[ntp:questions] Gretchen - in regard to CertifiedTime it never died...

Todd Glassey CISM CIFI tglassey at earthlink.net
Fri May 1 03:01:21 UTC 2009

Gretchen Baxter wrote:
> good news for people who like good news.
> so when can we expect actual solutions from certichron?
Certichron has been serving secured NTP quietly for two years now.  We 
offer a new NTP/PPP service which eliminates the issues with the lack of 
security the Internet poses.
> On Thu, Apr 30, 2009 at 11:50 AM, Todd Glassey CISM CIFI 
> <tglassey at earthlink.net <mailto:tglassey at earthlink.net>> wrote:
>     Gretchen Baxter wrote:
>         thanx!
>         in that case, this is good news for everyone in the timing
>         community.
>     We think so - and as CertifiedTime's original founder I am
>     overjoyed to turn CertifiedTime's services back online. The intent
>     when I built CertifiedTime Inc originally was to build a uniform
>     time source which is operated inside of an Audit Practice which
>     meets BOTH the RFC3161 requirements (set by ETSI and the EU) for
>     running time service enterprises as well as those through US Law
>     as well. We at Certichron are doing exactly that.
>     This, by the way, is why I keep asserting that the following is
>     necessary because of the sheer number of implementations using any
>     number of OS interfaces including those run-time services added
>     here by the ISC.ORG <http://ISC.ORG> NTP effort. The same is
>     needed for each commercial release of NTP including all commercial
>     providers since the Audit Community has been formally put on
>     notice this key set of definitions and goal's don't exist, and
>     since they cannot review those test reports they can no longer
>     allow the introduction of un-certified code into production systems.
>       1)   A formal specification of how NTP works with what Kernel
>     resources and what the thread overhead of those controls inside
>     the Run-Time Image ace. The intent is to create a set of metrics
>     which can be used by NTP implementors to tune their releases and
>     to set a 'stake in the ground' for implementors of appliance style
>     NTP systems.
>       2)   A formal specification for testing NTP and a method of
>     specify partial or core compliance since many of the new controls
>     added don't really make sense to keep inside all versions of NTP.
>     (Sorry it is what it is - NTP - IMHO - should not be used for
>     negotiating policy information - only for moving time around).
>       3)   A formal characterization and operations guidelines so the
>     commercial industry don't get bad advice on the systems and
>     processes needed to generate that court-admissible evidence.
>     Todd Glassey
>         On Wed, Apr 29, 2009 at 5:53 PM, Todd Glassey CISM CIFI
>         <tglassey at earthlink.net <mailto:tglassey at earthlink.net>
>         <mailto:tglassey at earthlink.net
>         <mailto:tglassey at earthlink.net>>> wrote:
>            So Gretchen - you asked about CTI (CertifiedTime and noticed it
>            went out
>            of business). CertifiedTime was no different than any of the
>            poorly run
>            .com companies which burst. But the resurrected Certichron
>         is run by
>            attorney's and as its founder and principal technologist I
>         can assure
>            you that the entity is alive and well - so just change the name
>            If you want to talk more about what happend to CertifiedTime or
>            why, we
>            should take this offline.
>            Todd Glassey CISM CIFI
>            tglassey at certichron.com <mailto:tglassey at certichron.com>
>         <mailto:tglassey at certichron.com <mailto:tglassey at certichron.com>>
>            _______________________________________________
>            questions mailing list
>            questions at lists.ntp.org <mailto:questions at lists.ntp.org>
>         <mailto:questions at lists.ntp.org <mailto:questions at lists.ntp.org>>
>            https://lists.ntp.org/mailman/listinfo/questions
>         ------------------------------------------------------------------------
>         No virus found in this incoming message.
>         Checked by AVG - www.avg.com <http://www.avg.com> Version:
>         8.0.238 / Virus Database: 270.12.9/2087 - Release Date:
>         04/29/09 18:03:00
> ------------------------------------------------------------------------
> No virus found in this incoming message.
> Checked by AVG - www.avg.com 
> Version: 8.0.238 / Virus Database: 270.12.11/2089 - Release Date: 04/30/09 17:53:00

More information about the questions mailing list