Why we are building Time Evidence

Time Evidence (working name) is our system for generating NTP audit evidence. This is not a product sheet: it is a set of field notes, and the place where we tell the story of the project as it progresses.

By Richard DEMONGEOT, RDEM Systems SAS — NTP operator since 2005, AS206014, GNSS Stratum 1, multi-domain NTS pool.

The problem: a snapshot, where the auditor wants a film

When facing an auditor on time synchronization, most teams can only produce an ntpq screenshot taken on the day of the audit. That is a snapshot. It says nothing about the state of the estate the previous week, or over the past quarter.

As a result, three blind spots come back every time:

Why a history is explicitly required

No serious framework settles for a clock that is "on time" on a given day. They all ask for consistency monitored over time:

What the auditor wants is the internal consistency of the estate — machines synchronized with each other, on an approved source, drift detected, logs correlatable. We detail these obligations on our UTC time traceability audit page and on the reference sheets ISO 27001 A.8.17 and PCI-DSS 10.6.

The technical choices (without giving it all away)

Time Evidence does not "redo" monitoring. It produces third-party, independent, time-stamped evidence of the consistency of a time infrastructure. A few decisions are already settled:

Why not wait for launch?

Because a product built for audits must be transparent about how it is designed. We chose to publicly document the reasons that led us to build Time Evidence, the technical choices made, and the lessons learned from running it on our own infrastructure — before opening it to the public. A tool that claims to produce evidence must itself be verifiable: this page is the first piece of it.

Where we stand today

The engine is already running — on our own infrastructure, in production:

4 independent observation probes
~12 RDEM NTP / NTS servers monitored continuously
5 min measurement interval, time-stamped
100% running on RDEM production infrastructure

The living proof: the real-time state of our servers and their NTS certificates is already public on our NTS pool status page. Time Evidence adds, on top of that, long-term history, multi-probe correlation and report generation.

Project progress

This page is updated as the project reaches real milestones. No fictional roadmap: each entry is added the day it becomes true. This page will be updated regularly until launch to document the project's main steps.

Project status

  • 🟢 API — in development
  • 🟢 Internal deployment (RDEM infrastructure) — under way
  • 🟡 Signed PDF reports — target summer 2026
  • 🟡 Public beta — target second half of 2026

Last updated: 27 June 2026

What's next?

Once this development phase is complete, Time Evidence will automatically generate historical evidence for PCI-DSS, ISO 27001, NIS2 and DORA audits. A full product page will be published when it opens to the public.

The infrastructure behind the project