SlideShare ist ein Scribd-Unternehmen logo

Achieving resilient and assured PNT in secure information networks

ADVA
ADVA

Chuck Perry’s JNC session provided real-world information on how to synchronize secure defense information networks with resilient, assured PNT capabilities. He described sync strategies to prevent, defend, and mitigate GPS cyberthreats, with a focus on PNT services in mission-critical battlefield applications.

Technologie
1 von 11
Achieving resilient and assured PNT in secure information networks June 8, 2022 (9:15-9:35a) | JNC, San Diego, CA | Chuck Perry, Sync Business Development Manager NA, Oscilloquartz Resilient PNT mandate | Ideal PNT architecture | Best PNT practices for defense-in-depth security
PNT* cyber threats are at an all-time high everywhere and are growing in sophistication *Positioning, Navigation & Timing | T enables P & N | aPNT+ (assured PNT) Pentagon Army Space Force Air Force Navy PNT assurance
© 2022 ADVA. All rights reserved. 3 Driven by US Federal Executive Order 13905 and UK and Euro Commissions • PNT stands for Positioning, Navigation & Timing, and T is essential to enable P & N • Protect government/industry critical infrastructure against PNT disruptions from GPS jamming/spoofing and network timing cyberattacks • Deploy resilient, assured and self-survivable PNT systems with defense-in-depth capability • Target critical infrastructure under national security threats • Use published resilient PNT guidelines and standard in progress • DHS Resilient PNT Conformance Framework • NIST Cybersecurity Framework for PNT Profile • IEEE P1952 Resilient PNT for User Equipment Standard working group What is the resilient PNT? Power grids Finance Transportation Communications Data centers resiliency levels clock sources 1 2 3 N multisource 1 2 3 4 next-gen system
© 2022 ADVA. All rights reserved. 4 Critical infrastructure under warfighting and homeland security threats If GPS is disrupted or compromised Finance Communications Power grids Transportation Data centers All supported by PNT cyber threats GPS
© 2022 ADVA. All rights reserved. 5 What are the PNT cyberthreats and GNSS vulnerabilities? RARE Cyberattacks GPS/GNSS receiver Jamming RARE GPS/GNSS degradation causes Environmental GPS/GNSS ground segment errors Adjacent-band transmitters Spoofing External GPS/GNSS level Internal network level COMMON NTP PTP More frequent PNT cyber threats / / Network interference Client clock Boundary clock
© 2022 ADVA. All rights reserved. 6 Networkwide Sync Mgmt WAN network packet LAN network Redundant timing architecture with a single GPS source Data comm Center 1 (DC 1) GM-A (GNSS NTP/PTP grandmaster time server) Data comm Center 2 (DC 2) PTP failover backup cross reference monitoring 1 2 3 GPS/GNSS GM-B PTP Client machine/server/VM running critical command and control applications PTP 4 NTP 4 4 Client software sync monitor PNT assurance Networkwide sync management
© 2022 ADVA. All rights reserved. 7 WAN network packet LAN network “Zero-trust multisource backup” timing architecture DC 1 ePRTC* DC 2 PTP failover backup Cross reference monitoring 1 3 GM-B 2 PNT backup sources PNT assurance Cesium, NIST, WR, eLORAN, LEO, etc. National time standard like NIST *Enhanced Primary reference time clock (GM-A + backup sources) 1 Networkwide Sync Mgmt Networkwide sync management PTP Client machine/server/VM running critical command and control applications PTP 5 NTP 5 5 Client software sync monitor 4
© 2022 ADVA. All rights reserved. 8 WAN network packet LAN network “Zero-trust multi-source backup” timing architecture DC 1 ePRTC* DC 2 PTP failover backup Cross reference monitoring 1 3 GM-B 2 PNT backup sources PNT assurance Cesium, NIST, WR, eLORAN, LEO, etc. National time standard like NIST *Enhanced primary reference time clock (GM-A + backup sources) 1 Networkwide Sync Mgmt Networkwide sync management PTP Client machine/server/VM running critical command and control applications PTP 5 NTP 5 5 Client software sync monitor 4 Worst case scenario: GPS sats shot down
© 2022 ADVA. All rights reserved. 9 PPS/PPS+ToD 10MHz BITS SyncE PTP How ePRTC cesium backup timing works GNSS MB receiver Time/phase holdover if GPS/GNSS goes down ePRTC+ solution: 100ns over 100 days Anti-jam antenna 14 days coreSync Optical cesium atomic clock Multi-source clock combiner Grandmaster clock Next-Gen Optical Cesium clock GPS Time error 100ns 30ns edgeSync grandmaster ePRTC+ solution (functional diagram) ✓ Other sources GPS GPS + combiner integrated into the grandmaster
© 2022 ADVA. All rights reserved. 10 Secure network-wide sync management Neural AI/ML intelligence for self-survivability, end-to-end control, visibility, resilient and assured PNT Geolocation DCs 1 and 2 alert PTP backup assurance to DC 2 Timing chain alert with ePRTC/ PTP backup rearrangements DC 1 GM-A alert with ePRTC/PTP backup to DC 2 Timing topology with ePRTC/PTP backup Vendor-agnostic GNSS analytics/assurance PTP backup ePRTC backup DC 2 DC 1 DC 2 DC 1 DC 2 DC 1 DC 2 PTP backup ePRTC backup DC 1 DC 2 8 6 5 3 2 1 DC 2 GM-B alert with PTP backup from DC 1 ePRTC 4 Client sync monitor 7 Interoperability with other command and control systems API Open interface 9 Networkwide Sync Mgmt Networkwide sync management 9 • Secure communications • MIL 5G PNT systems (land, air, sea) • Command and control centers • Radar event tagging system • SATCOM ground stations • SATCOM network operations centers
Thank you IMPORTANT NOTICE ADVA is the exclusive owner or licensee of the content, material, and information in this presentation. Any reproduction, publication or reprint, in whole or in part, is strictly prohibited. The information in this presentation may not be accurate, complete or up to date, and is provided without warranties or representations of any kind, either express or implied. ADVA shall not be responsible for and disclaims any liability for any loss or damages, including without limitation, direct, indirect, incidental, consequential and special damages, alleged to have been caused by or in connection with using and/or relying on the information contained in this presentation. Copyright © for the entire content of this presentation: ADVA. info@adva.com

Empfohlen

In-service synchronization monitoring and assurance
In-service synchronization monitoring and assuranceIn-service synchronization monitoring and assurance
In-service synchronization monitoring and assurance
ADVA
 
Introducing ultra-precise time for server-hosted applications
Introducing ultra-precise time for server-hosted applicationsIntroducing ultra-precise time for server-hosted applications
Introducing ultra-precise time for server-hosted applications
ADVA
 
Sync on TAP - Syncing infrastructure with software
Sync on TAP - Syncing infrastructure with softwareSync on TAP - Syncing infrastructure with software
Sync on TAP - Syncing infrastructure with software
ADVA
 
ePRTC in data centers - GNSS-backup-as-a-service (GBaaS)
ePRTC in data centers - GNSS-backup-as-a-service (GBaaS)ePRTC in data centers - GNSS-backup-as-a-service (GBaaS)
ePRTC in data centers - GNSS-backup-as-a-service (GBaaS)
ADVA
 
Introducing GNSS/GPS backup as a service (GBaaS)
Introducing GNSS/GPS backup as a service (GBaaS)Introducing GNSS/GPS backup as a service (GBaaS)
Introducing GNSS/GPS backup as a service (GBaaS)
ADVA
 
Addressing PNT threats in critical defense infrastructure
Addressing PNT threats in critical defense infrastructureAddressing PNT threats in critical defense infrastructure
Addressing PNT threats in critical defense infrastructure
ADVA
 
Introducing Ensemble SaaS MANO
Introducing Ensemble SaaS MANOIntroducing Ensemble SaaS MANO
Introducing Ensemble SaaS MANO
ADVA
 
Syncing the cloud - from T1 to TAP
Syncing the cloud - from T1 to TAP Syncing the cloud - from T1 to TAP
Syncing the cloud - from T1 to TAP
ADVA
 

Empfohlen

In-service synchronization monitoring and assurance
In-service synchronization monitoring and assuranceIn-service synchronization monitoring and assurance
In-service synchronization monitoring and assurance
ADVA
 
Introducing ultra-precise time for server-hosted applications
Introducing ultra-precise time for server-hosted applicationsIntroducing ultra-precise time for server-hosted applications
Introducing ultra-precise time for server-hosted applications
ADVA
 
Sync on TAP - Syncing infrastructure with software
Sync on TAP - Syncing infrastructure with softwareSync on TAP - Syncing infrastructure with software
Sync on TAP - Syncing infrastructure with software
ADVA
 
ePRTC in data centers - GNSS-backup-as-a-service (GBaaS)
ePRTC in data centers - GNSS-backup-as-a-service (GBaaS)ePRTC in data centers - GNSS-backup-as-a-service (GBaaS)
ePRTC in data centers - GNSS-backup-as-a-service (GBaaS)
ADVA
 
Introducing GNSS/GPS backup as a service (GBaaS)
Introducing GNSS/GPS backup as a service (GBaaS)Introducing GNSS/GPS backup as a service (GBaaS)
Introducing GNSS/GPS backup as a service (GBaaS)
ADVA
 
Addressing PNT threats in critical defense infrastructure
Addressing PNT threats in critical defense infrastructureAddressing PNT threats in critical defense infrastructure
Addressing PNT threats in critical defense infrastructure
ADVA
 
Introducing Ensemble SaaS MANO
Introducing Ensemble SaaS MANOIntroducing Ensemble SaaS MANO
Introducing Ensemble SaaS MANO
ADVA
 
Syncing the cloud - from T1 to TAP
Syncing the cloud - from T1 to TAP Syncing the cloud - from T1 to TAP
Syncing the cloud - from T1 to TAP
ADVA
 
Introducing the market's first high-performance optical cesium clock
Introducing the market's first high-performance optical cesium clockIntroducing the market's first high-performance optical cesium clock
Introducing the market's first high-performance optical cesium clock
ADVA
 
O-RAN and the enterprise
O-RAN and the enterpriseO-RAN and the enterprise
O-RAN and the enterprise
ADVA
 
ePRTC in data centers – GNSS backup as a service (GBaaS)
ePRTC in data centers – GNSS backup as a service (GBaaS)ePRTC in data centers – GNSS backup as a service (GBaaS)
ePRTC in data centers – GNSS backup as a service (GBaaS)
ADVA
 
ADVA aPNT+™ security enhancements
ADVA aPNT+™ security enhancementsADVA aPNT+™ security enhancements
ADVA aPNT+™ security enhancements
ADVA
 
Meet stringent latency demands with time-sensitive networking
Meet stringent latency demands with time-sensitive networkingMeet stringent latency demands with time-sensitive networking
Meet stringent latency demands with time-sensitive networking
ADVA
 
Advanced: Private Networks & 5G Non-Public Networks
Advanced: Private Networks & 5G Non-Public NetworksAdvanced: Private Networks & 5G Non-Public Networks
Advanced: Private Networks & 5G Non-Public Networks
3G4G
 
Technical Overview of Cisco Catalyst 9200 Series Switches
Technical Overview of Cisco Catalyst 9200 Series SwitchesTechnical Overview of Cisco Catalyst 9200 Series Switches
Technical Overview of Cisco Catalyst 9200 Series Switches
Robb Boyd
 
5G Network Slicing
5G Network Slicing5G Network Slicing
5G Network Slicing
Sridhar Bhaskaran
 
Best practices in synchronizing IP-based packet broadcasting networks
Best practices in synchronizing IP-based packet broadcasting networksBest practices in synchronizing IP-based packet broadcasting networks
Best practices in synchronizing IP-based packet broadcasting networks
ADVA
 
Timing and synchronization for 5G over optical networks
Timing and synchronization for 5G over optical networksTiming and synchronization for 5G over optical networks
Timing and synchronization for 5G over optical networks
ADVA
 
5 g core network and the cloud - A standards perspective
5 g core network and the cloud - A standards perspective5 g core network and the cloud - A standards perspective
5 g core network and the cloud - A standards perspective
Sridhar Bhaskaran
 
Inject precise synchronization into open compute servers
Inject precise synchronization into open compute serversInject precise synchronization into open compute servers
Inject precise synchronization into open compute servers
ADVA
 
Growth and sustainability aspects of WDM
Growth and sustainability aspects of WDMGrowth and sustainability aspects of WDM
Growth and sustainability aspects of WDM
ADVA
 
Cable landing station
Cable landing stationCable landing station
Cable landing station
choudhurygargi
 
5G and V2X Automotive Slicing
5G and V2X Automotive Slicing5G and V2X Automotive Slicing
5G and V2X Automotive Slicing
Marie-Paule Odini
 
Mobile spectrum and network evolution to 2025 slides coleago - 24 mar 21
Mobile spectrum and network evolution to 2025 slides coleago - 24 mar 21Mobile spectrum and network evolution to 2025 slides coleago - 24 mar 21
Mobile spectrum and network evolution to 2025 slides coleago - 24 mar 21
Coleago Consulting
 
Intermediate: 5G Applications Architecture - A look at Application Functions ...
Intermediate: 5G Applications Architecture - A look at Application Functions ...Intermediate: 5G Applications Architecture - A look at Application Functions ...
Intermediate: 5G Applications Architecture - A look at Application Functions ...
3G4G
 
Advanced: 5G Service Based Architecture (SBA)
Advanced: 5G Service Based Architecture (SBA)Advanced: 5G Service Based Architecture (SBA)
Advanced: 5G Service Based Architecture (SBA)
3G4G
 
Setting off the 5G Advanced evolution with 3GPP Release 18
Setting off the 5G Advanced evolution with 3GPP Release 18Setting off the 5G Advanced evolution with 3GPP Release 18
Setting off the 5G Advanced evolution with 3GPP Release 18
Qualcomm Research
 
5G Integrated Access and Backhaul
5G Integrated Access and Backhaul5G Integrated Access and Backhaul
5G Integrated Access and Backhaul
Sridhar Bhaskaran
 
Best practices for resilient NIST/UTC traceable sub-µsec timestamping of fina...
Best practices for resilient NIST/UTC traceable sub-µsec timestamping of fina...Best practices for resilient NIST/UTC traceable sub-µsec timestamping of fina...
Best practices for resilient NIST/UTC traceable sub-µsec timestamping of fina...
ADVA
 
The need for GBaaS as GPS/GNSS is no longer a reliable source for critical PN...
The need for GBaaS as GPS/GNSS is no longer a reliable source for critical PN...The need for GBaaS as GPS/GNSS is no longer a reliable source for critical PN...
The need for GBaaS as GPS/GNSS is no longer a reliable source for critical PN...
ADVA
 

Weitere ähnliche Inhalte

Was ist angesagt?

Was ist angesagt? (20)

Introducing the market's first high-performance optical cesium clock
Introducing the market's first high-performance optical cesium clockIntroducing the market's first high-performance optical cesium clock
Introducing the market's first high-performance optical cesium clock
 
O-RAN and the enterprise
O-RAN and the enterpriseO-RAN and the enterprise
O-RAN and the enterprise
 
ePRTC in data centers – GNSS backup as a service (GBaaS)
ePRTC in data centers – GNSS backup as a service (GBaaS)ePRTC in data centers – GNSS backup as a service (GBaaS)
ePRTC in data centers – GNSS backup as a service (GBaaS)
 
ADVA aPNT+™ security enhancements
ADVA aPNT+™ security enhancementsADVA aPNT+™ security enhancements
ADVA aPNT+™ security enhancements
 
Meet stringent latency demands with time-sensitive networking
Meet stringent latency demands with time-sensitive networkingMeet stringent latency demands with time-sensitive networking
Meet stringent latency demands with time-sensitive networking
 
Advanced: Private Networks & 5G Non-Public Networks
Advanced: Private Networks & 5G Non-Public NetworksAdvanced: Private Networks & 5G Non-Public Networks
Advanced: Private Networks & 5G Non-Public Networks
 
Technical Overview of Cisco Catalyst 9200 Series Switches
Technical Overview of Cisco Catalyst 9200 Series SwitchesTechnical Overview of Cisco Catalyst 9200 Series Switches
Technical Overview of Cisco Catalyst 9200 Series Switches
 
5G Network Slicing
5G Network Slicing5G Network Slicing
5G Network Slicing
 
Best practices in synchronizing IP-based packet broadcasting networks
Best practices in synchronizing IP-based packet broadcasting networksBest practices in synchronizing IP-based packet broadcasting networks
Best practices in synchronizing IP-based packet broadcasting networks
 
Timing and synchronization for 5G over optical networks
Timing and synchronization for 5G over optical networksTiming and synchronization for 5G over optical networks
Timing and synchronization for 5G over optical networks
 
5 g core network and the cloud - A standards perspective
5 g core network and the cloud - A standards perspective5 g core network and the cloud - A standards perspective
5 g core network and the cloud - A standards perspective
 
Inject precise synchronization into open compute servers
Inject precise synchronization into open compute serversInject precise synchronization into open compute servers
Inject precise synchronization into open compute servers
 
Growth and sustainability aspects of WDM
Growth and sustainability aspects of WDMGrowth and sustainability aspects of WDM
Growth and sustainability aspects of WDM
 
Cable landing station
Cable landing stationCable landing station
Cable landing station
 
5G and V2X Automotive Slicing
5G and V2X Automotive Slicing5G and V2X Automotive Slicing
5G and V2X Automotive Slicing
 
Mobile spectrum and network evolution to 2025 slides coleago - 24 mar 21
Mobile spectrum and network evolution to 2025 slides coleago - 24 mar 21Mobile spectrum and network evolution to 2025 slides coleago - 24 mar 21
Mobile spectrum and network evolution to 2025 slides coleago - 24 mar 21
 
Intermediate: 5G Applications Architecture - A look at Application Functions ...
Intermediate: 5G Applications Architecture - A look at Application Functions ...Intermediate: 5G Applications Architecture - A look at Application Functions ...
Intermediate: 5G Applications Architecture - A look at Application Functions ...
 
Advanced: 5G Service Based Architecture (SBA)
Advanced: 5G Service Based Architecture (SBA)Advanced: 5G Service Based Architecture (SBA)
Advanced: 5G Service Based Architecture (SBA)
 
Setting off the 5G Advanced evolution with 3GPP Release 18
Setting off the 5G Advanced evolution with 3GPP Release 18Setting off the 5G Advanced evolution with 3GPP Release 18
Setting off the 5G Advanced evolution with 3GPP Release 18
 
5G Integrated Access and Backhaul
5G Integrated Access and Backhaul5G Integrated Access and Backhaul
5G Integrated Access and Backhaul
 

Ähnlich wie Achieving resilient and assured PNT in secure information networks

NextGen Network Synchronization
NextGen Network SynchronizationNextGen Network Synchronization
NextGen Network Synchronization
Dhiman Chowdhury
 

Ähnlich wie Achieving resilient and assured PNT in secure information networks (20)

Best practices for resilient NIST/UTC traceable sub-µsec timestamping of fina...
Best practices for resilient NIST/UTC traceable sub-µsec timestamping of fina...Best practices for resilient NIST/UTC traceable sub-µsec timestamping of fina...
Best practices for resilient NIST/UTC traceable sub-µsec timestamping of fina...
 
The need for GBaaS as GPS/GNSS is no longer a reliable source for critical PN...
The need for GBaaS as GPS/GNSS is no longer a reliable source for critical PN...The need for GBaaS as GPS/GNSS is no longer a reliable source for critical PN...
The need for GBaaS as GPS/GNSS is no longer a reliable source for critical PN...
 
ADVA launches new aPNT+™ platform to protect critical network infrastructure
ADVA launches new aPNT+™ platform to protect critical network infrastructureADVA launches new aPNT+™ platform to protect critical network infrastructure
ADVA launches new aPNT+™ platform to protect critical network infrastructure
 
Best practices for secure synchronization in smart grids
Best practices for secure synchronization in smart gridsBest practices for secure synchronization in smart grids
Best practices for secure synchronization in smart grids
 
Best sync practices and architecture strategies for secure, resilient PNT in ...
Best sync practices and architecture strategies for secure, resilient PNT in ...Best sync practices and architecture strategies for secure, resilient PNT in ...
Best sync practices and architecture strategies for secure, resilient PNT in ...
 
Best practices in solving PNT threats in critical defense communications infr...
Best practices in solving PNT threats in critical defense communications infr...Best practices in solving PNT threats in critical defense communications infr...
Best practices in solving PNT threats in critical defense communications infr...
 
ADVA’s telecommunications solutions for smart grids
ADVA’s telecommunications solutions for smart grids ADVA’s telecommunications solutions for smart grids
ADVA’s telecommunications solutions for smart grids
 
Time and Phase Delivery
Time and Phase DeliveryTime and Phase Delivery
Time and Phase Delivery
 
NextGen Network Synchronization
NextGen Network SynchronizationNextGen Network Synchronization
NextGen Network Synchronization
 
Best practices for secure PNT management in a multi vendor environment
Best practices for secure PNT management in a multi vendor environmentBest practices for secure PNT management in a multi vendor environment
Best practices for secure PNT management in a multi vendor environment
 
Protecting third-party timing receivers from cyberattacks with trusted networ...
Protecting third-party timing receivers from cyberattacks with trusted networ...Protecting third-party timing receivers from cyberattacks with trusted networ...
Protecting third-party timing receivers from cyberattacks with trusted networ...
 
Recent growth in timing
Recent growth in timingRecent growth in timing
Recent growth in timing
 
What is the future of traditional SSUs and TSGs?
What is the future of traditional SSUs and TSGs?What is the future of traditional SSUs and TSGs?
What is the future of traditional SSUs and TSGs?
 
In Service Monitoring and Assurance at ITSF 2014
In Service Monitoring and Assurance at ITSF 2014 In Service Monitoring and Assurance at ITSF 2014
In Service Monitoring and Assurance at ITSF 2014
 
Time sync: Existing mobile networks need to be ready for 5G and time-sensitiv...
Time sync: Existing mobile networks need to be ready for 5G and time-sensitiv...Time sync: Existing mobile networks need to be ready for 5G and time-sensitiv...
Time sync: Existing mobile networks need to be ready for 5G and time-sensitiv...
 
Precise and assured timing for enterprise networks
Precise and assured timing for enterprise networksPrecise and assured timing for enterprise networks
Precise and assured timing for enterprise networks
 
Synchronizing power networks
Synchronizing power networksSynchronizing power networks
Synchronizing power networks
 
Assured timing for power networks
Assured timing for power networksAssured timing for power networks
Assured timing for power networks
 
A new benchmark for timing success - OSA 5412 and 5422 access grandmasters
A new benchmark for timing success - OSA 5412 and 5422 access grandmasters A new benchmark for timing success - OSA 5412 and 5422 access grandmasters
A new benchmark for timing success - OSA 5412 and 5422 access grandmasters
 
Time Synchronisation
Time SynchronisationTime Synchronisation
Time Synchronisation
 

Mehr von ADVA

Open optical edge connecting mobile access networks
Open optical edge connecting mobile access networksOpen optical edge connecting mobile access networks
Open optical edge connecting mobile access networks
ADVA
 

Mehr von ADVA (18)

Industrial optically pumped cesium beam clock
Industrial optically pumped cesium beam clockIndustrial optically pumped cesium beam clock
Industrial optically pumped cesium beam clock
 
Industry's longest holdover with the OSA 3350 SePRC™ optical cesium clock
Industry's longest holdover with the OSA 3350 SePRC™ optical cesium clockIndustry's longest holdover with the OSA 3350 SePRC™ optical cesium clock
Industry's longest holdover with the OSA 3350 SePRC™ optical cesium clock
 
Introducing Ensemble Cloudlet for on-premises cloud demand
Introducing Ensemble Cloudlet for on-premises cloud demandIntroducing Ensemble Cloudlet for on-premises cloud demand
Introducing Ensemble Cloudlet for on-premises cloud demand
 
Making networks secure with multi-layer encryption
Making networks secure with multi-layer encryptionMaking networks secure with multi-layer encryption
Making networks secure with multi-layer encryption
 
Quantum threat: How to protect your optical network
Quantum threat: How to protect your optical networkQuantum threat: How to protect your optical network
Quantum threat: How to protect your optical network
 
Optical networks and the ecodesign tradeoff between climate change mitigation...
Optical networks and the ecodesign tradeoff between climate change mitigation...Optical networks and the ecodesign tradeoff between climate change mitigation...
Optical networks and the ecodesign tradeoff between climate change mitigation...
 
Trends in next-generation data center interconnects (DCI)
Trends in next-generation data center interconnects (DCI)Trends in next-generation data center interconnects (DCI)
Trends in next-generation data center interconnects (DCI)
 
Open optical edge connecting mobile access networks
Open optical edge connecting mobile access networksOpen optical edge connecting mobile access networks
Open optical edge connecting mobile access networks
 
Introducing Adva Network Security – a trusted German anchor
Introducing Adva Network Security – a trusted German anchorIntroducing Adva Network Security – a trusted German anchor
Introducing Adva Network Security – a trusted German anchor
 
Meet the industry's first pluggable 10G demarcation device
Meet the industry's first pluggable 10G demarcation deviceMeet the industry's first pluggable 10G demarcation device
Meet the industry's first pluggable 10G demarcation device
 
Introducing ADVA AccessWave25™
Introducing ADVA AccessWave25™Introducing ADVA AccessWave25™
Introducing ADVA AccessWave25™
 
10G edge technology for outdoor environments
10G edge technology for outdoor environments10G edge technology for outdoor environments
10G edge technology for outdoor environments
 
The quantum age - secure transport networks
The quantum age - secure transport networksThe quantum age - secure transport networks
The quantum age - secure transport networks
 
From leased lines to optical spectrum services
From leased lines to optical spectrum servicesFrom leased lines to optical spectrum services
From leased lines to optical spectrum services
 
The coherent optical edge
The coherent optical edgeThe coherent optical edge
The coherent optical edge
 
Get your timing right for 5G OpenRAN!
Get your timing right for 5G OpenRAN!Get your timing right for 5G OpenRAN!
Get your timing right for 5G OpenRAN!
 
Best practices in synchronizing IP-based packet broadcast networks
Best practices in synchronizing IP-based packet broadcast networksBest practices in synchronizing IP-based packet broadcast networks
Best practices in synchronizing IP-based packet broadcast networks
 
Introducing Coherent 100ZR for the optical edge
Introducing Coherent 100ZR for the optical edgeIntroducing Coherent 100ZR for the optical edge
Introducing Coherent 100ZR for the optical edge
 

Kürzlich hochgeladen

Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
Principled Technologies
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
UK Journal
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
Joaquim Jorge
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
Delhi Call girls
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Igalia
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
Delhi Call girls
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
Enterprise Knowledge
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
Puma Security, LLC
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
Delhi Call girls
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Drew Madelung
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
Igalia
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Miguel Araújo
 

Kürzlich hochgeladen (20)

A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slides
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 

Achieving resilient and assured PNT in secure information networks

  • 1. Achieving resilient and assured PNT in secure information networks June 8, 2022 (9:15-9:35a) | JNC, San Diego, CA | Chuck Perry, Sync Business Development Manager NA, Oscilloquartz Resilient PNT mandate | Ideal PNT architecture | Best PNT practices for defense-in-depth security
  • 2. PNT* cyber threats are at an all-time high everywhere and are growing in sophistication *Positioning, Navigation & Timing | T enables P & N | aPNT+ (assured PNT) Pentagon Army Space Force Air Force Navy PNT assurance
  • 3. © 2022 ADVA. All rights reserved. 3 Driven by US Federal Executive Order 13905 and UK and Euro Commissions • PNT stands for Positioning, Navigation & Timing, and T is essential to enable P & N • Protect government/industry critical infrastructure against PNT disruptions from GPS jamming/spoofing and network timing cyberattacks • Deploy resilient, assured and self-survivable PNT systems with defense-in-depth capability • Target critical infrastructure under national security threats • Use published resilient PNT guidelines and standard in progress • DHS Resilient PNT Conformance Framework • NIST Cybersecurity Framework for PNT Profile • IEEE P1952 Resilient PNT for User Equipment Standard working group What is the resilient PNT? Power grids Finance Transportation Communications Data centers resiliency levels clock sources 1 2 3 N multisource 1 2 3 4 next-gen system
  • 4. © 2022 ADVA. All rights reserved. 4 Critical infrastructure under warfighting and homeland security threats If GPS is disrupted or compromised Finance Communications Power grids Transportation Data centers All supported by PNT cyber threats GPS
  • 5. © 2022 ADVA. All rights reserved. 5 What are the PNT cyberthreats and GNSS vulnerabilities? RARE Cyberattacks GPS/GNSS receiver Jamming RARE GPS/GNSS degradation causes Environmental GPS/GNSS ground segment errors Adjacent-band transmitters Spoofing External GPS/GNSS level Internal network level COMMON NTP PTP More frequent PNT cyber threats / / Network interference Client clock Boundary clock
  • 6. © 2022 ADVA. All rights reserved. 6 Networkwide Sync Mgmt WAN network packet LAN network Redundant timing architecture with a single GPS source Data comm Center 1 (DC 1) GM-A (GNSS NTP/PTP grandmaster time server) Data comm Center 2 (DC 2) PTP failover backup cross reference monitoring 1 2 3 GPS/GNSS GM-B PTP Client machine/server/VM running critical command and control applications PTP 4 NTP 4 4 Client software sync monitor PNT assurance Networkwide sync management
  • 7. © 2022 ADVA. All rights reserved. 7 WAN network packet LAN network “Zero-trust multisource backup” timing architecture DC 1 ePRTC* DC 2 PTP failover backup Cross reference monitoring 1 3 GM-B 2 PNT backup sources PNT assurance Cesium, NIST, WR, eLORAN, LEO, etc. National time standard like NIST *Enhanced Primary reference time clock (GM-A + backup sources) 1 Networkwide Sync Mgmt Networkwide sync management PTP Client machine/server/VM running critical command and control applications PTP 5 NTP 5 5 Client software sync monitor 4
  • 8. © 2022 ADVA. All rights reserved. 8 WAN network packet LAN network “Zero-trust multi-source backup” timing architecture DC 1 ePRTC* DC 2 PTP failover backup Cross reference monitoring 1 3 GM-B 2 PNT backup sources PNT assurance Cesium, NIST, WR, eLORAN, LEO, etc. National time standard like NIST *Enhanced primary reference time clock (GM-A + backup sources) 1 Networkwide Sync Mgmt Networkwide sync management PTP Client machine/server/VM running critical command and control applications PTP 5 NTP 5 5 Client software sync monitor 4 Worst case scenario: GPS sats shot down
  • 9. © 2022 ADVA. All rights reserved. 9 PPS/PPS+ToD 10MHz BITS SyncE PTP How ePRTC cesium backup timing works GNSS MB receiver Time/phase holdover if GPS/GNSS goes down ePRTC+ solution: 100ns over 100 days Anti-jam antenna 14 days coreSync Optical cesium atomic clock Multi-source clock combiner Grandmaster clock Next-Gen Optical Cesium clock GPS Time error 100ns 30ns edgeSync grandmaster ePRTC+ solution (functional diagram) ✓ Other sources GPS GPS + combiner integrated into the grandmaster
  • 10. © 2022 ADVA. All rights reserved. 10 Secure network-wide sync management Neural AI/ML intelligence for self-survivability, end-to-end control, visibility, resilient and assured PNT Geolocation DCs 1 and 2 alert PTP backup assurance to DC 2 Timing chain alert with ePRTC/ PTP backup rearrangements DC 1 GM-A alert with ePRTC/PTP backup to DC 2 Timing topology with ePRTC/PTP backup Vendor-agnostic GNSS analytics/assurance PTP backup ePRTC backup DC 2 DC 1 DC 2 DC 1 DC 2 DC 1 DC 2 PTP backup ePRTC backup DC 1 DC 2 8 6 5 3 2 1 DC 2 GM-B alert with PTP backup from DC 1 ePRTC 4 Client sync monitor 7 Interoperability with other command and control systems API Open interface 9 Networkwide Sync Mgmt Networkwide sync management 9 • Secure communications • MIL 5G PNT systems (land, air, sea) • Command and control centers • Radar event tagging system • SATCOM ground stations • SATCOM network operations centers
  • 11. Thank you IMPORTANT NOTICE ADVA is the exclusive owner or licensee of the content, material, and information in this presentation. Any reproduction, publication or reprint, in whole or in part, is strictly prohibited. The information in this presentation may not be accurate, complete or up to date, and is provided without warranties or representations of any kind, either express or implied. ADVA shall not be responsible for and disclaims any liability for any loss or damages, including without limitation, direct, indirect, incidental, consequential and special damages, alleged to have been caused by or in connection with using and/or relying on the information contained in this presentation. Copyright © for the entire content of this presentation: ADVA. info@adva.com