SRAN Products and Architecture
Comments
Description
Slide 1NokiaEDU SRAN radio planning and dimensioning topics [SRAN16.2] RA2350-162-LTE 1 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 1 Slide 2 Copyright and confidentiality NOTE: THIS IS A HIDDEN SLIDE To make this hidden slide visible in Slide Shows, via the “Slide Show” tab, please de-activate “Hide Slide”. Hidden slides are not printed if you de-activate the “Print hidden slides” option (found via File > Print > Print all slides > Print hidden slides). The contents of this document are proprietary and Accordingly, if the user of this document gives Nokia IN ANY EVENT FOR ERRORS IN THIS DOCUMENT or for any confidential property of Nokia Solutions and Networks. Solutions and Networks Feedback on the contents of this loss of data or income or any special, incidental, This document is provided subject to confidentiality document, Nokia Solutions and Networks may freely use, consequential, indirect or direct damages howsoever obligations of the applicable agreement(s). disclose, reproduce, license, distribute and otherwise caused, that might arise from the use of this document or commercialize the feedback in any Nokia Solutions and any contents of this document. This document is intended for use of Nokia Solutions and Networks product, technology, service, specification or Networks customers and collaborators only for the This document and the product(s) it describes are other documentation. purpose for which this document is submitted by Nokia protected by copyright according to the Solution and Networks. No part of this document may be Nokia Solutions and Networks operates a policy of applicable laws. reproduced or made available to the public or to any third ongoing development. Nokia Solutions and Networks Nokia is a registered trademark of Nokia Corporation. party in any form or means without the prior written reserves the right to make changes and improvements to Other product and company names mentioned permission of Nokia Solutions and Networks. This any of the products and/or services described in this herein may be trademarks or trade names of their document is to be used by properly trained professional document or withdraw this document at any time without respective owners. personnel. Any use of the contents in this document is prior notice. limited strictly to the use(s) specifically created in the The contents of this document are provided "as is". applicable agreement(s) under which the document is Except as required by applicable law, no warranties of any © Nokia Solutions and Networks 2016 submitted. The user of this document may voluntarily kind, either express or implied, including, but not limited provide suggestions, comments or other feedback to to, the implied warranties of merchantability and fitness Nokia Solutions and Networks in respect of the contents for a particular purpose, are made in relation to the of this document ("Feedback"). Such Feedback may be accuracy, reliability or contents of this document. NOKIA used in Nokia Solutions and Networks products and SOLUTIONS AND NETWORKS SHALL NOT BE RESPONSIBLE related specifications or other documentation. 2 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 2 Slide 3 Course Objectives • At the end of the course you will be able to: - Describe key features of the SRAN products and architecture - perform baseband dimensioning in SRAN deployments - perform TX power dimensioning in SRAN deployments - assess SRAN deployments for Passive Intermodulation 3 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 3 Slide 4 RA2350-162 Course Content • Introduction to Nokia SRAN 16.2 - SRAN products and architecture - Nokia SRAN key features (16.2 release) - Appendix • Detail of selected ASW/BSW features (16.2 release) • Impact of SRAN on TX Power - investigate given sBTS configurations for limitations in TX power • Impact of SRAN on baseband dimensioning - explain how baseband dimensioning is affected by SRAN configurations • Passive Intermodulation - explain when and how Passive Intermodulation can affect the sBTS receiver - detect PIM problems - list options to resolve PIM problems 4 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 4 Slide 5 Introduction to NOKIA SRAN 16.2 5 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 5 Slide 6 Section Objectives • At the end of this section you will be able to: - Describe key features of the SRAN products and architecture 6 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 6 Slide 7 Section Content • Introduction to Nokia SRAN 16.2 - SRAN products and architecture - Nokia SRAN key features (16.2 release) • Appendix 7 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 7 Slide 8 SRAN products and architecture What is SBTS? - SRAN16.2 release introduce a new Single RAN BTS. - SBTS is a Flexi Multiradio 10 Base Station that has new operability and SW architecture that enables: 1. SBTS System Module Sharing with shared RF fibers 2. New OAM Architecture and SBTS common OAM 3. SBTS Common Transport - The system module type required is FSMF i.e. HW release 3 of System Module (FSMr3) RF RF RF GSM WCDMA LTE TRS OAM System Module TRS Netact backhaul 8 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 8 Slide 9 SRAN products and architecture Nokia Single RAN is designed to meet the operator needs for Multiple RATs Supporting multiple Radio Access Technologies with common or shared functionalities GSM HW sharing Common Operability Common Transport Features for improving the WCDMA Single RAN network LTE performance TD-LTE Nokia SRAN : key elements RF RF RF S Multiradio capable HW > BTS RF, BTS baseband, Controllers > Enabling flexibility in reconfigurations and resource utilization B between RATs GSM WCDMA LTE T Single RAN SW > SRAN SW product incl. Single RAN features and RAT features BTS baseband S Value adding > Spectrum refarming TRS GSM WCDMA OSS functionalities > RAN sharing between CSPs Controllers > Traffic steering > Services 9 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 9 Slide 10 SRAN products and architecture SRAN release is a new SW product including new SBTS software GSM - no change SRAN – new product WCDMA - no change FDD-LTE - no change TD-LTE - no change Dedicated GSM SRAN ** Dedicated WCDMA Dedicated FDD LTE Dedicated TD LTE EX / GF SBTS WBTS FL TL GSM application GSM application WCDMA application WCDMA application FDD LTE application TD LTE application FDD LTE application GSM BTS O&M Common O&M WCDMA BTS O&M LTE BTS O&M LTE BTS O&M GSM transport Common Transport WCDMA Transport LTE BTS Transport LTE BTS Transport BSC/mcBSC* BSC / mcBSC BSC / mcBSC BSC3i (1000/200) RNC / mcRNC RNC/mcRNC* RNC / mcRNC OMS OMS* OMS LTE iOMS* iOMS *) RNC OMS, BSC/mcBSC / BSC3i (1000/2000)and RNC/mcRNC instances are re-used as such in SRAN without any change. LTE iOMS is not needed **) SRAN 16.2 targets feature parity with parallel RAT releases, i.e. GSM 16, WCDMA 16 and LTE-FDD 16 10 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 10 Slide 11 SRAN products and architecture SBTS brings a fundamental change to Flexi MR 10 BTS Software Architecture RF RF RF RF RF RF GSM BB WCDMA BB LTE BB GSM WCDMA LTE TRS OAM TRS OAM TRS OAM System TRS OAM Module TRS OSS TRS OSS GSM LTE backhaul WCDMA backhaul Site with traditional approach Site with Single RAN solution • RF Unit sharing New operability and SW architecture enables • Dedicated System Modules for RATs • Common BTS OAM • Dedicated RF fibers per RAT • System Module sharing with shared RF fibers • Shared transport backhaul • Common Transport 11 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 SBTS Site: • Flexi Multiradio 10 System Module • All RAT specific features • Additional SRAN features • Common Operability • Common Transport • System Module Sharing • RF Sharing SBTS Product includes Single RAN and RAT features, all packaged into a single SW delivery • Includes support for all RATs, but customer can select which RATs will be activated • Concurrent operational mode: multiple RATs simultaneously • Dedicated operational mode: single RAT mode for sites running one RAT 11 Slide 12 SRAN products and architecture SRAN 16.2 Highlights New SBTS Software Common BTS OAM One base station for GSM, WCDMA and LTE Common handling in Netact, Simplified site radio technologies creation, commissioning and config. Based on Flexi Multiradio 10 Supporting single radio Base Station System Module all radio- and TRS SW upgrades Common backhaul IP transport System module sharing One IP host and interface Extremely compact sites One IP address and IP security Lower energy consumption No external IP transport boxes Scalable capacity 12 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 12 Slide 13 SRAN products and architecture SRAN OAM architecture Support for enhanced pre-integration and off-line validation NetAct NE3S Web UI Web UI SBTS OAM Element Management NetAct Tool NE3S SBTS SBTS OAM Architectural improvements LTE WCDMA GSM • Common BTS OAM • Flat O&M architecture, no OMS TRS BTS Platform SW • Decoupling of O&M and RAT SW • Web UI based common SBTS Element Manager BTS • Adding supported BTS configurations without dependency to SBTS SW 13 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 New in SRAN16.2: • Flat OAM architecture, SBTS directly integrated to NetAct, no OMS for SBTS • New common OAM for SBTS • One harmonized common OAM for SBTS • Totally new OAM features, no feature parity with existing single RAT BTSs • New SBTS information model • New root object representing SBTS. Logical RNW model is assumed to be reused, changes in HW and transport model • Web UI is replacing the current BTS Site Manager • Totally new OAM features, no feature parity with BTS Site Manager • No need to install Nokia dedicated tool • New approach to support different BTS configurations with BTS profiles 13 Slide 14 SRAN products and architecture SRAN comes with consolidated NetAct Note: NetAct supports multi-RAT already NetAct NetAct NetAct NetAct OSS OSS LTE WCDMA WCDMA GSM GSM LTE SRAN network Including RNC and BSC • NetAct setup with single RAT networks can be fragmented between RATs • SRAN network is operated with one NetAct per area • Complete network view in management system 14 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 14 Slide 15 SRAN products and architecture Web UI for BTS element management • Web UI replaces BTS Site Manager for SBTS Web UI • Can be used both locally and remotely • Works with a standard Web browser • No need to install additional SW on the client side http • New tool with modern user interface and high usability SBTS OAM • One element manager for SBTS LTE WCDMA GSM TRS BTS Platform SW SBTS 15 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 15 Slide 16 SRAN products and architecture Flexi Multiradio 10 BTS with SRAN Architecture support - Sharing modes 2nd Flexi MR 10(opt) Opt. PDU Opt.TRS ext WCDMA Opt. PDU Opt.TRS ext (or GSM or LTE) GSM&WCDMA WCDMA in dedicated mode with SRAN WCDMA WCDMA GSM/WCDMA architecture WCDMA WCDMA 2nd Flexi MR 10(opt) Opt. PDU Opt.TRS ext Single-RAT Mode 2-RAT GSM<E Flexi Multiradio 10 GSM/LTE Modes LTE LTE System Module 2nd Flexi MR 10(opt) Opt. PDU Opt.TRS ext Opt. PDU Opt.TRS ext FSMF WCDMA 3 HU LTE LTE WCDMA/LTE FBBA/C FBBA/C 2nd Flexi MR 10(opt) Standard Flexi Multiradio 10*) System Module as basis Opt. PDU Opt.TRS ext 3-RAT • Multi-RAT capable plug-in units: GSM, WCDMA, LTE FSMF: GSM&WCDMA • System Module chaining with up to two Modules for higher GSM/LTE/ Mode capacity configurations WCDMA LTE WCDMA • Can also be used in dedicated Modes with SRAN architecture *) from Flexi Multiradio 10 version A.102 onwards 16 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 PDU - Power distribution unit FTIF - Optional Transport sub- module FSMF- High capacity GSM/WCDMA/LTE System Module FBBA - Optional high capacity WCDMA/LTE extension sub- module FBBC - Optional high capacity LTE extension sub- module SRAN16.2 allows “Shared mode”: GSM, WCDMA and LTE can run simultaneously on a single FSMF with one common backhaul connection. Also allows “Dedicated mode“: e.g. only GSM application runs on FSMF. TRS processing centrally on one FSMF even in case of chaining of system modules. 16 Slide 17 SRAN products and architecture Flexi Multiradio 10 BTS with SRAN Architecture support - Sharing of fiber WCDMA-GSM RF sharing 1xFXDB • Sharing of fiber between technologies for improved connectivity • RF module/RRH support defined for separately for SBTS - 6 Gbps RF-modules primarily - all RATs supported, if band in question is applicable to RAT FSMF • Note that picture on the right is example only. Obviously also combination with LTE is possible GSM&WCDMA Shared fiber between technologies 6 Gbps OBSAI 17 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 17 Slide 18 SRAN products and architecture SBTS common transport - one unified backhaul GSM TRS SBTS WCDMA TRS Common GSM WCDMA Transport LTE LTE TRS shared shared IP / Ethernet IP / Ethernet Legacy Transport Common Transport Multiple BTS require Single Transport Entity in aggregation SRAN BTS 18 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 18 Slide 19 SRAN products and architecture SBTS common transport • shared transport function in SBTS with unified operability • On Transport layer site appears as one IP host SBTS S1/X2 Iub Packet • Focus on IP/ETH-based Transport modes Abis IP • Single SBTS Transport feature set covering all RATs Ethernet RAT 1 • Flexible IP addressing, QoS and IPsec concepts Common Transport • Unified Transport Operability RAT 2 • Transport modes supported in parallel RAT 3 - LTE: S1/X2 over IP/Ethernet - WCDMA: IP Iub over Ethernet Full packet backhaul example - GSM: Packet Abis over IP/Eth or Packet Abis over TDM 19 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 19 Slide 20 SRAN products and architecture SBTS - Transport Interfaces Optional Transport Sub-Module FTIF • FSMF provides the following Transport interfaces (without the optional Transport Sub-Module) 2 x Combo Ethernet Ports: 8x E1/T1/JT1 (twisted pair): • 2x 1000/100BaseT, or 4 x RJ48C-style ports with - 1x 100/1000 Base-T Ethernet port 2 x E1/T1/JT1 each • 2x optional optical GE SFP, or - 1x optional optical (if not in use for RP3-01) • 1x 1000/100BaseT and 1 x optional optical GE SFP • Optional FTIF required in case of - use of TDM interface for • Packet Abis over TDM or • synchronization propagation via PDH - use of optical ethernet - need for multiple ethernet ports 1x optional optical SFP (GE), 1x 100/1000Base-T Ethernet - use of Synchronous Ethernet Synchronization Output available for Transport port, using Synchronous Ethernet as input only if not used for RP3-01 dedicated for Transport 20 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 20 Slide 21 SRAN products and architecture SBTS - IP addresses, IP versions, IP Security • Flexible IP addressing concept - Applications can bind to interface IP addresses, virtual IP addresses or alias IP addresses - IP addresses can be shared or dedicated across RATs and/or planes - SBTS M-plane binds to one IP address - In one extreme a SBTS can be operated with a single IP address for U-/C-/M-/S-plane, in other extreme it can be operated for U- and C-plane IP addressing same as individual BTSs (except for M-plane which is always shared) VLAN SRAN SRAN U/C SRAN (optional) BTS BTS Example BTS VLAN VLAN U/C U/C/S VLAN U/C/S (optional) (optional) /M (optional) VLAN M VLAN U/C (optional) (optional) S VLAN (optional) M VLAN (optional) 21 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 Supported IP versions: • On level of the IP interface IPv4 / IPv6 Dual Stack is supported • Which applications can use IPv6 is subject to features per Radio Access Technology, e.g. there are no plans for IPv6 for Packet Abis or IuB while it will be released for S1/X1 interface • IPv6 capabilities of a SBTS will thus be same as IPv6 capabilities of the individual Radio Access Technologies IP Security: • The SBTS provides the flexibility to freely map individual traffic flows to any IPsec security association (SA). Thus IPsec SAs can e.g. be • dedicated to a certain Radio Access Technology • dedicated to a certain plane of a certain Radio Access Technology • shared between multiple Radio Access Technologies („Common IPsec Tunnel“) 21 • The SBTS may be connected • to one IPsec gateway handling all traffic • to different IPSec gateways, e.g. • one per Radio Access Technology or • one for Management Traffic and other one for production traffic 22 Slide 22 SRAN products and architecture SBTS - Transport Quality of Service • Flexible QoS concept • Two levels of scheduling/shaping are provided • 1st level queuing/scheduler/shaper “per policed or bandwidth limited connection in the transport network” - Traffic flows can be freely allocated to 1st level schedulers allowing to prioritize, shape and limit flows or combination of flows according to the preference of the operator • 2nd level scheduler/shaper “per phys. interface” • Common BTS mapping table for DSCP PHB and DSCP p-bits Example scenarios 22 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 23 Slide 23 SRAN products and architecture SBTS - Transport Admission & Congestion Control • Radio Access Technology-specific legacy Admission and Congestion Control mechanisms remain applicable and operate independently in Single RAN BTS - WCDMA: Connection Admission Control - LTE: Measurement Based Transport Admission Control - GSM: Packet Abis Congestion Control under the assumption that each Radio Access Technology has its own static configured bandwidth for committed bitrate traffic and other measures • Existing dimensioning plans and rules can be reused as the RAT specific admission control and pre- emption mechanisms are reused 23 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 24 Slide 24 Course Content • Introduction to Nokia SRAN - SRAN products and architecture - Nokia SRAN key features (16.2 release) • Appendix 24 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 25 Slide 25 Nokia SRAN key features SRAN 16.2 release Feature ID Feature Name Type Operator Benefit Site Solutions SR000601 Initial SBTS Configurations for ETSI market with BSW Lower OPEX 6Gbps OBSAI radio units SR000944 Supported RF HW in SBTS BSW List of supported RF-HW for SBTS SR000972 SBTS System Module Sharing RTU ASW Common hardware, but using different technologies saves OPEX for customers and simplifies operational tasks. The customer needs fewer number of sites, which results in savings of site rental, energy savings and savings of antenna systems. SR000999 SBTS configurations with 3G OBSAI radios BSW Lower OPEX SR001067 Adding Low Power RRH (2Tx/2x 4.0 RRH-family) to BSW One sector Flexi Metro Remote RF Head is able to support 2TX MIMO with medium range output SBTS-configurations * power (2 * 5 W) for hot spot dense urban capacity sites. It enables easy installation outdoors close to antennas or with an integrated antenna thus minimizing BTS site weight and complexity while providing high capacity with SBTS features SR001226 SBTS profiles for Indian customer and FXEE PIM BSW Better performance due to PIM avoidance avoidance configurations SR001253 Initial SBTS-configurations with 2x FSMF System BSW Lower OPEX Modules SR001268 Initial SBTS configurations for China market BSW Lower OPEX Operability SR000713 SBTS Web UI BSW Element manager Web based application to manage BTS. No need to install any management application to computer SR000726 SBTS Object Model BSW Simplifies operations for customer by introduction one common object model for SBTS to simplify operations. Seamless planning and operations also in mixed network scenarios SR000794 SBTS SW License Management BSW Licensing is running smoothly in the background eliminating risk of BTS being unintentionally out of operation due to missing licenses SR000832 Flexi BTS and its Transport Parameter BSW Reduced OPEX by simplification of the plan file and limitation of the number of basic parameters Categorization to be managed via NetAct CM tools. SR000845 SBTS Operator Certificate Management ASW The BTS Certificate Management improves the overall system security. It supports the automated, centralized and scalable key and certificate management for operator networks 25 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 SBTS features five categories are listed next: BTS Site Solution Operability Performance Monitoring RAT Feature Parity Transmission and Transport In general all the SBTS features are legacy features i.e. new implementation of existing functionality. SRAN 16.2 customer feature list and SBTS feature parity list can be found from NOLS: “Single RAN, Rel. SRAN 16.2, Operating Documentation” 26 Slide 26 Nokia SRAN key features SRAN 16.2 release Feature ID Feature Name Type Operator Benefit Operability SR000846 SBTS Vendor Certificate Management BSW The provision of Nokia Vendor certificates allows the operator to set up a 3GPP compliant PKI solution SR000899 SRAN Support of TLS 1.2 BSW Improved network security SR000900 SBTS Operator Account Management ASW Improved network security SR000902 SBTS sRIO Link Layer Security BSW Improved security of BTS site SR000903 SBTS User Event Logging ASW Enables customer to monitor details of configuration changes, enabling faster detection of misconfiguration thus limiting network problems/outages SR000904 SBTS DNS Support BSW Provides the operator with the possibility to use of DNS SR000906 SBTS Nokia Service Account Management BSW Remote and local service access capability with defined access permissions controlled by operator SR000907 SBTS Security for Local Management Ports BSW This feature prevents from vulnerabilities due to unauthorized access of intruders connecting to a BTS via local Management Ethernet ports SR000908 SBTS Crypto Agent BSW Significantly enhanced security is achieved because of the provided personal secure environment protecting sensitive credentials and cryptographic services SR000909 SBTS Trusted Boot BSW Significantly enhanced risk management is achieved because only integrity checked code is accepted for activation. SR000910 SBTS Antenna Line Management BSW Operator can optimize network performance using RET and MHA devices. SR000911 SBTS HW Management ASW Operator can view and modify 3GPP compliant SBTS HW via WebUI and NetAct. SR000912 SBTS SW Management ASW One SW delivery for SBTS and it covers all three technologies SR000913 SBTS Signed SW BSW Enhanced risk management is achieved because SW deliveries can't be faked or modified after leaving the Nokia SW production environment. 26 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 27 Slide 27 Nokia SRAN key features SRAN 16.2 release Feature ID Feature Name Type Operator Benefit Operability SR000920 SBTS Fault Management BSW Integrated trouble shooting over several network technologies will reduce OPEX at Operation Centers SR000921 SBTS NE3S WS NetAct integration BSW The SBTS NE3S integration provides a flat operation, administration and maintenance (OAM) architecture without unnecessary mediation devices SR000924 SBTS Intelligent shut down * ASW Optimized investment to one battery backup system on a high-capacity BTS. Separate backup systems for BTS and transmission are unnecessary - CAPEX saving. SR000928 SBTS Plug and Play ASW Fast deployment of the new SBTS. The manual work required on the site will be minimized SR000929 SBTS Configuration Management BSW Operator can manage SBTS as a single entity within the configuration management operations, ensures CM at SBTS level is consistent SR000930 SBTS Configuration Validation BSW Enables operator to validate site configuration from both NetAct and Web UI level SR000937 SBTS LTE Trace ASW Provides trace functionality for the LTE RAT in SRAN that is equivalent to the trace functionality in existing LTE networks, reducing complexity and OPEX SR000938 SBTS SW upgrade/update BSW Enables possibility to implement new features to network. SR000940 SBTS Diagnostics and Self Test BSW Key diagnostics functions and self testing makes it possible to identify HW failures in commissioning and troubleshooting SR000942 SBTS Manual Commissioning and system setup BSW Site commissioning and setup with the use of Web UI or NetAct SR000959 SBTS Energy saving ASW Operator can use energy saving features with SBTS in dedicated radio and RF-Sharing mode SR000989 SBTS - Minimizing Drive Tests (MDT) ASW OPEX savings by minimizing the need for drive tests. SR000996 SRAN Clock Time Management BSW Clock time distribution is vital mandatory for whole network. 27 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 28 Slide 28 Nokia SRAN key features SRAN 16.2 release Feature ID` Feature Name Type Operator Benefit Operability SR001000 SBTS RF Sharing RTU ASW One common sales item simplifies license management of RF sharing . SR001004 SBTS Data User RTU BSW One common sales item simplifies license management for invoicing # data users. SR001005 SBTS Channel bandwidth RTU ASW One common sales item simplifies license management for invoicing channel bandwidth. SR001015 SBTS Incremental Power RTU ASW One common sales item simplifies license management of incremental output power handling. SR001027 SBTS PAoTDM for GSM dedicated mode with mcBSC BSW Possibility to utilize existing transport network in SRAN SR001057 SBTS inheritance of Network Resiliency for mcBSC * ASW Introduces resiliency solution for mcBSC, minimized network impact of BSC outage SR001185 SBTS Composer UI * BSW Guided manual commissioning wizard for site setup without ready made SCF SR001244 SBTS PAoTDM for Flexi BSC with transport media converter BSW CAPEX savings because of re-use of TDM transport Performance Monitoring SR000918 SBTS Basic Performance Management BSW Operator can have same RAT specific PM as earlier, and reuse existing competence and tools on BTS PM RAT Feature Parity SR001007 SBTS feature parity in SRAN 16.2 BSW Feature brings feature parity with dedicated technologies, and enables usage of same features in SBTS. SR001052 Feature parity with FDD-LTE 16 newly developed features BSW SRAN customers get FDD-LTE 16 features available at the earliest possible time. 28 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 29 Slide 29 Nokia SRAN key features SRAN 16.2 release Feature ID Feature Name Type Operator Benefit Transport SR000176 ML-PPP termination BSW Enables migration to IPv4 based transport while utilizing existing TDM infrastructure. No need to immediately update the complete transport network to Ethernet SR000344 Fast IP Rerouting ASW Enables to make use of redundant backhaul connections to improve availability SR000350 Ethernet Termination BSW Basic feature needed with every Ethernet interface Key differentiators: Jumbo frame support (ready for IPv6 with IPv6 IPsec) SR000356 IPsec for BTS ASW IPsec allows using transport networks which cannot be fully trusted SR000357 Symmetrical E1 Interface ASW The support of standard E1 interfaces allows the connection of widely available TDM based infrastructure SR000360 IP Transport Network Measurements ASW Brings OPEX savings as the operator is able to monitor the network conditions and can react quickly to potential service degradations SR000361 Link Supervision with BFD BSW BFD allows tight monitoring of the transport connection SR000365 Electrical 100/1000-Base-T Interface ASW The support of standard Ethernet interfaces allows the connection of widely available Ethernet based infrastructure SR000366 BTS Firewall BSW Increased network element security providing more robust network operation. SR000367 Small Form Factor Plugable Slot (SFP slot) ASW Flexibility with regards to the optical physical media selection SR000368 1000Base-SX Optical GE Interface BSW Provision of a cost effective short-haul optical GE interface SR000369 1000Base-LX Optical GE Interface BSW Provision of a cost effective medium-haul optical GE interface SR000370 1000Base-ZX Optical GE Interface BSW Provision of a BTS integrated cost efficient long-haul optical GE interface 29 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 30 Slide 30 Nokia SRAN key features SRAN 16.2 release Feature ID Feature Name Type Operator Benefit Transport SR000371 1000Base-BX Optical GE Interface BSW Provision of a cost effective single fiber optical GE interface SR000374 Timing over Packet with Frequency Sync ASW ToP solution allows the operator to take full advantage of packet based backhaul networks. It can be used for providing synchronization to the BTS. This brings CAPEX/OPEX savings. SR000375 Synchronous Ethernet ASW Synchronous Ethernet is a solution to provide an accurate frequency reference for the BTS through a Packet Network. Can provide a high quality synchronization reference. Does not depend on the network conditions, unlike Timing over Packet. SR000376 Synchronization from 2.048MHz signal ASW G.703 compliant 2.048MHz signal can be used to frequency synchronize the BTS SR000377 Synchronization from PDH interface BSW Existing E1/T1/JT1 backhaul links can be used for base station frequency synchronization. SR000382 Multiple VLAN interfaces BSW Ability to separate different traffic types to different VLAN interfaces. SR000383 Timing over Packet with phase ASW The Timing over Packet (ToP) with Phase Synchronization feature provides significant CAPEX/OPEX savings as synchronization * GNSS receiver is not mandatory anymore to provide Phase and Time synchronization to BTS SR000384 Timing over Packet Resilience BSW This feature provides the capability for geographical redundancy of the ToP Master equipment thus increasing the reliability of the synchronization SR000385 Synchronization Hub BSW Collocated or chained BTSes can share single synchronization source, saving the CAPEX and OPEX of synchronization solution e.g. one GNSS receiver for multiple BTSs SR000386 QoS Aware Ethernet Switching BSW CAPEX savings at the BTS site for providing Ethernet Switching functionality. Use cases: -- Ethernet traffic aggregation in collocation scenarios -- Chaining of BTS's SR000395 IPv4 based S1/X2 ASW Standards based backhaul solution for LTE S1 and X2 transport. SR000396 IPv4 based Iub ASW OPEX and CAPEX savings in transport result from more cost efficient transport network for Iub traffic. SR000397 IPv4 based Packet Abis Transport ASW OPEX and CAPEX savings in transport result from more cost efficient transport network for the GSM Abis interface. 30 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 31 Slide 31 Nokia SRAN key features SRAN 16.2 release Feature ID Feature Name Type Operator Benefit Transport SR000402 BTS QoS Support for Terminated and Routed BSW QoS mechanism limits the possible traffic loss and maps the traffic to a suitable transport network Traffic QoS class. Accordingly the QoE for the end-users is improved. SR000403 Source based routing in BTS BSW This feature increases the IP addressing flexibility by introducing a more sophisticated routing mechanism. The feature may obsolete the need for address re-planning and reconfiguration during network migration cases, such as Single RAN or multi-operator scenarios which require merging of multiple legacy networks operating on identical or overlapping IP subnets. SR000439 IPSec Emergency Bypass BSW Feature allows limiting the network outage time in case of a severe IPsec cluster failure to a minimum SR000465 Local and Remote IP Traffic Capturing BSW IP traffic capturing enabling multiple troubleshooting use cases for operator SR000589 IPv4/IPv6 Transport Stack BSW This feature is the foundation for IP based Iub, IP based Packet Abis over IP/Ethernet, and IP based S1/X2 , which allow to make use of cost efficient and state of the art packet transport for mobile backhaul SR000600 Backup IPsec Tunnel ASW Service continuation w/o BTS site visit after SEG site disaster, while in normal operation maximum security is applied, i.e. M-plane is protected by IPsec as well. By this retain customers, manage risks and differentiate in the market. SR000770 LTE Dual U-plane IP addresses BSW Exceeding UL/DL 1 GE throughput on backhaul interfaces. IP networks with two separate transport paths can be supported end to end. 31 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 32 Slide 32 Course Content • Introduction to Nokia SRAN - SRAN products and architecture - Nokia SRAN key features (16.2 release) • Appendix - selected ASW/BSW features (16.2 release) 32 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 33 Slide 33 SBTS Configuration Management SR000929 • Configuration management for SBTS supports • Configuration provisioning and activation NetAct • Robust SBTS configuration synchronization with NetAct • Warnings on service impacting operations Configurator SW repository • Direct activation and delta configuration operations BTS BTS CM Profile Profile • Emergency plan provisioning • One Site Configuration File for the whole SBTS • BTS internal details are automatically generated SCF • Generation is based on associated BTS HW profile • BTS HW profiles represent the supported SBTS configurations and are SBTS provided by Nokia • SBTS configuration management actions are supported both via SBTS NetAct and Web UI WebUI 33 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 34 Slide 34 SBTS CM Validation SR000930 • CM validation is supported both offline before the actual SBTS HW integration and online with the real SBTS NetAct • Validation is supported both with NetAct and WebUI Offline validation • Off-line validation covers SCF SCF - Parameter range and consistency checks Scalable parallel - SCF validation against the BTS HW profile processing • On-line validation covers in addition checks against the actual HW and radio constraints • Validation is distributed both NetAct internally, and towards the SBTSs in online validation for high performance SBTS SBTS • The validation rules and coverage are SBTS specific Online validation, SBTS distributed WebUI 34 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 35 Slide 35 SBTS Information Model SR000726 • There is one information model for SBTS, containing all RNW, PLMN TNL, synchronization and HW aspects SBTS • SBTS is using logical RNW models compatible with the single RAT releases RAT RNW RAT RATRNW RNW models models models • For example LTE cell (LNCEL) configuration • One common HW model for SBTS Common HW model • Note: SBTS internal details are automatically generated based on BTS HW profiles to simplify planning TNL and Relation SYNC • Transport network layer and synchronization configuration is SBTS specific MGMT • TNL HW part is closely integrated with the HW model RNC • MGMT provides the M-plane related configuration WBTS WCEL BSC BCF BTS 35 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 36 Slide 36 SBTS NE3S WS NetAct Integration SR000921 • SBTS is integrated directly to NetAct with Nokia NetAct internal NE3S WS oam interface • There is one M-plane connection to NetAct Applications Applications regardless of the number of RATs running in SBTS Applications • NE3S is based on HTTPs and provides inbuilt efficiency and scalability for direct integrations HTTPs • NE3S is used for SBTS M-plane operations and oam NE3S SBTS M-plane data transfer • Specific oam data exchange with RNC and BSC over SBTS NBAP and Abis is supported for network functionality purposes NBAP Abis RNC BSC 36 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 37 Slide 37 Web UI for BTS element management SR000713 • Web UI replaces BTS Site Manager for SBTS Web UI • Can be used both locally and remotely • Works with a standard Web browser • No need to install additional SW on the client side • New tool with modern user interface and high usability http • One element manager for SBTS SBTS OAM • Supports multiple user read sessions LTE WCDMA GSM TRS BTS Platform SW SBTS 37 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 38 Slide 38 SBTS Plug and play SR000928 • Plug and Play is a part of Automated Site Creation • IP connection is established automatically to NetAct (Auto-connection) • Autoconnection Infrastructure is used • DHCP server • Security server • PnP server • Auto-connection can be done without DHCP • Progress reporting provides Status indication in BTSSM / Web-UI through the PnP process • Prepared configuration file includes all the radio technologies used by the SBTS and is installed while auto-configuration • After SBTS SW and configuration is installed, the SBTS starts to use NE3S interface for O&M 38 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 39 Slide 39 Manual commissioning and setup SR000942 • Ready made HW configurations template (BTS Profile) defined SBTS power up by Nokia • Ready made documentation for each BTS profile (cabling Cancel Autoconnection instruction) SW Download & • Reduce content (need for planning) of SCF-file. Activation • SCF-file done at NetAct or customer specific planning tool. Partial SCF, no SCF SCF-file • Guided manual commissioning without ready made SCF is exist optional feature. BTS profile selection • All SCF parameter modifications can be done by using Web. Full SCF Fill missing parameter Download SCF file with Web UI or use Optional BTS SCF Composer UI BTS configuration generation & validation Configuration activation 39 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 40 Slide 40 SBTS Composer UI SR001185 * • Guided manual commissioning without ready made Site configuration File (SCF). SBTS power up • All SCF parameter modification can be done by Cancel Autoconnection using Composer UI SW Download & Activation • Guided mode (like current BTS SiteManager) SCF-file Partial SCF, no SCF • Tool available directly from SBTS exist • No need to external tool to be updated at release BTS profile selection Full SCF upgrade Fill missing parameter Download SCF file with Web UI or use Optional BTS SCF Composer UI * will be released post-C5, as late feature BTS configuration generation & validation Configuration activation 40 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 Roadmap style slide => this will be included in customer materials and roadmaps 41 Slide 41 SBTS SW Management SR000912 • One SW packet for SBTS. It includes all needed components: Site O&M, Node O&M, RAT SW, TRS SW, RF SW and Platform SW. NetAct • SBTS SW management actions are supported via NetAct and from WebUI. SW Manager • SBTS supports manual fallback to previous SW version, if problem on SW activation is noticed. • Simultaneous SW mgmt actions for all (multiple) SBTSs (sites) from NE3S NetAct. • NetAct support also scheduled SW management operations SBTS • Detailed SBTS SW configuration (build) information at site & WebUI NetAct FSMF SBTS OAM • Monitoring the status of SW management operation WCDMA LTE GSM 41 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 42 Slide 42 SBTS SW Upgrade SR000938 • Feature will bring support for upgrading SBTS SW. SBTS can be upgraded as one operation. • SBTS will download only the SW components needed for current configuration and are changing. • Both upgrade & update (maintenance updates) are supported • SBTS SW upgrade is supported via NetAct SW Manager and from SBTS WebUI. • Whole SW upgrade workflow is supported: • Pre-check • SW download • SW activation • Post check 42 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 43 Slide 43 SBTS Performance Management SR000918 NBI • SBTS related measurement data Reporting Suite • Existing RAT (LTE, WCDMA & GSM) measurements supported • New common transport measurements NetAct •Counter data is transferred to NetAct for storing and reporting • Configurable measurement collection RNC BSCP PM M file • Data visible via file • SBTS WebUI: latest measurements + short history SBTS • NetAct reporting tools: latest measurements + history RNC PM file BSC • Counter data available also via NetAct NBI SBTS data via Abis SBTS SBTS WebUI 43 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 44 Slide 44 SRAN Fault Management & recovery SR000920 NetAct Alarms • SRAN BTS alarms are visible in SRAN BTS and NetAct alarm repositories NWI3 • Note: SBTS alarms are not visible in RNC or RNC OMS level WCDMA OMS NE3S • SBTS alarms are visible also via SBTS WebUI Alarms BTSOM • RNC can reset the WCDMA SW of SRAN BTS as a RNC BSC recovery action Alarms Alarms SBTS NBAP WebUI SRAN BTS OMUSig Alarms LTE WCDMA GSM 44 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 45 Slide 45 SBTS HW Management SR000911 User views NetAct • HW management modeling as defined in 3GPP 1. HW notification • 3GPP 32.622 for managedElement and 32.692 for includes HW change 2. HW inventory inventoryUnit information upload to NetAct • HW management via NE3S (CM operations) • Information of HW change is included in the notification (change, remove, add HW) and no extra upload is needed. SBTS SBTS One notification message can include several updates. RAT Specific Model Common HW Model RAT Specific Model • User can manually add, remove and modify passive HW via SBTS WebUI. • Inventory upload to NetAct. Upload includes all active SBTS managedElement HW units (detected by SBTS SW) and created passive HW units. • SBTS HW inventory view is licensed in NetAct InventoryUnit 3GPP Inventory Model 45 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 46 Slide 46 SBTS LTE Trace SR000937 • This feature will bring two LTE trace NetAct functionalities SBTS: Subscriber and Trace Viewer (LTE163) : equipment trace & Cell trace. management based management based trace activation for • Subscriber and equipment trace: trace activation for cell Trace trace subscriber and reports equipment trace - The subscriber and equipment trace supports the tracing for certain IMSI or IMEI and it provides detailed subscriber oriented Security Gateway MME information at call level for one or more specific S1AP: Signal based mobile(s). Trace trace activation reports • Cell trace: X2 - With LTE Cell Trace all UEs in a target cell in connected state are traced simultaneously. The SBTS SBTS SBTS – LTE RAT SBTS – LTE RAT target cell will be defined by operator. WebUI WebUI configure cell, equipment and cell trace by WebUI 46 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 47 Slide 47 SRAN Clock time management SR000996 Time management in SRAN consist of 3 aspects 1. Clock time delivery in SRAN (in priority order for SBTS) - GPS for BTSs (when installed) NTP time distribution architecture can be freely - ToP(PTP / IEEE 1588v2) for BTSs configured. Picture presents Master clock - SNTP for NetAct, RNC, BSC, 2G BTS, 3G BTS, 4G BTS, OMS, one example. NTP I/F SBTS NetAct NetAct 2. Clock time usage in O&M data in NEs and management elements NTP I/F OMS NTP I/F - SBTS uses local time in all O&M interfaces for O&M data mcBSC mcRNC NTP I/F - NetAct and all other elements continues to use their local time NTP I/F ABIS time 3. Clock time presentation GPS NTP I/F NTP I/F setting GPS GPS - SBTS WebGUI uses PC local time - NetAct GUI and NBI uses NetAct local time for SBTS O&M 3G BTS 3G BTS SBTS data eNB ToP (PTP) clock time source 47 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 48 Slide 48 SBTS Intelligent Shut Down SR000924 * • The feature optimizes the investment to one battery backup system on a high-capacity BTS, especially on sites that operate as important transmission hub nodes. With Intelligent Shut- Down, separate backup systems for BTS and transmission are unnecessary. • The SBTS with battery backup system supports an intelligent BTS site power shutdown procedure in the event of an AC power failure. During the commissioning of each site, the operator can define different shutdown timers and priorities for the BTS sectors and carriers. • Intelligent shutdown is activated from Power systems by activating one external alarm (EAC) lines to Flexi BTS. * will be released post-C5, as late feature 48 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 49 Slide 49 SBTS - Minimizing Drive Tests (MDT) SR000989 • 3GPP standardized MDT provides the UE measurements for further analysis • Measurements supported in WCDMA and LTE • MDT measurements are added in the Cell Trace RNC Trace Viewer… Data and forwarded to upper level systems via L3 Data Collector Collectors • L3DCs are not mandatory if a limited amount of SBTS Traffica CLA the UEs are monitored Etc.. Data (LTE+WCDMA) Collector • MDT is used as a basis for Call Location Analysis and other applications on top of the OSS systems 49 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 50 Slide 50 SBTS Energy Saving SR000959 • Significant OPEX savings by reducing power GSM consumption O WCDMA A • Power Amplifier (PA) has a functionality to automatically LTE M switch to stand-by mode in case when no radio resources are used in Single-RAT, dedicated Radios and SBTS - Dedicated Radio Modules RF Sharing mode • Radio module is not switched off but put to idle state and can be powered up in seconds when there is a need to get back to normal state GSM O WCDMA A • Solution consist of co-existence of RAT specific Energy LTE M Saving features: RG301936 (GSM), RAN955 (WCDMA) and LTE1103 (LTE) SBTS – RF Shared Radio Modules 50 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 51 Slide 51 SBTS16.2 Security Security Certificate management SR000845 - SBTS Operator Certificate Management SR000846 - SBTS Vendor Certificate Management SR000904 - SBTS DNS Support User account management SR000900 - SBTS Operator Account Management SR000903 - SBTS User Event Logging SR000906 - SBTS Nokia Service Account Management Secure SBTS environment SR000902 - SBTS sRIO Local Link Layer Security SR000907 - SBTS Security for Local Management Ports SR000908 - SBTS Crypto Agent SR000909 - SBTS Trusted Boot SR000913 - SBTS Signed SW Secure OAM interfaces SR000713 - SRAN WebUI with multiple read session support SR000899 - SBTS Support of TLS 1.2 51 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 52 Slide 52 SBTS Operator Certificate Management SR000845 • The feature supports 3GPP (Rel11) compliant certificate life cycle management, including multi-layer hierarchical PKI architecture and cross certification with revocation list • Chain of trust verified over multiple signing layers (up to 3 sub-ordinate layers), an RA as first CMP peer is supported • Automated Certificate / Key update in case of certificate lifetime is to expire Network Operator RAN Sharing Operator Root CA Root CA • The SBTS supports a second partner operator PKI Root Cert Certificate Certificate Signing Hierarchy system by multiple trust anchor management for RAN CRL Root CA RAN CRL Root CA RAN Sharing Sharing Sub-CA 1 Cert CRL Operator CRL Operator Subordinate Subordinate RA / CA RA / CA Sub-CA 2 Cert • Certificate revocation management: Sub-CA 3 • SBTS global CRL activation/deactivation Cert CRL • CRL source for own PKI selectable to be taken from X.508 certificate or configurable CRL distribution point attributes (CRLDP), CRL source selectable Entity Cert other SeGW SeGW • Supports Primary & Secondary “PKI & CRL Server” NetAct SBTS vendors 2nd Operator Root CA Certificate NB/eNB 52 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 53 Slide 53 SBTS Vendor Certificate Management SR000846 • At the factory, strong cryptographic identity X.509 vendor certificates are installed to modules within a protected memory and files system • During initial start-up of the SBTS HW modules the vendor certificate/module certificate with the associated RSA Nokia Factories SBTS keys and the Factory CA and Nokia Root CA certificate ( Nokia Trust Chain) are provided to SBTS applications Certificate Nokia Root CA management which need to make use of the vendor credentials as for certificate • automated operator certificate enrollment acc. 3GGP (Rel11) Factory CA sRIO Local Link • authentication of sRIO peers for Local Link Layer Security certificate Layer Security between modules Vendor certificate for module MACsec • authentication of Ethernet peers for MACsec between modules and backbone peers (in case of supported by HW) …… 53 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 54 Slide 54 SBTS DNS Support SR000904 • This feature provides support for DNS resolution for Name Server addresses given by a Full Qualified Domain Name (1) into the corresponding IP address. • The DNS client queries (2) the DNS Server to resolve the DNS FQDN, which returns the corresponding IP address (3) 2. FQDN 3. IP@ assigned to the repository (4). • Functionality is used as a part of the X.509 certificate 1. FQDN 4. IP packet validation to check if the certificate has been revoked. The BTS downloads the revocation lists from the revocation SBTS Network Peer repository server Example: X.509 certificate revocation list URL • Reverse lookup, e.g. solving the FQDN to a given IP address, CRL Distribution point FQDN: URL=ldap//crldp.operator.net is not supported ldap//193.245.187.201 54 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 55 Slide 55 SBTS User Event Logging SR000903 • Logs entries for operator user events done with WebUI or NetAct framework e.g. XML export via Nokia Service Account Secure Shell access are logged Name1, Value1 ….. Name2, Value2 in granular details Name3, Value3 SLC WebUI … , …. • Configuration changes done by WebUI or SSH are logged central log with details of repository • Parameter name and value • Execution status Name1, Value1 • The feature helps to identify the incorrect configurations Operator Name2, Value2 Name3, Value3 faster thus limiting network problems or even network Name1, Value1 user … , …. outages. Name2, Value2 Name3, Value3 WebUI REST • SLC(Standalone Log Collector) collects the logs from SBTS … , …. Local log periodically or upon request and forward the logs to SBTS repository Security information and event management (SIEM) for SSH SSH operator to audit. Nokia Access s... Service user • SBTS triggers SLC(Standalone Log Collector) to upload files in case of memory expire 55 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 56 Slide 56 SBTS Nokia Service Account Management SR000906 • The SBTS provides Secure Shell Access for Nokia Service personnel for troubleshooting NetAct framework “NetAct Sec Tool” “Configurator” • The default password for the BTS Nokia Service account “toor4nsn” and optional keys for Secure Shell access can be modified / set by operator on demand with WebUI and Security credential NetAct tool for security credential mass deployment mass configuration SBTS Operator • All local & remote logins to with the Nokia service account, user Service Access 1 activation and deactivation of R&D services and SSH sessions config... are logged into the user event log file REST NE3S Nokia Service user Local BTS 2 • Configurable session login delay for SSH logins SSH Access s... SSH account Pwd, public SSH SBTS keys • Configurable session inactivity timer to close session automatically 56 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 57 Slide 57 SBTS Operator Account Management SR000900 • The SBTS supports the management of a local operator user account and multiple remote operator users managed by the Centralized NE User Management (CNUM) in NetAct NetAct framework • Preventions against attacks is applied by WebUI CNUM • Session login delay and temporary account locking • Alarms in case a the number of consecutive failed logins reaches a threshold LDAP query: • Local operator user credential can be modified via WebUI per user-id / pwd / lifetime? SBTS and from NetAct for network wide mass deployments WebUI Local BTS REST User Account Last login lifetime SBTS CNUM user accounts Last logins 57 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 58 Slide 58 SBTS SRIO Local Link Layer Security SR000902 • For SBTS hardware supporting connection via serial Rapid I/O bus (sRIO) front cabling the SBTS supports ciphered FSMF + FBBx extension module communication • New plugged-in system modules or extension modules are sRIO authenticated by its Nokia Networks module certificate sRIO • All traffic is between main and extension module is FBBx sRIO Front patch cable: ciphered Transmission secured by AES-128 ciphering • X.509 NSN Vendor/module certificates are used for authentication and AES-128 algorithm is applied for ciphering sRIO FSMF for capacity extension Nokia Networks Vendor/Module x.509 certificate 58 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 59 Slide 59 SBTS Security for Local Management Ports SR000907 • Access capabilities via physical local maintenance Ethernet ports are restricted. • Packets received on local management port (LMP) are only sent to the OAM application/server • Selective routing rules prevents from LMP WebUI OAM • intercepting internal traffic on external ports REST Eth • using attacks like “address resolution protocol (ARP) poisoning” to reroute traffic via external ports and back to the legal recipient • access to core network nodes by tunneling packets into existing secure links 59 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 60 Slide 60 SBTS Crypto Agent SR000908 • The Crypto Agent provides a personal secure environment to store security credentials like RSA keys and passwords. SBTS Modules • It provides its services via a common API to applications. Applications • Secrets never leave the crypto agent in unencrypted form UNIX socket • Private key operation service (en/decoding with private key) is performed within the Crypto Agent Crypto Agent File System • The secure file storage service will allow files to be stored CRA Server Key Storage encrypted in the file system (for future use cases) CRA Services Encrypted fille 60 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 61 Slide 61 SBTS Trusted Boot SR000909 • The SBTS HW modules provide a secured bootstrap. Only integrity checked code is allowed to go into service • The Trusted Boot Agent verifies the digest of boot image, Trusted Boot Linux and application SW with cryptographic techniques Agent utilizing local credentials and trust anchors stored in a HW Device keys SW integrity corrupted ? locked memory Written and digests sealed during • Found integrity violation in manufacturing Boot Loader ok • Boot loader -> activate fall-back Boot loader digests Fall-back nok • Linux -> activate fall-back SW, if ok -> send alarm SBTS doesn’t Boot loader Linux ok go “onAir” Fall-back nok digests • Application SW -> send alarm, SBTS doesn’t go “onAir” Linux Kernel Application • In case of Boot loader or Linux back-up fails HW has to be Alarm SW NetAct nok sent back to repair 61 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 62 Slide 62 SBTS Signed SW SR000913 • Source origin and integrity of SBTS SW is guaranteed Nokia SW production environment by signing of the SW deliverables by the Nokia SW Signing Service Nokia CA Nokia SW Signing Service certificate • The integrity of SW builds is granted by individual SW certificates SW SW Build • The SBTS SW Management checks the SW certificate certificate SW Build Server validity and SW build integrity during SW download. • Once found ok the binary is handed over to the SBTS Trusted Boot Agent to apply local integrity protection and storage into passive file system. SW Integrity ? Certificate? SW Build certificate Store SW SW in file system 62 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 63 Slide 63 SRAN WebUI provides multiple user read session support Part of SR000713 • Centralized NE User Management (CNUM) privileges for BTS operator user accounts with “read-only” and “read/write” permissions NetAct framework • Up to 5 parallel sessions supported for WebUI WebUI CNUM User n : permission • One user with full access permissions (read/write) is WebUI User 1 : permission allowed to login at the time. Other users are allowed to login with ‘read-only’ permissions • If one user with full access has already been logged in LDAP query: user-id / pwd / permission? and another user logs in, access rights will be lowered WebUI automatically to ‘read-only’ mode. REST WebUI BTS Read only user Read/write user 63 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 64 Slide 64 SBTS - Support of TLS 1.2 SR000899 • TLS is a secure communication method for protecting the confidentiality and integrity of m-plane communication protocols and file transfers (HTTPS, REST/TLS, WebUI/TLS, NE3S/TLS, LDAPs, Syslog/TLS) • The SBTS supports TSL 1.2 • TLS 1.2 is offered as default protocol version, if the peer doesn’t support TLS 1.2 the communication falls back to TLS1.0 • Cipher suites out of the for TLS 1.1. and TLS 1.2 pool are supported • Cipher with Perfect Forward secrecy are supported. • RC4 ciphers and ciphers with NULL integrity protection are not supported • Compliant to normative Annex E of TS 33.301 • Session time based key negotiation according to RFC 5746 governed by a configurable timer of 5 up 24 hours/86400 sec 64 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 65 Slide 65 SBTS SW License Management SR000794 • Feature’s usage is checked by OSS • Uses CLS (Centralized License Server) and it extends OSS SWAM (SW Asset Monitoring) NetAct tool by the new component SWEM (SW Entitlement Manager). • SWEM is checking feature's usage within NetAct database and it is verifying by inter-working to CLS existing license capacity 1. Protected feature related event: A. Configuration change notification A. User / Actor Change SBTS B. SBTS measures feature usage value 2. SWEM is notified of event SRAN SW License configuration SBTS 1 Key download 3. SWEM checks notified value 1 CM 4. SWEM requests complement from CLS NetAct RC # 5. CLS reply to SWEM based available ‘feature pool’ capacity: PM CM SRAN BTS 6. SWEM actions based on CLS reply: 6 2 A. If OK SWEM to SBTS: Request 4 a. No action CLS 5 SWEM b. Max value is increased 3 2 B. If denial SWEM to SBTS: OoD/iSON pf. Grant / Deny 6 SBTS 1 a. Initiate ‘General limiting actions reducing overall PM 1 traffic volume B. SBTS b. Sets feature capacity limitation into previous value measures feature SWEM = SW Entitlement Manager usage value SRAN BTS CLS = Centralized SW License Manager 65 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 66 Slide 66 BTS and its Transport Parameter Categorization SR000832 • Feature helps user to filter essential parameters regarding to Flexi BTS and its transport for all radio technologies • Parameter categorization value of each Flexi BTS and Transport CM parameter is Basic or Advanced • Configuration Management parameter categories are Flexi BTS CM parameter category common for GSM, WCDMA, LTE, SRAN and NetAct views on NetAct Basic CM Editor GUI: • Parameter categorization is automatically taken into use on All, Basic, Advanced Advanced CM templates and GUI views of NetAct CM Editor and NetAct Plan Editor. • NetAct CM Editor and NetAct CM Plan Editor GUI (graphical user interface) allow to select if all parameters are shown or just basic, or advanced parameters from drop-down menu 66 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 67 Slide 67 Common Transport SR000954 shared transport function in SBTS with unified operability • On Transport layer site appears as one IP host Packet S1/X2 Iub Abis • Secured internal bus between modules if SBTS consists IP SBTS of multiple modules Ethernet RAT 1 Common Transport • Focus on IP/ETH-based Transport modes • Single Transport feature set RAT 2 • Flexible IP addressing, QoS and IPsec concepts RAT 3 • Unified Transport Operability Full packet backhaul example 67 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 68 Slide 69 Network resiliency for mcBSC SR001057 * Network resiliency for mcBSC – redundancy on network level • Network resiliency : GSM radio network controllers protected against exceptional environmental incidents • Service availability : Continued service availability for end users with protected GSM radio network • Switchover to Backup mcBSC is performed in case of a total failure in the Active mcBSC – Network Resiliency for mcBSC supports disaster recovery • mcBSC switchover is triggered by the operator but is otherwise automatic – operator has the final decision • Backup mcBSC can be located at different site than the Active mcBSC – Network resiliency for mcBSC supports geographical redundancy • One Backup mcBSC can support upto 16 Active mcBSCs – additional equipment needed for network level redundancy is minimised Dual homed BTS Dual homed BTS Backup mcBSC takes over the GSM service of the mcBSC out of service * will be released post-C5, as late feature Dual homed BTSs are switched over from protected mcBSC to backup mcBSC 69 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 RG301939 - mcBSC Pooling - Cluster Redundancy 69 Slide 71 71 RA23501EN162GLA0 © Nokia Solutions and Networks 2016 70
Copyright © 2024 DOKUMEN.SITE Inc.