide Sync Mgmt & Compliance System WAN network packet LAN network “Zero-trust multisource backup” timing architecture DC 1 ePRTC* DC 2 PTP failover backup cross reference monitoring 1 3 4 GM-B 2 PNT backup sources PNT assurance Cesium, NIST, WR, eLORAN, LEO, etc. National time standard like NIST & NPL *enhanced Primary Reference Time Clock (GM-A + backup sources) 1 Client machine/Server/VM PTP NTP PTP PTP 5 5 5 Client software sync monitor/ non-compliance alerting
© 2022 ADVA. All rights reserved. 10 Secure networkwide sync mgmt & compliance system Networkwide Sync Mgmt & Compliance System Neural AI/ML intelligence for self-survivability, end-to-end control, visibility, resilient & assured PNT geolocation DCs 1 & 2 alert PTP backup assurance to DC 2 timing chain alert with ePRTC/ PTP backup rearrangements DC 1 GM-A alert with ePRTC/PTP backup to DC 2 timing topology with ePRTC/PTP backup vendor-agnostic GNSS analytics/assurance PTP backup ePRTC backup DC 2 DC 1 DC 2 DC 1 DC 2 DC 1 DC 2 PTP backup ePRTC backup DC 1 DC 2 8 6 5 3 2 1 PNT assurance DC 2 GM-B alert with PTP backup from DC 1 ePRTC 4 client sync monitor/ compliance assurance 7 Financial analytics tool vendors like Splunk/Pico API for client data logs 9
© 2022 ADVA. All rights reserved. 11 packet LAN network Secure multisource client software sync architecture DC 1 smartNIC processor internal clock app 1 client sync Server/Client machine/VM PTP timestamped packets PTP app 2 ePRTC PNT backup sources Client software sync monitor/ non-compliance alerting 100’s of ns Accuracy Switch with PTP asymmetry optimization GM-A DC 2 GM-B GNSS NTP/PTP grandmaster time server) with HW timestamping assist • Full on path support with PTP-aware class D BC (~5ns impact) PTP
© 2022 ADVA. All rights reserved. 12 packet LAN network Server with embedded PCIe GNSS PTP GM for HFT applications internal clock app 1 Server 1 app 2 processor Embedded PCIe GNSS PTP GM smartNIC internal clock app 1 app 2 processor PTP over Ethernet HFT accuracy sub 100ns Server 2 (or more) DC 1 ePRTC PNT backup sources GM-A DC 2 GM-B GNSS NTP/PTP grandmaster time server) • PTP master/slave/BC • PTP monitor • Holdover clock • PPS+ToD PCIe client sync PTP PTP backup
Thank you IMPORTANT NOTICE ADVA is the exclusive owner or licensee of the content, material, and information in this presentation. Any reproduction, publication or reprint, in whole or in part, is strictly prohibited. The information in this presentation may not be accurate, complete or up to date, and is provided without warranties or representations of any kind, either express or implied. ADVA shall not be responsible for and disclaims any liability for any loss or damages, including without limitation, direct, indirect, incidental, consequential and special damages, alleged to have been caused by or in connection with using and/or relying on the information contained in this presentation. Copyright © for the entire content of this presentation: ADVA. Questions? Contact us at info@adva.com

Recommandé

Achieving resilient and assured PNT in secure information networks
Achieving resilient and assured PNT in secure information networksAchieving resilient and assured PNT in secure information networks
Achieving resilient and assured PNT in secure information networks
ADVA
 
The need for GBaaS as GPS/GNSS is no longer a reliable source for critical PN...
The need for GBaaS as GPS/GNSS is no longer a reliable source for critical PN...The need for GBaaS as GPS/GNSS is no longer a reliable source for critical PN...
The need for GBaaS as GPS/GNSS is no longer a reliable source for critical PN...
ADVA
 
ADVA aPNT+™ security enhancements
ADVA aPNT+™ security enhancementsADVA aPNT+™ security enhancements
ADVA aPNT+™ security enhancements
ADVA
 
Best practices for secure synchronization in smart grids
Best practices for secure synchronization in smart gridsBest practices for secure synchronization in smart grids
Best practices for secure synchronization in smart grids
ADVA
 
Introducing ultra-precise time for server-hosted applications
Introducing ultra-precise time for server-hosted applicationsIntroducing ultra-precise time for server-hosted applications
Introducing ultra-precise time for server-hosted applications
ADVA
 
ADVA’s telecommunications solutions for smart grids
ADVA’s telecommunications solutions for smart grids ADVA’s telecommunications solutions for smart grids
ADVA’s telecommunications solutions for smart grids
ADVA
 
ADVA launches new aPNT+™ platform to protect critical network infrastructure
ADVA launches new aPNT+™ platform to protect critical network infrastructureADVA launches new aPNT+™ platform to protect critical network infrastructure
ADVA launches new aPNT+™ platform to protect critical network infrastructure
ADVA
 
Best sync practices and architecture strategies for secure, resilient PNT in ...
Best sync practices and architecture strategies for secure, resilient PNT in ...Best sync practices and architecture strategies for secure, resilient PNT in ...
Best sync practices and architecture strategies for secure, resilient PNT in ...
ADVA
 

Recommandé

Achieving resilient and assured PNT in secure information networks
Achieving resilient and assured PNT in secure information networksAchieving resilient and assured PNT in secure information networks
Achieving resilient and assured PNT in secure information networks
ADVA
 
The need for GBaaS as GPS/GNSS is no longer a reliable source for critical PN...
The need for GBaaS as GPS/GNSS is no longer a reliable source for critical PN...The need for GBaaS as GPS/GNSS is no longer a reliable source for critical PN...
The need for GBaaS as GPS/GNSS is no longer a reliable source for critical PN...
ADVA
 
ADVA aPNT+™ security enhancements
ADVA aPNT+™ security enhancementsADVA aPNT+™ security enhancements
ADVA aPNT+™ security enhancements
ADVA
 
Best practices for secure synchronization in smart grids
Best practices for secure synchronization in smart gridsBest practices for secure synchronization in smart grids
Best practices for secure synchronization in smart grids
ADVA
 
Introducing ultra-precise time for server-hosted applications
Introducing ultra-precise time for server-hosted applicationsIntroducing ultra-precise time for server-hosted applications
Introducing ultra-precise time for server-hosted applications
ADVA
 
ADVA’s telecommunications solutions for smart grids
ADVA’s telecommunications solutions for smart grids ADVA’s telecommunications solutions for smart grids
ADVA’s telecommunications solutions for smart grids
ADVA
 
ADVA launches new aPNT+™ platform to protect critical network infrastructure
ADVA launches new aPNT+™ platform to protect critical network infrastructureADVA launches new aPNT+™ platform to protect critical network infrastructure
ADVA launches new aPNT+™ platform to protect critical network infrastructure
ADVA
 
Best sync practices and architecture strategies for secure, resilient PNT in ...
Best sync practices and architecture strategies for secure, resilient PNT in ...Best sync practices and architecture strategies for secure, resilient PNT in ...
Best sync practices and architecture strategies for secure, resilient PNT in ...
ADVA
 
Addressing PNT threats in critical defense infrastructure
Addressing PNT threats in critical defense infrastructureAddressing PNT threats in critical defense infrastructure
Addressing PNT threats in critical defense infrastructure
ADVA
 
In-service synchronization monitoring and assurance
In-service synchronization monitoring and assuranceIn-service synchronization monitoring and assurance
In-service synchronization monitoring and assurance
ADVA
 
Time sync: Existing mobile networks need to be ready for 5G and time-sensitiv...
Time sync: Existing mobile networks need to be ready for 5G and time-sensitiv...Time sync: Existing mobile networks need to be ready for 5G and time-sensitiv...
Time sync: Existing mobile networks need to be ready for 5G and time-sensitiv...
ADVA
 
What is the future of traditional SSUs and TSGs?
What is the future of traditional SSUs and TSGs?What is the future of traditional SSUs and TSGs?
What is the future of traditional SSUs and TSGs?
ADVA
 
Best practices in solving PNT threats in critical defense communications infr...
Best practices in solving PNT threats in critical defense communications infr...Best practices in solving PNT threats in critical defense communications infr...
Best practices in solving PNT threats in critical defense communications infr...
Adtran
 
ePRTC in data centers – GNSS backup as a service (GBaaS)
ePRTC in data centers – GNSS backup as a service (GBaaS)ePRTC in data centers – GNSS backup as a service (GBaaS)
ePRTC in data centers – GNSS backup as a service (GBaaS)
ADVA
 
Network time protocol
Network time protocolNetwork time protocol
Network time protocol
Mohd Amir
 
Protecting third-party timing receivers from cyberattacks with trusted networ...
Protecting third-party timing receivers from cyberattacks with trusted networ...Protecting third-party timing receivers from cyberattacks with trusted networ...
Protecting third-party timing receivers from cyberattacks with trusted networ...
ADVA
 
Methods for Improving NTP
Methods for Improving NTPMethods for Improving NTP
Methods for Improving NTP
ADVA
 
In Service Monitoring and Assurance at ITSF 2014
In Service Monitoring and Assurance at ITSF 2014 In Service Monitoring and Assurance at ITSF 2014
In Service Monitoring and Assurance at ITSF 2014
ADVA
 
PTP across borders: Babel retold
PTP across borders: Babel retoldPTP across borders: Babel retold
PTP across borders: Babel retold
ADVA
 
Improving NTP Installed Base Time Accuracy
Improving NTP Installed Base Time AccuracyImproving NTP Installed Base Time Accuracy
Improving NTP Installed Base Time Accuracy
ADVA
 
Syncing the cloud - from T1 to TAP
Syncing the cloud - from T1 to TAP Syncing the cloud - from T1 to TAP
Syncing the cloud - from T1 to TAP
ADVA
 
NextGen Network Synchronization
NextGen Network SynchronizationNextGen Network Synchronization
NextGen Network Synchronization
Dhiman Chowdhury
 
Sync on TAP - Syncing infrastructure with software
Sync on TAP - Syncing infrastructure with softwareSync on TAP - Syncing infrastructure with software
Sync on TAP - Syncing infrastructure with software
ADVA
 
Recent growth in timing
Recent growth in timingRecent growth in timing
Recent growth in timing
ADVA
 
Introducing the OSA 5335 PTP Grandmaster
Introducing the OSA 5335 PTP GrandmasterIntroducing the OSA 5335 PTP Grandmaster
Introducing the OSA 5335 PTP Grandmaster
ADVA
 
Get your timing right for 5G OpenRAN!
Get your timing right for 5G OpenRAN!Get your timing right for 5G OpenRAN!
Get your timing right for 5G OpenRAN!
ADVA
 
Microsemi tp5000 datasheet_vf
Microsemi tp5000 datasheet_vfMicrosemi tp5000 datasheet_vf
Microsemi tp5000 datasheet_vf
Charlie Ateenyi
 
Introducing GNSS/GPS backup as a service (GBaaS)
Introducing GNSS/GPS backup as a service (GBaaS)Introducing GNSS/GPS backup as a service (GBaaS)
Introducing GNSS/GPS backup as a service (GBaaS)
ADVA
 
Industrial optically pumped cesium beam clock
Industrial optically pumped cesium beam clockIndustrial optically pumped cesium beam clock
Industrial optically pumped cesium beam clock
ADVA
 
Industry's longest holdover with the OSA 3350 SePRC™ optical cesium clock
Industry's longest holdover with the OSA 3350 SePRC™ optical cesium clockIndustry's longest holdover with the OSA 3350 SePRC™ optical cesium clock
Industry's longest holdover with the OSA 3350 SePRC™ optical cesium clock
ADVA
 

Contenu connexe

Similaire à Best practices for resilient NIST/UTC traceable sub-µsec timestamping of financial trades

NextGen Network Synchronization
NextGen Network SynchronizationNextGen Network Synchronization
NextGen Network Synchronization
Dhiman Chowdhury
 

Similaire à Best practices for resilient NIST/UTC traceable sub-µsec timestamping of financial trades (20)

Addressing PNT threats in critical defense infrastructure
Addressing PNT threats in critical defense infrastructureAddressing PNT threats in critical defense infrastructure
Addressing PNT threats in critical defense infrastructure
 
In-service synchronization monitoring and assurance
In-service synchronization monitoring and assuranceIn-service synchronization monitoring and assurance
In-service synchronization monitoring and assurance
 
Time sync: Existing mobile networks need to be ready for 5G and time-sensitiv...
Time sync: Existing mobile networks need to be ready for 5G and time-sensitiv...Time sync: Existing mobile networks need to be ready for 5G and time-sensitiv...
Time sync: Existing mobile networks need to be ready for 5G and time-sensitiv...
 
What is the future of traditional SSUs and TSGs?
What is the future of traditional SSUs and TSGs?What is the future of traditional SSUs and TSGs?
What is the future of traditional SSUs and TSGs?
 
Best practices in solving PNT threats in critical defense communications infr...
Best practices in solving PNT threats in critical defense communications infr...Best practices in solving PNT threats in critical defense communications infr...
Best practices in solving PNT threats in critical defense communications infr...
 
ePRTC in data centers – GNSS backup as a service (GBaaS)
ePRTC in data centers – GNSS backup as a service (GBaaS)ePRTC in data centers – GNSS backup as a service (GBaaS)
ePRTC in data centers – GNSS backup as a service (GBaaS)
 
Network time protocol
Network time protocolNetwork time protocol
Network time protocol
 
Protecting third-party timing receivers from cyberattacks with trusted networ...
Protecting third-party timing receivers from cyberattacks with trusted networ...Protecting third-party timing receivers from cyberattacks with trusted networ...
Protecting third-party timing receivers from cyberattacks with trusted networ...
 
Methods for Improving NTP
Methods for Improving NTPMethods for Improving NTP
Methods for Improving NTP
 
In Service Monitoring and Assurance at ITSF 2014
In Service Monitoring and Assurance at ITSF 2014 In Service Monitoring and Assurance at ITSF 2014
In Service Monitoring and Assurance at ITSF 2014
 
PTP across borders: Babel retold
PTP across borders: Babel retoldPTP across borders: Babel retold
PTP across borders: Babel retold
 
Improving NTP Installed Base Time Accuracy
Improving NTP Installed Base Time AccuracyImproving NTP Installed Base Time Accuracy
Improving NTP Installed Base Time Accuracy
 
Syncing the cloud - from T1 to TAP
Syncing the cloud - from T1 to TAP Syncing the cloud - from T1 to TAP
Syncing the cloud - from T1 to TAP
 
NextGen Network Synchronization
NextGen Network SynchronizationNextGen Network Synchronization
NextGen Network Synchronization
 
Sync on TAP - Syncing infrastructure with software
Sync on TAP - Syncing infrastructure with softwareSync on TAP - Syncing infrastructure with software
Sync on TAP - Syncing infrastructure with software
 
Recent growth in timing
Recent growth in timingRecent growth in timing
Recent growth in timing
 
Introducing the OSA 5335 PTP Grandmaster
Introducing the OSA 5335 PTP GrandmasterIntroducing the OSA 5335 PTP Grandmaster
Introducing the OSA 5335 PTP Grandmaster
 
Get your timing right for 5G OpenRAN!
Get your timing right for 5G OpenRAN!Get your timing right for 5G OpenRAN!
Get your timing right for 5G OpenRAN!
 
Microsemi tp5000 datasheet_vf
Microsemi tp5000 datasheet_vfMicrosemi tp5000 datasheet_vf
Microsemi tp5000 datasheet_vf
 
Introducing GNSS/GPS backup as a service (GBaaS)
Introducing GNSS/GPS backup as a service (GBaaS)Introducing GNSS/GPS backup as a service (GBaaS)
Introducing GNSS/GPS backup as a service (GBaaS)
 

Plus de ADVA

ePRTC in data centers - GNSS-backup-as-a-service (GBaaS)
ePRTC in data centers - GNSS-backup-as-a-service (GBaaS)ePRTC in data centers - GNSS-backup-as-a-service (GBaaS)
ePRTC in data centers - GNSS-backup-as-a-service (GBaaS)
ADVA
 
Open optical edge connecting mobile access networks
Open optical edge connecting mobile access networksOpen optical edge connecting mobile access networks
Open optical edge connecting mobile access networks
ADVA
 

Plus de ADVA (20)

Industrial optically pumped cesium beam clock
Industrial optically pumped cesium beam clockIndustrial optically pumped cesium beam clock
Industrial optically pumped cesium beam clock
 
Industry's longest holdover with the OSA 3350 SePRC™ optical cesium clock
Industry's longest holdover with the OSA 3350 SePRC™ optical cesium clockIndustry's longest holdover with the OSA 3350 SePRC™ optical cesium clock
Industry's longest holdover with the OSA 3350 SePRC™ optical cesium clock
 
Precise and assured timing for enterprise networks
Precise and assured timing for enterprise networksPrecise and assured timing for enterprise networks
Precise and assured timing for enterprise networks
 
Introducing Ensemble Cloudlet for on-premises cloud demand
Introducing Ensemble Cloudlet for on-premises cloud demandIntroducing Ensemble Cloudlet for on-premises cloud demand
Introducing Ensemble Cloudlet for on-premises cloud demand
 
ePRTC in data centers - GNSS-backup-as-a-service (GBaaS)
ePRTC in data centers - GNSS-backup-as-a-service (GBaaS)ePRTC in data centers - GNSS-backup-as-a-service (GBaaS)
ePRTC in data centers - GNSS-backup-as-a-service (GBaaS)
 
Meet stringent latency demands with time-sensitive networking
Meet stringent latency demands with time-sensitive networkingMeet stringent latency demands with time-sensitive networking
Meet stringent latency demands with time-sensitive networking
 
Making networks secure with multi-layer encryption
Making networks secure with multi-layer encryptionMaking networks secure with multi-layer encryption
Making networks secure with multi-layer encryption
 
Quantum threat: How to protect your optical network
Quantum threat: How to protect your optical networkQuantum threat: How to protect your optical network
Quantum threat: How to protect your optical network
 
Optical networks and the ecodesign tradeoff between climate change mitigation...
Optical networks and the ecodesign tradeoff between climate change mitigation...Optical networks and the ecodesign tradeoff between climate change mitigation...
Optical networks and the ecodesign tradeoff between climate change mitigation...
 
Trends in next-generation data center interconnects (DCI)
Trends in next-generation data center interconnects (DCI)Trends in next-generation data center interconnects (DCI)
Trends in next-generation data center interconnects (DCI)
 
Open optical edge connecting mobile access networks
Open optical edge connecting mobile access networksOpen optical edge connecting mobile access networks
Open optical edge connecting mobile access networks
 
Introducing Adva Network Security – a trusted German anchor
Introducing Adva Network Security – a trusted German anchorIntroducing Adva Network Security – a trusted German anchor
Introducing Adva Network Security – a trusted German anchor
 
Meet the industry's first pluggable 10G demarcation device
Meet the industry's first pluggable 10G demarcation deviceMeet the industry's first pluggable 10G demarcation device
Meet the industry's first pluggable 10G demarcation device
 
Introducing ADVA AccessWave25™
Introducing ADVA AccessWave25™Introducing ADVA AccessWave25™
Introducing ADVA AccessWave25™
 
10G edge technology for outdoor environments
10G edge technology for outdoor environments10G edge technology for outdoor environments
10G edge technology for outdoor environments
 
The quantum age - secure transport networks
The quantum age - secure transport networksThe quantum age - secure transport networks
The quantum age - secure transport networks
 
From leased lines to optical spectrum services
From leased lines to optical spectrum servicesFrom leased lines to optical spectrum services
From leased lines to optical spectrum services
 
The coherent optical edge
The coherent optical edgeThe coherent optical edge
The coherent optical edge
 
Introducing the market's first high-performance optical cesium clock
Introducing the market's first high-performance optical cesium clockIntroducing the market's first high-performance optical cesium clock
Introducing the market's first high-performance optical cesium clock
 
Best practices in synchronizing IP-based packet broadcast networks
Best practices in synchronizing IP-based packet broadcast networksBest practices in synchronizing IP-based packet broadcast networks
Best practices in synchronizing IP-based packet broadcast networks
 

Dernier

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@
 
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 AmsterdamDEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
UiPathCommunity
 

Dernier (20)

MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024
 
Elevate Developer Efficiency & build GenAI Application with Amazon Q​
Elevate Developer Efficiency & build GenAI Application with Amazon Q​Elevate Developer Efficiency & build GenAI Application with Amazon Q​
Elevate Developer Efficiency & build GenAI Application with Amazon Q​
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
 
[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf[BuildWithAI] Introduction to Gemini.pdf
[BuildWithAI] Introduction to Gemini.pdf
 
Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of Terraform
 
Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...
Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...
Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...
 
ICT role in 21st century education and its challenges
ICT role in 21st century education and its challengesICT role in 21st century education and its challenges
ICT role in 21st century education and its challenges
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor Presentation
 
WSO2's API Vision: Unifying Control, Empowering Developers
WSO2's API Vision: Unifying Control, Empowering DevelopersWSO2's API Vision: Unifying Control, Empowering Developers
WSO2's API Vision: Unifying Control, Empowering Developers
 
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWEREMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
 
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 AmsterdamDEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
 
CNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In PakistanCNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In Pakistan
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot ModelMcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Mcleodganj Call Girls 🥰 8617370543 Service Offer VIP Hot Model
 

Best practices for resilient NIST/UTC traceable sub-µsec timestamping of financial trades

  • 1. Best practices for resilient, NIST/UTC-traceable sub-µsec timestamping of financial trades May 11, 2022 (9:10-9:25a) | WSTS, Denver, CO | Nino De Falcis, Sr. director, sync business development, Americas, Oscilloquartz, ADVA Business clock regulations | Resilient PNT mandate | NTP/PTP sync | Server with integrated PCIe GNSS PTP GM
  • 2. PNT assurance PNT* cyber threats are at an all-time high everywhere and are growing in sophistication *Positioning, Navigation & Timing | T enables P & N | aPNT+ (assured PNT Can Wall Street business trading clock survive the next cyberattack?
  • 3. © 2022 ADVA. All rights reserved. 3 US FINRA CAT • Trader clock accuracy: 50ms • Exchange clock accuracy: 100µs • Clock traceability: NIST (GNSS) • CAT: consolidated audit trail archiving all trading orders in a central repository for regulatory compliance, with self-reporting accuracy deviations per CAT 2020-02 EU ESMA MIFID II RTS 25 • Exchange/Trader clock accuracy: 100µs • Clock traceability: UTC (GNSS) vs. algo HFT accuracy target: 10-100’s of ns for network/trade optimization measurements Client/Server/VM timestamping requirements Business clock regulations in financial trading • Clock technology: NTP/PTP • Clock compliance: proof of accuracy/deviation reporting thru stored client data logs • Regulatory audits/fines: typ. up to 7 years of logged/archived data for forensics COMMON
  • 4. © 2022 ADVA. All rights reserved. 4 Why time is money in financial markets • If the time is off, the best price/profit is off too! • Trader 3, whose server’s time accuracy is tighter to NIST/UTC standard time, gets the best price/profit! Server time accuracy vs. NIST/UTC standard time Trading price (line chart) 3 traders with a different server business clock Price variations with inaccurate business clocks trader 3 trader 1 trader 2 NIST/UTC standard time price spread Trading price (candlestick chart) Server time Price variations across trading servers with inaccurate business clocks Green dots show the best price with the correct NIST/UTC time
  • 5. © 2022 ADVA. All rights reserved. 5 Driven by US Federal Executive Order 13905 and UK & Euro Commissions • PNT stands for Positioning, Navigation & Timing, and T is essential to enable P & N • Protect government/industry critical infrastructure against PNT disruptions from GPS/GNSS jamming/spoofing & other network timing cyberattacks • Deploy resilient, assured & self-survivable PNT systems • Target critical infrastructure under national security threats • Use published resilient PNT guidelines & standard in progress • DHS Resilient PNT Conformance Framework • NIST Cybersecurity Framework for PNT Profile • IEEE P1952 Resilient PNT for User Equipment Standard working group What is the resilient PNT? Power grids Finance Transportation Communications Data centers resiliency levels clock sources 1 2 3 N multisource 1 2 3 4 next-gen system
  • 6. © 2022 ADVA. All rights reserved. 6 What’s the problem in financial markets? $1B/day in economic cost if GPS/PNT is disrupted* *source: RTI & NIST 2019 GPS & US critical infrastructure under national security threats Finance Communications Power grids Transportation Data centers All supported by PNT cyberthreats
  • 7. © 2022 ADVA. All rights reserved. 7 What are the PNT cyberthreats & GNSS vulnerabilities? RARE Cyberattacks GPS/GNSS receiver Jamming RARE GPS/GNSS degradation causes Environmental GPS/GNSS ground segment errors Adjacent-band transmitters Spoofing External GPS/GNSS level Internal network level COMMON NTP PTP More frequent PNT cyberthreats / / Network interference Client clock Boundary clock
  • 8. © 2022 ADVA. All rights reserved. 8 Networkwide Sync Mgmt & Compliance System WAN network packet LAN network Redundant single GPS/GNSS source timing architecture Data Center 1 (DC 1) GM-A (GNSS NTP/PTP grandmaster time server) Data Center 2 (DC 2) PTP failover backup cross reference monitoring 1 2 3 GPS/GNSS PNT cyberthreats GM-B PTP Client machine/Server/VM PTP 4 NTP 4 4 Client software sync monitor/ non-compliance alerting PNT assurance
  • 9. © 2022 ADVA. All rights reserved. 9 Networkwide Sync Mgmt & Compliance System WAN network packet LAN network “Zero-trust multisource backup” timing architecture DC 1 ePRTC* DC 2 PTP failover backup cross reference monitoring 1 3 4 GM-B 2 PNT backup sources PNT assurance Cesium, NIST, WR, eLORAN, LEO, etc. National time standard like NIST & NPL *enhanced Primary Reference Time Clock (GM-A + backup sources) 1 Client machine/Server/VM PTP NTP PTP PTP 5 5 5 Client software sync monitor/ non-compliance alerting
  • 10. © 2022 ADVA. All rights reserved. 10 Secure networkwide sync mgmt & compliance system Networkwide Sync Mgmt & Compliance System Neural AI/ML intelligence for self-survivability, end-to-end control, visibility, resilient & assured PNT geolocation DCs 1 & 2 alert PTP backup assurance to DC 2 timing chain alert with ePRTC/ PTP backup rearrangements DC 1 GM-A alert with ePRTC/PTP backup to DC 2 timing topology with ePRTC/PTP backup vendor-agnostic GNSS analytics/assurance PTP backup ePRTC backup DC 2 DC 1 DC 2 DC 1 DC 2 DC 1 DC 2 PTP backup ePRTC backup DC 1 DC 2 8 6 5 3 2 1 PNT assurance DC 2 GM-B alert with PTP backup from DC 1 ePRTC 4 client sync monitor/ compliance assurance 7 Financial analytics tool vendors like Splunk/Pico API for client data logs 9
  • 11. © 2022 ADVA. All rights reserved. 11 packet LAN network Secure multisource client software sync architecture DC 1 smartNIC processor internal clock app 1 client sync Server/Client machine/VM PTP timestamped packets PTP app 2 ePRTC PNT backup sources Client software sync monitor/ non-compliance alerting 100’s of ns Accuracy Switch with PTP asymmetry optimization GM-A DC 2 GM-B GNSS NTP/PTP grandmaster time server) with HW timestamping assist • Full on path support with PTP-aware class D BC (~5ns impact) PTP
  • 12. © 2022 ADVA. All rights reserved. 12 packet LAN network Server with embedded PCIe GNSS PTP GM for HFT applications internal clock app 1 Server 1 app 2 processor Embedded PCIe GNSS PTP GM smartNIC internal clock app 1 app 2 processor PTP over Ethernet HFT accuracy sub 100ns Server 2 (or more) DC 1 ePRTC PNT backup sources GM-A DC 2 GM-B GNSS NTP/PTP grandmaster time server) • PTP master/slave/BC • PTP monitor • Holdover clock • PPS+ToD PCIe client sync PTP PTP backup
  • 13. Thank you IMPORTANT NOTICE ADVA is the exclusive owner or licensee of the content, material, and information in this presentation. Any reproduction, publication or reprint, in whole or in part, is strictly prohibited. The information in this presentation may not be accurate, complete or up to date, and is provided without warranties or representations of any kind, either express or implied. ADVA shall not be responsible for and disclaims any liability for any loss or damages, including without limitation, direct, indirect, incidental, consequential and special damages, alleged to have been caused by or in connection with using and/or relying on the information contained in this presentation. Copyright © for the entire content of this presentation: ADVA. Questions? Contact us at info@adva.com