Loading documents preview...
Slide 1
NokiaEDU SRAN radio planning and dimensioning topics [SRAN16.2] RA2350-162-LTE
1
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
1
Slide 2
Copyright and confidentiality NOTE: THIS IS A HIDDEN SLIDE To make this hidden slide visible in Slide Shows, via the “Slide Show” tab, please de-activate “Hide Slide”. Hidden slides are not printed if you de-activate the “Print hidden slides” option (found via File > Print > Print all slides > Print hidden slides). The contents of this document are proprietary and confidential property of Nokia Solutions and Networks. This document is provided subject to confidentiality obligations of the applicable agreement(s). This document is intended for use of Nokia Solutions and Networks customers and collaborators only for the purpose for which this document is submitted by Nokia Solution and Networks. No part of this document may be reproduced or made available to the public or to any third party in any form or means without the prior written permission of Nokia Solutions and Networks. This document is to be used by properly trained professional personnel. Any use of the contents in this document is limited strictly to the use(s) specifically created in the applicable agreement(s) under which the document is submitted. The user of this document may voluntarily provide suggestions, comments or other feedback to Nokia Solutions and Networks in respect of the contents of this document ("Feedback"). Such Feedback may be used in Nokia Solutions and Networks products and related specifications or other documentation.
2
Accordingly, if the user of this document gives Nokia Solutions and Networks Feedback on the contents of this document, Nokia Solutions and Networks may freely use, disclose, reproduce, license, distribute and otherwise commercialize the feedback in any Nokia Solutions and Networks product, technology, service, specification or other documentation. Nokia Solutions and Networks operates a policy of ongoing development. Nokia Solutions and Networks reserves the right to make changes and improvements to any of the products and/or services described in this document or withdraw this document at any time without prior notice. The contents of this document are provided "as is". Except as required by applicable law, no warranties of any kind, either express or implied, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose, are made in relation to the accuracy, reliability or contents of this document. NOKIA SOLUTIONS AND NETWORKS SHALL NOT BE RESPONSIBLE
RA23501EN162GLA0
IN ANY EVENT FOR ERRORS IN THIS DOCUMENT or for any loss of data or income or any special, incidental, consequential, indirect or direct damages howsoever caused, that might arise from the use of this document or any contents of this document. This document and the product(s) it describes are protected by copyright according to the applicable laws.
Nokia is a registered trademark of Nokia Corporation. Other product and company names mentioned herein may be trademarks or trade names of their respective owners. © Nokia Solutions and Networks 2016
© Nokia Solutions and Networks 2016
2
Slide 3
Course Objectives • At the end of the course you will be able to:
- Describe key features of the SRAN products and architecture - perform baseband dimensioning in SRAN deployments - perform TX power dimensioning in SRAN deployments - assess SRAN deployments for Passive Intermodulation
3
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
3
Slide 4
RA2350-162 Course Content • Introduction to Nokia SRAN 16.2 - SRAN products and architecture - Nokia SRAN key features (16.2 release) - Appendix • Detail of selected ASW/BSW features (16.2 release)
• Impact of SRAN on TX Power - investigate given sBTS configurations for limitations in TX power
• Impact of SRAN on baseband dimensioning - explain how baseband dimensioning is affected by SRAN configurations
• Passive Intermodulation - explain when and how Passive Intermodulation can affect the sBTS receiver - detect PIM problems - list options to resolve PIM problems
4
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
4
Slide 5
Introduction to NOKIA SRAN 16.2
5
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
5
Slide 6
Section Objectives • At the end of this section you will be able to:
- Describe key features of the SRAN products and architecture
6
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
6
Slide 7
Section Content • Introduction to Nokia SRAN 16.2 - SRAN products and architecture - Nokia SRAN key features (16.2 release)
• Appendix
7
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
7
Slide 8
SRAN products and architecture What is SBTS?
- SRAN16.2 release introduce a new Single RAN BTS. - SBTS is a Flexi Multiradio 10 Base Station that has new operability and SW architecture that enables: 1. SBTS System Module Sharing with shared RF fibers 2. New OAM Architecture and SBTS common OAM 3. SBTS Common Transport - The system module type required is FSMF i.e. HW release 3 of System Module (FSMr3)
RF RF
RF GSM
WCDMA TRS
TRS backhaul 8
RA23501EN162GLA0
LTE
OAM
System Module
Netact
© Nokia Solutions and Networks 2016
8
Slide 9
SRAN products and architecture Nokia Single RAN is designed to meet the operator needs for Multiple RATs Supporting multiple Radio Access Technologies with common or shared functionalities GSM WCDMA LTE TD-LTE
HW sharing
Common Operability
Common Transport
Nokia SRAN : key elements Multiradio capable HW
RF
> BTS RF, BTS baseband, Controllers > Enabling flexibility in reconfigurations and resource utilization between RATs
Single RAN SW
> SRAN SW product incl. Single RAN features and RAT features
Value adding functionalities
> > > >
9
Features for improving the Single RAN network performance
Spectrum refarming RAN sharing between CSPs Traffic steering Services
RA23501EN162GLA0
RF
GSM
S B T S
RF
WCDMA
LTE
BTS baseband
TRS
GSM
WCDMA
OSS
Controllers
© Nokia Solutions and Networks 2016
9
Slide 10
SRAN products and architecture SRAN release is a new SW product including new SBTS software GSM - no change
SRAN – new product
SRAN **
Dedicated GSM EX / GF
WCDMA - no change
FDD-LTE - no change
TD-LTE - no change
Dedicated WCDMA
Dedicated FDD LTE
Dedicated TD LTE
SBTS
WBTS
FL
TL
WCDMA application
FDD LTE application
TD LTE application
GSM application WCDMA application
GSM application
FDD LTE application GSM BTS O&M
Common O&M
WCDMA BTS O&M
LTE BTS O&M
LTE BTS O&M
GSM transport
Common Transport
WCDMA Transport
LTE BTS Transport
LTE BTS Transport
BSC / mcBSC BSC3i (1000/200)
BSC/mcBSC*
BSC / mcBSC RNC / mcRNC RNC/mcRNC* RNC / mcRNC OMS
OMS*
OMS
LTE iOMS*
iOMS
*) RNC OMS, BSC/mcBSC / BSC3i (1000/2000)and RNC/mcRNC instances are re-used as such in SRAN without any change. LTE iOMS is not needed **) SRAN 16.2 targets feature parity with parallel RAT releases, i.e. GSM 16, WCDMA 16 and LTE-FDD 16
10
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
10
Slide 11
SRAN products and architecture SBTS brings a fundamental change to Flexi MR 10 BTS Software Architecture
RF
RF GSM BB TRS
OAM
WCDMA BB TRS
OAM
LTE BB TRS
RF
RF
RF
GSM
WCDMA
OAM TRS
TRS backhaul
GSM
OSS WCDMA
LTE
Site with traditional approach • RF Unit sharing • Dedicated System Modules for RATs • Dedicated RF fibers per RAT • Shared transport backhaul
11
RF
RA23501EN162GLA0
OAM
TRS backhaul
LTE System Module
OSS
Site with Single RAN solution New operability and SW architecture enables • Common BTS OAM • System Module sharing with shared RF fibers • Common Transport
© Nokia Solutions and Networks 2016
SBTS Site: • Flexi Multiradio 10 System Module • All RAT specific features • Additional SRAN features • Common Operability • Common Transport • System Module Sharing • RF Sharing SBTS Product includes Single RAN and RAT features, all packaged into a single SW delivery • Includes support for all RATs, but customer can select which RATs will be activated • Concurrent operational mode: multiple RATs simultaneously • Dedicated operational mode: single RAT mode for sites running one RAT
11
Slide 12
SRAN products and architecture SRAN 16.2 Highlights
12
New SBTS Software
Common BTS OAM
One base station for GSM, WCDMA and LTE radio technologies
Common handling in Netact, Simplified site creation, commissioning and config.
Based on Flexi Multiradio 10 Base Station System Module
Supporting single radio all radio- and TRS SW upgrades
Common backhaul IP transport
System module sharing
One IP host and interface
Extremely compact sites
One IP address and IP security
Lower energy consumption
No external IP transport boxes
Scalable capacity
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
12
Slide 13
SRAN products and architecture SRAN OAM architecture Support for enhanced pre-integration and off-line validation
NetAct
NE3S
Web UI
Web UI Element Management Tool
SBTS OAM
NetAct
NE3S
SBTS SBTS OAM
Architectural improvements • Common BTS OAM • Flat O&M architecture, no OMS • Decoupling of O&M and RAT SW • Web UI based common SBTS Element Manager • Adding supported BTS configurations without dependency to SBTS SW 13
RA23501EN162GLA0
LTE TRS
WCDMA
GSM
BTS Platform SW
BTS
© Nokia Solutions and Networks 2016
New in SRAN16.2: • Flat OAM architecture, SBTS directly integrated to NetAct, no OMS for SBTS • New common OAM for SBTS • One harmonized common OAM for SBTS • Totally new OAM features, no feature parity with existing single RAT BTSs • New SBTS information model • New root object representing SBTS. Logical RNW model is assumed to be reused, changes in HW and transport model • Web UI is replacing the current BTS Site Manager • Totally new OAM features, no feature parity with BTS Site Manager • No need to install Nokia dedicated tool • New approach to support different BTS configurations with BTS profiles
13
Slide 14
SRAN products and architecture SRAN comes with consolidated NetAct
Note: NetAct supports multi-RAT already
NetAct
NetAct
OSS
NetAct
NetAct OSS
LTE WCDMA
WCDMA GSM LTE
• NetAct setup with single RAT networks can be fragmented between RATs
GSM SRAN network
Including RNC and BSC
• SRAN network is operated with one NetAct per area
• Complete network view in management system 14
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
14
Slide 15
SRAN products and architecture Web UI for BTS element management
Web UI
• Web UI replaces BTS Site Manager for SBTS • Can be used both locally and remotely • Works with a standard Web browser
http
• No need to install additional SW on the client side • New tool with modern user interface and high usability
SBTS OAM
• One element manager for SBTS LTE
WCDMA
TRS
GSM
BTS Platform SW
SBTS 15
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
15
Slide 16
SRAN products and architecture Flexi Multiradio 10 BTS with SRAN Architecture support - Sharing modes WCDMA (or GSM or LTE)
Opt. PDU
Opt.TRS ext
WCDMA
in dedicated mode with SRAN architecture
WCDMA
WCDMA
Single-RAT Mode Flexi Multiradio 10 System Module Opt. PDU
Opt.TRS ext
Opt. PDU
Opt.TRS ext
GSM&WCDMA WCDMA
WCDMA
Opt. PDU
Opt.TRS ext
3 HU
GSM/WCDMA 2nd Flexi MR 10(opt)
GSM<E LTE
LTE
Opt. PDU
Opt.TRS ext
GSM/LTE
2-RAT Modes
2nd Flexi MR 10(opt)
WCDMA
FSMF FBBA/C
2nd Flexi MR 10(opt)
FBBA/C
Standard Flexi Multiradio 10*) System Module as basis • Multi-RAT capable plug-in units: GSM, WCDMA, LTE • System Module chaining with up to two Modules for higher capacity configurations • Can also be used in dedicated Modes with SRAN architecture
LTE
Opt. PDU
LTE
Opt.TRS ext
FSMF: GSM&WCDMA WCDMA
LTE
WCDMA/LTE
2nd Flexi MR 10(opt)
GSM/LTE/ WCDMA
3-RAT Mode
*) from Flexi Multiradio 10 version A.102 onwards
16
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
PDU - Power distribution unit FTIF - Optional Transport sub- module FSMF- High capacity GSM/WCDMA/LTE System Module FBBA - Optional high capacity WCDMA/LTE extension sub- module FBBC - Optional high capacity LTE extension sub- module SRAN16.2 allows “Shared mode”: GSM, WCDMA and LTE can run simultaneously on a single FSMF with one common backhaul connection. Also allows “Dedicated mode“: e.g. only GSM application runs on FSMF. TRS processing centrally on one FSMF even in case of chaining of system modules.
16
Slide 17
SRAN products and architecture Flexi Multiradio 10 BTS with SRAN Architecture support - Sharing of fiber WCDMA-GSM RF sharing 1xFXDB
• Sharing of fiber between technologies for improved connectivity • RF module/RRH support defined for separately for SBTS - 6 Gbps RF-modules primarily - all RATs supported, if band in question is applicable to RAT FSMF
• Note that picture on the right is example only. Obviously also combination with LTE is possible GSM&WCDMA
Shared fiber between technologies 6 Gbps OBSAI
17
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
17
Slide 18
SRAN products and architecture SBTS common transport - one unified backhaul GSM
TRS
WCDMA
TRS
LTE
TRS
SBTS Common Transport
shared
shared
IP / Ethernet
IP / Ethernet
Legacy Transport Multiple BTS require aggregation
18
RA23501EN162GLA0
GSM
LTE
WCDMA
Common Transport Single Transport Entity in SRAN BTS
© Nokia Solutions and Networks 2016
18
Slide 19
SRAN products and architecture SBTS common transport • shared transport function in SBTS with unified operability • On Transport layer site appears as one IP host • Focus on IP/ETH-based Transport modes
• Single SBTS Transport feature set covering all RATs
S1/X2
Iub
IP Ethernet Common Transport
• Flexible IP addressing, QoS and IPsec concepts • Unified Transport Operability • Transport modes supported in parallel - LTE:
SBTS
Packet Abis
RAT 1 RAT 2 RAT 3
S1/X2 over IP/Ethernet
- WCDMA: IP Iub over Ethernet - GSM:
19
Full packet backhaul example
Packet Abis over IP/Eth or Packet Abis over TDM RA23501EN162GLA0
© Nokia Solutions and Networks 2016
19
Slide 20
SRAN products and architecture SBTS - Transport Interfaces • FSMF provides the following Transport interfaces (without the optional Transport Sub-Module) - 1x 100/1000 Base-T Ethernet port - 1x optional optical (if not in use for RP3-01)
Optional Transport Sub-Module FTIF 2 x Combo Ethernet Ports:
8x E1/T1/JT1 (twisted pair):
• 2x 1000/100BaseT, or
4 x RJ48C-style ports with 2 x E1/T1/JT1 each
• 2x optional optical GE SFP, or • 1x 1000/100BaseT and 1 x optional optical GE SFP
• Optional FTIF required in case of - use of TDM interface for • Packet Abis over TDM or • synchronization propagation via PDH - use of optical ethernet - need for multiple ethernet ports - use of Synchronous Ethernet Synchronization Output using Synchronous Ethernet as input
20
RA23501EN162GLA0
1x optional optical SFP (GE), available for Transport only if not used for RP3-01
1x 100/1000Base-T Ethernet port, dedicated for Transport
© Nokia Solutions and Networks 2016
20
Slide 21
SRAN products and architecture SBTS - IP addresses, IP versions, IP Security • Flexible IP addressing concept - Applications can bind to interface IP addresses, virtual IP addresses or alias IP addresses - IP addresses can be shared or dedicated across RATs and/or planes - SBTS M-plane binds to one IP address - In one extreme a SBTS can be operated with a single IP address for U-/C-/M-/S-plane, in other extreme it can be operated for U- and C-plane IP addressing same as individual BTSs (except for M-plane which is always shared) Example
SRAN BTS U/C/S /M
21
SRAN BTS
SRAN BTS VLAN (optional)
RA23501EN162GLA0
U/C/S
VLAN (optional)
M
VLAN (optional)
U/C
VLAN (optional)
U/C
VLAN (optional)
U/C
VLAN (optional)
S
VLAN (optional)
M
VLAN (optional)
© Nokia Solutions and Networks 2016
Supported IP versions: • On level of the IP interface IPv4 / IPv6 Dual Stack is supported • Which applications can use IPv6 is subject to features per Radio Access Technology, e.g. there are no plans for IPv6 for Packet Abis or IuB while it will be released for S1/X1 interface • IPv6 capabilities of a SBTS will thus be same as IPv6 capabilities of the individual Radio Access Technologies IP Security: • The SBTS provides the flexibility to freely map individual traffic flows to any IPsec security association (SA). Thus IPsec SAs can e.g. be • dedicated to a certain Radio Access Technology • dedicated to a certain plane of a certain Radio Access Technology • shared between multiple Radio Access Technologies („Common IPsec Tunnel“) 21
• The SBTS may be connected • to one IPsec gateway handling all traffic • to different IPSec gateways, e.g. • one per Radio Access Technology or • one for Management Traffic and other one for production traffic
22
Slide 22
SRAN products and architecture SBTS - Transport Quality of Service • Flexible QoS concept • Two levels of scheduling/shaping are provided • 1st level queuing/scheduler/shaper “per policed or bandwidth limited connection in the transport network”
- Traffic flows can be freely allocated to 1st level schedulers allowing to prioritize, shape and limit flows or combination of flows according to the preference of the operator • 2nd level scheduler/shaper “per phys. interface” • Common BTS mapping table for DSCP PHB and DSCP p-bits
22
RA23501EN162GLA0
Example scenarios
© Nokia Solutions and Networks 2016
23
Slide 23
SRAN products and architecture SBTS - Transport Admission & Congestion Control • Radio Access Technology-specific legacy Admission and Congestion Control mechanisms remain applicable and operate independently in Single RAN BTS - WCDMA:
Connection Admission Control
- LTE:
Measurement Based Transport Admission Control
- GSM: Packet Abis Congestion Control under the assumption that each Radio Access Technology has its own static configured bandwidth for committed bitrate traffic and other measures • Existing dimensioning plans and rules can be reused as the RAT specific admission control and preemption mechanisms are reused
23
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
24
Slide 24
Course Content • Introduction to Nokia SRAN - SRAN products and architecture - Nokia SRAN key features (16.2 release)
• Appendix
24
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
25
Slide 25
Nokia SRAN key features SRAN 16.2 release Feature ID
Feature Name
Type
Operator Benefit
Site Solutions SR000601
Initial SBTS Configurations for ETSI market with 6Gbps OBSAI radio units Supported RF HW in SBTS SBTS System Module Sharing RTU
BSW
Lower OPEX
BSW ASW
SR000999 SR001067
SBTS configurations with 3G OBSAI radios Adding Low Power RRH (2Tx/2x 4.0 RRH-family) to SBTS-configurations *
BSW BSW
SR001226
SBTS profiles for Indian customer and FXEE PIM avoidance configurations Initial SBTS-configurations with 2x FSMF System Modules Initial SBTS configurations for China market
BSW
List of supported RF-HW for SBTS Common hardware, but using different technologies saves OPEX for customers and simplifies operational tasks. The customer needs fewer number of sites, which results in savings of site rental, energy savings and savings of antenna systems. Lower OPEX One sector Flexi Metro Remote RF Head is able to support 2TX MIMO with medium range output power (2 * 5 W) for hot spot dense urban capacity sites. It enables easy installation outdoors close to antennas or with an integrated antenna thus minimizing BTS site weight and complexity while providing high capacity with SBTS features Better performance due to PIM avoidance
BSW
Lower OPEX
BSW
Lower OPEX Element manager Web based application to manage BTS. No need to install any management application to computer Simplifies operations for customer by introduction one common object model for SBTS to simplify operations. Seamless planning and operations also in mixed network scenarios
SR000944 SR000972
SR001253 SR001268
Operability SR000713
SBTS Web UI
BSW
SR000726
SBTS Object Model
BSW
SR000794
SBTS SW License Management
BSW
SR000832
Flexi BTS and its Transport Parameter Categorization SBTS Operator Certificate Management
BSW
SR000845
25
RA23501EN162GLA0
ASW
Licensing is running smoothly in the background eliminating risk of BTS being unintentionally out of operation due to missing licenses Reduced OPEX by simplification of the plan file and limitation of the number of basic parameters to be managed via NetAct CM tools. The BTS Certificate Management improves the overall system security. It supports the automated, centralized and scalable key and certificate management for operator networks
© Nokia Solutions and Networks 2016
SBTS features five categories are listed next: BTS Site Solution Operability Performance Monitoring RAT Feature Parity Transmission and Transport In general all the SBTS features are legacy features i.e. new implementation of existing functionality. SRAN 16.2 customer feature list and SBTS feature parity list can be found from NOLS: “Single RAN, Rel. SRAN 16.2, Operating Documentation”
26
Slide 26
Nokia SRAN key features SRAN 16.2 release Feature ID
Feature Name
Type
Operator Benefit
Operability SR000846
SBTS Vendor Certificate Management
BSW
The provision of Nokia Vendor certificates allows the operator to set up a 3GPP compliant PKI solution
SR000899 SR000900 SR000902 SR000903
SRAN Support of TLS 1.2 SBTS Operator Account Management SBTS sRIO Link Layer Security SBTS User Event Logging
BSW ASW BSW ASW
Improved network security Improved network security Improved security of BTS site Enables customer to monitor details of configuration changes, enabling faster detection of misconfiguration thus limiting network problems/outages
SR000904 SR000906
SBTS DNS Support SBTS Nokia Service Account Management
BSW BSW
Provides the operator with the possibility to use of DNS Remote and local service access capability with defined access permissions controlled by operator
SR000907
SBTS Security for Local Management Ports
BSW
This feature prevents from vulnerabilities due to unauthorized access of intruders connecting to a BTS via local Management Ethernet ports
SR000908
SBTS Crypto Agent
BSW
Significantly enhanced security is achieved because of the provided personal secure environment protecting sensitive credentials and cryptographic services
SR000909
SBTS Trusted Boot
BSW
SR000910
SBTS Antenna Line Management
BSW
Significantly enhanced risk management is achieved because only integrity checked code is accepted for activation. Operator can optimize network performance using RET and MHA devices.
SR000911
SBTS HW Management
ASW
Operator can view and modify 3GPP compliant SBTS HW via WebUI and NetAct.
SR000912 SR000913
SBTS SW Management SBTS Signed SW
ASW BSW
One SW delivery for SBTS and it covers all three technologies Enhanced risk management is achieved because SW deliveries can't be faked or modified after leaving the Nokia SW production environment.
26
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
27
Slide 27
Nokia SRAN key features SRAN 16.2 release Feature ID
Feature Name
Type
Operator Benefit
Operability SR000920
SBTS Fault Management
BSW
SR000921
SBTS NE3S WS NetAct integration
BSW
SR000924
SBTS Intelligent shut down *
ASW
Optimized investment to one battery backup system on a high-capacity BTS. Separate backup systems for BTS and transmission are unnecessary - CAPEX saving.
SR000928
SBTS Plug and Play
ASW
Fast deployment of the new SBTS. The manual work required on the site will be minimized
SR000929
SBTS Configuration Management
BSW
Operator can manage SBTS as a single entity within the configuration management operations, ensures CM at SBTS level is consistent
SR000930
SBTS Configuration Validation
BSW
Enables operator to validate site configuration from both NetAct and Web UI level
SR000937
SBTS LTE Trace
ASW
Provides trace functionality for the LTE RAT in SRAN that is equivalent to the trace functionality in existing LTE networks, reducing complexity and OPEX
SR000938 SR000940
SBTS SW upgrade/update SBTS Diagnostics and Self Test
BSW BSW
SR000942 SR000959
SBTS Manual Commissioning and system setup SBTS Energy saving
BSW ASW
Enables possibility to implement new features to network. Key diagnostics functions and self testing makes it possible to identify HW failures in commissioning and troubleshooting Site commissioning and setup with the use of Web UI or NetAct Operator can use energy saving features with SBTS in dedicated radio and RF-Sharing mode
SR000989 SR000996
SBTS - Minimizing Drive Tests (MDT) SRAN Clock Time Management
ASW BSW
OPEX savings by minimizing the need for drive tests. Clock time distribution is vital mandatory for whole network.
27
RA23501EN162GLA0
Integrated trouble shooting over several network technologies will reduce OPEX at Operation Centers The SBTS NE3S integration provides a flat operation, administration and maintenance (OAM) architecture without unnecessary mediation devices
© Nokia Solutions and Networks 2016
28
Slide 28
Nokia SRAN key features SRAN 16.2 release Feature ID`
Feature Name
Type
Operator Benefit
Operability SR001000
SBTS RF Sharing RTU
ASW
One common sales item simplifies license management of RF sharing .
SR001004
SBTS Data User RTU
BSW
One common sales item simplifies license management for invoicing # data users.
SR001005
SBTS Channel bandwidth RTU
ASW
One common sales item simplifies license management for invoicing channel bandwidth.
SR001015
SBTS Incremental Power RTU
ASW
One common sales item simplifies license management of incremental output power handling.
SR001027 SR001057
SBTS PAoTDM for GSM dedicated mode with mcBSC SBTS inheritance of Network Resiliency for mcBSC *
BSW ASW
Possibility to utilize existing transport network in SRAN Introduces resiliency solution for mcBSC, minimized network impact of BSC outage
SR001185
SBTS Composer UI *
BSW
Guided manual commissioning wizard for site setup without ready made SCF
SR001244
SBTS PAoTDM for Flexi BSC with transport media converter
BSW
CAPEX savings because of re-use of TDM transport
BSW
Operator can have same RAT specific PM as earlier, and reuse existing competence and tools on BTS PM
Performance Monitoring SR000918
SBTS Basic Performance Management
RAT Feature Parity SR001007
SBTS feature parity in SRAN 16.2
BSW
Feature brings feature parity with dedicated technologies, and enables usage of same features in SBTS.
SR001052
Feature parity with FDD-LTE 16 newly developed features
BSW
SRAN customers get FDD-LTE 16 features available at the earliest possible time.
28
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
29
Slide 29
Nokia SRAN key features SRAN 16.2 release Feature ID
Feature Name
Type
Operator Benefit
Transport SR000176
ML-PPP termination
BSW
Enables migration to IPv4 based transport while utilizing existing TDM infrastructure. No need to immediately update the complete transport network to Ethernet
SR000344
Fast IP Rerouting
ASW
Enables to make use of redundant backhaul connections to improve availability
SR000350
Ethernet Termination
BSW
Basic feature needed with every Ethernet interface Key differentiators: Jumbo frame support (ready for IPv6 with IPv6 IPsec)
SR000356
IPsec for BTS
ASW
IPsec allows using transport networks which cannot be fully trusted
SR000357
Symmetrical E1 Interface
ASW
The support of standard E1 interfaces allows the connection of widely available TDM based infrastructure
SR000360
IP Transport Network Measurements
ASW
Brings OPEX savings as the operator is able to monitor the network conditions and can react quickly to potential service degradations
SR000361
Link Supervision with BFD
BSW
BFD allows tight monitoring of the transport connection
SR000365
Electrical 100/1000-Base-T Interface
ASW
The support of standard Ethernet interfaces allows the connection of widely available Ethernet based infrastructure
SR000366
BTS Firewall
BSW
Increased network element security providing more robust network operation.
SR000367
Small Form Factor Plugable Slot (SFP slot)
ASW
Flexibility with regards to the optical physical media selection
SR000368
1000Base-SX Optical GE Interface
BSW
Provision of a cost effective short-haul optical GE interface
SR000369
1000Base-LX Optical GE Interface
BSW
Provision of a cost effective medium-haul optical GE interface
SR000370
1000Base-ZX Optical GE Interface
BSW
Provision of a BTS integrated cost efficient long-haul optical GE interface
29
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
30
Slide 30
Nokia SRAN key features SRAN 16.2 release Feature ID
Feature Name
Type
Operator Benefit
Transport SR000371 SR000374
1000Base-BX Optical GE Interface BSW Timing over Packet with Frequency Sync ASW
Provision of a cost effective single fiber optical GE interface ToP solution allows the operator to take full advantage of packet based backhaul networks. It can be used for providing synchronization to the BTS. This brings CAPEX/OPEX savings.
SR000375
Synchronous Ethernet
ASW
Synchronous Ethernet is a solution to provide an accurate frequency reference for the BTS through a Packet Network. Can provide a high quality synchronization reference. Does not depend on the network conditions, unlike Timing over Packet.
SR000376
Synchronization from 2.048MHz signal
ASW
G.703 compliant 2.048MHz signal can be used to frequency synchronize the BTS
SR000377
Synchronization from PDH interface
BSW
Existing E1/T1/JT1 backhaul links can be used for base station frequency synchronization.
SR000382
Multiple VLAN interfaces
BSW
Ability to separate different traffic types to different VLAN interfaces.
SR000383
Timing over Packet with phase synchronization *
ASW
The Timing over Packet (ToP) with Phase Synchronization feature provides significant CAPEX/OPEX savings as GNSS receiver is not mandatory anymore to provide Phase and Time synchronization to BTS
SR000384
Timing over Packet Resilience
BSW
This feature provides the capability for geographical redundancy of the ToP Master equipment thus increasing the reliability of the synchronization
SR000385
Synchronization Hub
BSW
Collocated or chained BTSes can share single synchronization source, saving the CAPEX and OPEX of synchronization solution e.g. one GNSS receiver for multiple BTSs
SR000386
QoS Aware Ethernet Switching
BSW
CAPEX savings at the BTS site for providing Ethernet Switching functionality. Use cases: -- Ethernet traffic aggregation in collocation scenarios -- Chaining of BTS's
SR000395 SR000396
IPv4 based S1/X2 IPv4 based Iub
ASW ASW
Standards based backhaul solution for LTE S1 and X2 transport. OPEX and CAPEX savings in transport result from more cost efficient transport network for Iub traffic.
SR000397
IPv4 based Packet Abis Transport
ASW
OPEX and CAPEX savings in transport result from more cost efficient transport network for the GSM Abis interface.
30
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
31
Slide 31
Nokia SRAN key features SRAN 16.2 release Feature ID
Feature Name
Type
Operator Benefit
Transport SR000402
BTS QoS Support for Terminated and Routed BSW Traffic
QoS mechanism limits the possible traffic loss and maps the traffic to a suitable transport network QoS class. Accordingly the QoE for the end-users is improved.
SR000403
Source based routing in BTS
BSW
This feature increases the IP addressing flexibility by introducing a more sophisticated routing mechanism. The feature may obsolete the need for address re-planning and reconfiguration during network migration cases, such as Single RAN or multi-operator scenarios which require merging of multiple legacy networks operating on identical or overlapping IP subnets.
SR000439
IPSec Emergency Bypass
BSW
Feature allows limiting the network outage time in case of a severe IPsec cluster failure to a minimum
SR000465
Local and Remote IP Traffic Capturing
BSW
IP traffic capturing enabling multiple troubleshooting use cases for operator
SR000589
IPv4/IPv6 Transport Stack
BSW
This feature is the foundation for IP based Iub, IP based Packet Abis over IP/Ethernet, and IP based S1/X2 , which allow to make use of cost efficient and state of the art packet transport for mobile backhaul
SR000600
Backup IPsec Tunnel
ASW
Service continuation w/o BTS site visit after SEG site disaster, while in normal operation maximum security is applied, i.e. M-plane is protected by IPsec as well. By this retain customers, manage risks and differentiate in the market.
SR000770
LTE Dual U-plane IP addresses
BSW
Exceeding UL/DL 1 GE throughput on backhaul interfaces. IP networks with two separate transport paths can be supported end to end.
31
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
32
Slide 32
Course Content • Introduction to Nokia SRAN - SRAN products and architecture - Nokia SRAN key features (16.2 release)
• Appendix - selected ASW/BSW features (16.2 release)
32
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
33
Slide 33
SBTS Configuration Management SR000929 • Configuration management for SBTS supports • Configuration provisioning and activation
NetAct
• Robust SBTS configuration synchronization with NetAct • Warnings on service impacting operations
Configurator
SW repository
CM
BTS BTS Profile Profile
• Direct activation and delta configuration operations • Emergency plan provisioning • One Site Configuration File for the whole SBTS
• BTS internal details are automatically generated
SCF
• Generation is based on associated BTS HW profile • BTS HW profiles represent the supported SBTS configurations and are provided by Nokia
SBTS
• SBTS configuration management actions are supported both via NetAct and Web UI
33
RA23501EN162GLA0
SBTS WebUI
© Nokia Solutions and Networks 2016
34
Slide 34
SBTS CM Validation SR000930 • CM validation is supported both offline before the actual SBTS HW integration and online with the real SBTS • Validation is supported both with NetAct and WebUI • Off-line validation covers
NetAct SCF SCF
- Parameter range and consistency checks
Offline validation
Scalable parallel processing
- SCF validation against the BTS HW profile
• On-line validation covers in addition checks against the actual HW and radio constraints • Validation is distributed both NetAct internally, and towards the SBTSs in online validation for high performance
SBTS
SBTS
• The validation rules and coverage are SBTS specific Online validation, distributed
34
RA23501EN162GLA0
SBTS WebUI
© Nokia Solutions and Networks 2016
35
Slide 35
SBTS Information Model SR000726 • There is one information model for SBTS, containing all RNW, TNL, synchronization and HW aspects
PLMN SBTS
• SBTS is using logical RNW models compatible with the single RAT releases
RAT RNW RAT RATRNW RNW models models models
• For example LTE cell (LNCEL) configuration
• One common HW model for SBTS
Common HW model
• Transport network layer and synchronization configuration is SBTS specific
TNL and SYNC
Relation
• Note: SBTS internal details are automatically generated based on BTS HW profiles to simplify planning
MGMT
• TNL HW part is closely integrated with the HW model RNC
• MGMT provides the M-plane related configuration
WBTS
WCEL
BCF
BTS
BSC
35
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
36
Slide 36
SBTS NE3S WS NetAct Integration SR000921
• SBTS is integrated directly to NetAct with Nokia internal NE3S WS oam interface
NetAct
• There is one M-plane connection to NetAct regardless of the number of RATs running in SBTS
Applications Applications Applications
• NE3S is based on HTTPs and provides inbuilt efficiency and scalability for direct integrations
• NE3S is used for SBTS M-plane operations and oam data transfer • Specific oam data exchange with RNC and BSC over NBAP and Abis is supported for network functionality purposes
HTTPs NE3S SBTS M-plane SBTS
NBAP RNC
36
RA23501EN162GLA0
Abis BSC
© Nokia Solutions and Networks 2016
37
Slide 37
Web UI for BTS element management SR000713 • Web UI replaces BTS Site Manager for SBTS
Web UI
• Can be used both locally and remotely • Works with a standard Web browser • No need to install additional SW on the client side
http
• New tool with modern user interface and high usability • One element manager for SBTS
SBTS OAM
• Supports multiple user read sessions LTE
TRS
WCDMA
GSM
BTS Platform SW
SBTS
37
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
38
Slide 38
SBTS Plug and play SR000928 • Plug and Play is a part of Automated Site Creation • IP connection is established automatically to NetAct (Auto-connection) • Autoconnection Infrastructure is used • DHCP server • Security server • PnP server
• Auto-connection can be done without DHCP • Progress reporting provides Status indication in
BTSSM / Web-UI through the PnP process • Prepared configuration file includes all the radio technologies used by the SBTS and is installed while auto-configuration • After SBTS SW and configuration is installed, the SBTS starts to use NE3S interface for O&M
38
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
39
Slide 39
Manual commissioning and setup SR000942 • Ready made HW configurations template (BTS Profile) defined by Nokia • Ready made documentation for each BTS profile (cabling instruction) • Reduce content (need for planning) of SCF-file. • SCF-file done at NetAct or customer specific planning tool. • Guided manual commissioning without ready made SCF is optional feature. • All SCF parameter modifications can be done by using Web.
SBTS power up
Cancel Autoconnection SW Download & Activation SCF-file exist Full SCF Download SCF file BTS configuration generation & validation
Partial SCF, no SCF
BTS profile selection Fill missing parameter with Web UI or use Optional BTS SCF Composer UI
Configuration activation
39
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
40
Slide 40
SBTS Composer UI SR001185 * • Guided manual commissioning without ready made Site configuration File (SCF). • All SCF parameter modification can be done by using Composer UI
• Guided mode (like current BTS SiteManager) • Tool available directly from SBTS • No need to external tool to be updated at release upgrade
SBTS power up Cancel Autoconnection
SW Download & Activation SCF-file exist Full SCF Download SCF file
* will be released post-C5, as late feature
40
RA23501EN162GLA0
BTS configuration generation & validation Configuration activation
Partial SCF, no SCF
BTS profile selection Fill missing parameter with Web UI or use Optional BTS SCF Composer UI
© Nokia Solutions and Networks 2016
Roadmap style slide => this will be included in customer materials and roadmaps
41
Slide 41
SBTS SW Management SR000912 • One SW packet for SBTS. It includes all needed components: Site O&M, Node O&M, RAT SW, TRS SW, RF SW and Platform SW.
NetAct
• SBTS SW management actions are supported via NetAct and from WebUI.
SW Manager
• SBTS supports manual fallback to previous SW version, if problem on SW activation is noticed. • Simultaneous SW mgmt actions for all (multiple) SBTSs (sites) from NetAct.
NE3S
• NetAct support also scheduled SW management operations • Detailed SBTS SW configuration (build) information at site & NetAct • Monitoring the status of SW management operation
SBTS WebUI
FSMF
SBTS OAM
WCDMA
41
RA23501EN162GLA0
LTE
GSM
© Nokia Solutions and Networks 2016
42
Slide 42
SBTS SW Upgrade SR000938 • Feature will bring support for upgrading SBTS SW. SBTS can be upgraded as one operation. • SBTS will download only the SW components needed for current configuration and are changing. • Both upgrade & update (maintenance updates) are supported
• SBTS SW upgrade is supported via NetAct SW Manager and from SBTS WebUI.
• Whole SW upgrade workflow is supported: • Pre-check • SW download • SW activation • Post check
42
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
43
Slide 43
SBTS Performance Management SR000918 NBI
• SBTS related measurement data
Reporting Suite
• Existing RAT (LTE, WCDMA & GSM) measurements supported • New common transport measurements
NetAct
•Counter data is transferred to NetAct for storing and reporting • Data visible via • SBTS WebUI: latest measurements + short history • NetAct reporting tools: latest measurements + history
BSCP M file
RNC PM file
• Configurable measurement collection
RNC
SBTS PM file
• Counter data available also via NetAct NBI
BSC SBTS data via Abis
SBTS SBTS WebUI 43
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
44
Slide 44
SRAN Fault Management & recovery SR000920 • SRAN BTS alarms are visible in SRAN BTS and NetAct alarm repositories
NetAct
Alarms NWI3
• Note: SBTS alarms are not visible in RNC or RNC OMS level
WCDMA OMS NE3S
• SBTS alarms are visible also via SBTS WebUI
Alarms BTSOM
• RNC can reset the WCDMA SW of SRAN BTS as a recovery action
RNC
BSC
Alarms
Alarms
NBAP
SBTS WebUI
OMUSig
SRAN BTS Alarms LTE 44
RA23501EN162GLA0
WCDMA
GSM
© Nokia Solutions and Networks 2016
45
Slide 45
SBTS HW Management SR000911 NetAct
• HW management modeling as defined in 3GPP •
1. HW notification includes HW change information
3GPP 32.622 for managedElement and 32.692 for inventoryUnit
• HW management via NE3S (CM operations) •
Information of HW change is included in the notification (change, remove, add HW) and no extra upload is needed. One notification message can include several updates.
•
User can manually add, remove and modify passive HW via SBTS WebUI.
•
Inventory upload to NetAct. Upload includes all active SBTS HW units (detected by SBTS SW) and created passive HW units.
• SBTS HW inventory view is licensed in NetAct
User views
2. HW inventory upload to NetAct
SBTS
SBTS
Common HW Model
RAT Specific Model RAT Specific Model
managedElement
InventoryUnit 3GPP Inventory Model
45
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
46
Slide 46
SBTS LTE Trace SR000937
• This feature will bring two LTE trace functionalities SBTS: Subscriber and equipment trace & Cell trace.
NetAct Trace Viewer
• Subscriber and equipment trace:
Trace reports
- The subscriber and equipment trace supports the tracing for certain IMSI or IMEI and it provides detailed subscriber oriented information at call level for one or more specific mobile(s).
Security Gateway
(LTE163) : management based trace activation for subscriber and equipment trace
MME
S1AP: Signal based trace activation
Trace reports
• Cell trace: - With LTE Cell Trace all UEs in a target cell in connected state are traced simultaneously. The target cell will be defined by operator.
management based trace activation for cell trace
X2 SBTS WebUI
SBTS – LTE RAT
SBTS – LTE RAT
SBTS WebUI
configure cell, equipment and cell trace by WebUI
46
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
47
Slide 47
SRAN Clock time management SR000996 Time management in SRAN consist of 3 aspects 1. Clock time delivery in SRAN (in priority order for SBTS) - GPS for BTSs (when installed) - ToP(PTP / IEEE 1588v2) for BTSs - SNTP for NetAct, RNC, BSC, 2G BTS, 3G BTS, 4G BTS, OMS, SBTS 2. Clock time usage in O&M data in NEs and management elements - SBTS uses local time in all O&M interfaces for O&M data - NetAct and all other elements continues to use their local time 3. Clock time presentation - SBTS WebGUI uses PC local time - NetAct GUI and NBI uses NetAct local time for SBTS O&M data
NTP time distribution architecture can be freely configured. Picture presents one example.
Master clock
NTP I/F
NetAct
NetAct
NTP I/F
NTP I/F
OMS NTP I/F
mcBSC
mcRNC
NTP I/F
ABIS time setting
NTP I/F
GPS
NTP I/F GPS
GPS
SBTS 3G BTS
3G BTS
eNB
ToP (PTP) clock time source
47
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
48
Slide 48
SBTS Intelligent Shut Down SR000924 * • The feature optimizes the investment to one battery backup system on a high-capacity BTS, especially on sites that operate as important transmission hub nodes. With Intelligent ShutDown, separate backup systems for BTS and transmission are unnecessary. • The SBTS with battery backup system supports an intelligent BTS site power shutdown procedure in the event of an AC power failure. During the commissioning of each site, the operator can define different shutdown timers and priorities for the BTS sectors and carriers.
• Intelligent shutdown is activated from Power systems by activating one external alarm (EAC) lines to Flexi BTS.
* will be released post-C5, as late feature
48
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
49
Slide 49
SBTS - Minimizing Drive Tests (MDT) SR000989
• 3GPP standardized MDT provides the UE measurements for further analysis
• Measurements supported in WCDMA and LTE • MDT measurements are added in the Cell Trace
RNC Data Collector
and forwarded to upper level systems via L3 Data Collectors
• L3DCs are not mandatory if a limited amount of the UEs are monitored
SBTS (LTE+WCDMA)
Data Collector
Trace Viewer…
Traffica CLA Etc..
• MDT is used as a basis for Call Location Analysis
and other applications on top of the OSS systems
49
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
50
Slide 50
SBTS Energy Saving SR000959 • Significant OPEX savings by reducing power
GSM WCDMA LTE
consumption
• Power Amplifier (PA) has a functionality to automatically switch to stand-by mode in case when no radio resources are used in Single-RAT, dedicated Radios and RF Sharing mode
O A M
SBTS - Dedicated Radio Modules
• Radio module is not switched off but put to idle state
and can be powered up in seconds when there is a need to get back to normal state GSM WCDMA LTE
• Solution consist of co-existence of RAT specific Energy
Saving features: RG301936 (GSM), RAN955 (WCDMA) and LTE1103 (LTE)
50
RA23501EN162GLA0
O A M
SBTS – RF Shared Radio Modules
© Nokia Solutions and Networks 2016
51
Slide 51
SBTS16.2 Security Security Certificate management SR000845 - SBTS Operator Certificate Management SR000846 - SBTS Vendor Certificate Management SR000904 - SBTS DNS Support
User account management SR000900 - SBTS Operator Account Management SR000903 - SBTS User Event Logging SR000906 - SBTS Nokia Service Account Management Secure SBTS environment SR000902 - SBTS sRIO Local Link Layer Security SR000907 - SBTS Security for Local Management Ports SR000908 - SBTS Crypto Agent SR000909 - SBTS Trusted Boot SR000913 - SBTS Signed SW Secure OAM interfaces SR000713 - SRAN WebUI with multiple read session support SR000899 - SBTS Support of TLS 1.2
51
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
52
Slide 52
SBTS Operator Certificate Management SR000845 • The feature supports 3GPP (Rel11) compliant certificate life cycle management, including multi-layer hierarchical PKI architecture and cross certification with revocation list
• Chain of trust verified over multiple signing layers (up to 3 sub-ordinate layers), an RA as first CMP peer is supported
• Automated Certificate / Key update in case of certificate lifetime is to expire Network Operator
system by multiple trust anchor management for RAN Sharing
• Certificate revocation management: • SBTS global CRL activation/deactivation • CRL source for own PKI selectable to be taken from X.508
certificate or configurable CRL distribution point attributes (CRLDP), CRL source selectable
• Supports Primary & Secondary “PKI & CRL Server”
52
RA23501EN162GLA0
Signing Hierarchy
• The SBTS supports a second partner operator PKI
Root Cert CRL Sub-CA 1 Cert CRL Sub-CA 2 Cert
Sub-CA 3 Cert
RAN Sharing Operator
Root CA Certificate
Root CA Certificate
Root CA RAN Operator
CRL
Root CA RAN Sharing Operator
Subordinate RA / CA
CRL
Subordinate RA / CA
CRL
Entity Cert Root CA Certificate
SBTS
NetAct
other vendors NB/eNB
SeGW
SeGW 2nd Operator
© Nokia Solutions and Networks 2016
53
Slide 53
SBTS Vendor Certificate Management SR000846 • At the factory, strong cryptographic identity X.509 vendor certificates are installed to modules within a protected memory and files system
• During initial start-up of the SBTS HW modules the vendor certificate/module certificate with the associated RSA keys and the Factory CA and Nokia Root CA certificate ( Nokia Trust Chain) are provided to SBTS applications which need to make use of the vendor credentials as for • automated operator certificate enrollment acc. 3GGP (Rel11) • authentication of sRIO peers for Local Link Layer Security between modules
• authentication of Ethernet peers for MACsec between modules
Nokia Factories Nokia Root CA certificate
RA23501EN162GLA0
Certificate management
Factory CA certificate
sRIO Local Link Layer Security
Vendor certificate for module
MACsec
and backbone peers (in case of supported by HW)
53
SBTS
……
© Nokia Solutions and Networks 2016
54
Slide 54
SBTS DNS Support SR000904 • This feature provides support for DNS resolution for addresses given by a Full Qualified Domain Name (1) into the corresponding IP address.
• The DNS client queries (2) the DNS Server to resolve the FQDN, which returns the corresponding IP address (3) assigned to the repository (4). • Functionality is used as a part of the X.509 certificate validation to check if the certificate has been revoked. The BTS downloads the revocation lists from the revocation repository server
Name Server
DNS
2. FQDN
3. IP@
1. FQDN
4. IP packet
SBTS
Network Peer
Example: X.509 certificate revocation list URL
• Reverse lookup, e.g. solving the FQDN to a given IP address, is not supported
CRL Distribution point FQDN: URL=ldap//crldp.operator.net ldap//193.245.187.201
54
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
55
Slide 55
SBTS User Event Logging SR000903 • Logs entries for operator user events done with WebUI or via Nokia Service Account Secure Shell access are logged in granular details
NetAct framework
…..
Name1, Value1 Name2, Value2 Name3, Value3 … , ….
WebUI
• Configuration changes done by WebUI or SSH are logged
e.g. XML export
SLC central log repository
with details of
• Parameter name and value • Execution status
• The feature helps to identify the incorrect configurations faster thus limiting network problems or even network outages.
• SLC(Standalone Log Collector) collects the logs from SBTS periodically or upon request and forward the logs to Security information and event management (SIEM) for operator to audit.
• SBTS triggers SLC(Standalone Log Collector) to upload files
Name1, Value1 Name2, Value2 Name3, Value3 … , ….
Name1, Value1 Name2, Value2 Name3, Value3 … , ….
Operator user WebUI
REST
SBTS
Nokia Service user
SSH Access s...
Local log repository
SSH
in case of memory expire
55
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
56
Slide 56
SBTS Nokia Service Account Management SR000906 • The SBTS provides Secure Shell Access for Nokia Service personnel for troubleshooting NetAct framework “NetAct Sec Tool”
• The default password for the BTS Nokia Service account “toor4nsn” and optional keys for Secure Shell access can be modified / set by operator on demand with WebUI and NetAct tool for security credential mass deployment • All local & remote logins to with the Nokia service account, activation and deactivation of R&D services and SSH sessions are logged into the user event log file • Configurable session login delay for SSH logins
Security credential mass configuration SBTS Operator user
Service Access config...
1 REST
Nokia Service user SSH Access s...
• Configurable session inactivity timer to close session automatically
RA23501EN162GLA0
NE3S Local BTS SSH account
2 SSH
56
“Configurator”
SBTS
Pwd, public keys
© Nokia Solutions and Networks 2016
57
Slide 57
SBTS Operator Account Management SR000900 • The SBTS supports the management of a local operator user
account and multiple remote operator users managed by the Centralized NE User Management (CNUM) in NetAct
• Preventions against attacks is applied by
NetAct framework WebUI
CNUM
• Session login delay and temporary account locking • Alarms in case a the number of consecutive failed logins reaches a threshold
LDAP query: user-id / pwd / lifetime?
• Local operator user credential can be modified via WebUI per SBTS and from NetAct for network wide mass deployments
Local BTS User Account
WebUI REST
Last login lifetime
SBTS CNUM user accounts Last logins
57
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
58
Slide 58
SBTS SRIO Local Link Layer Security SR000902 • For SBTS hardware supporting connection via serial Rapid I/O bus (sRIO) front cabling the SBTS supports ciphered communication
FSMF + FBBx extension module
• New plugged-in system modules or extension modules are
sRIO
authenticated by its Nokia Networks module certificate
• All traffic is between main and extension module is ciphered
sRIO
FBBx sRIO Front patch cable: Transmission secured by AES-128 ciphering
• X.509 NSN Vendor/module certificates are used for
authentication and AES-128 algorithm is applied for ciphering
sRIO
FSMF for capacity extension Nokia Networks Vendor/Module x.509 certificate
58
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
59
Slide 59
SBTS Security for Local Management Ports SR000907 • Access capabilities via physical local maintenance Ethernet ports are restricted.
• Packets received on local management port (LMP) are only sent to the OAM application/server
• Selective routing rules prevents from WebUI
• intercepting internal traffic on external ports
REST
LMP Eth
OAM
• using attacks like “address resolution protocol (ARP) poisoning” to reroute traffic via external ports and back to the legal recipient
• access to core network nodes by tunneling packets into existing secure links
59
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
60
Slide 60
SBTS Crypto Agent SR000908 • The Crypto Agent provides a personal secure environment to store security credentials like RSA keys and passwords.
SBTS Modules
• It provides its services via a common API to applications.
Applications
• Secrets never leave the crypto agent in unencrypted form
UNIX socket
• Private key operation service (en/decoding with private key) is performed within the Crypto Agent
• The secure file storage service will allow files to be stored
Crypto Agent
CRA Server
encrypted in the file system (for future use cases)
File System Key Storage
CRA Services
Encrypted fille
60
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
61
Slide 61
SBTS Trusted Boot SR000909 • The SBTS HW modules provide a secured bootstrap. Only integrity checked code is allowed to go into service • The Trusted Boot Agent verifies the digest of boot image, Linux and application SW with cryptographic techniques utilizing local credentials and trust anchors stored in a HW locked memory • Found integrity violation in
Trusted Boot Agent
Device keys
Written and sealed during manufacturing
SW integrity corrupted ? digests
• Boot loader -> activate fall-back Boot loader
digests
• Linux -> activate fall-back SW, if ok -> send alarm SBTS doesn’t go “onAir” • Application SW -> send alarm, SBTS doesn’t go “onAir”
Fall-back Boot loader
nok
RA23501EN162GLA0
ok
Linux Fall-back Linux Kernel
• In case of Boot loader or Linux back-up fails HW has to be sent back to repair
61
ok
Boot Loader
digests
nok
Application SW
Alarm
NetAct
nok
© Nokia Solutions and Networks 2016
62
Slide 62
SBTS Signed SW SR000913 • Source origin and integrity of SBTS SW is guaranteed by signing of the SW deliverables by the Nokia SW Signing Service • The integrity of SW builds is granted by individual SW certificates
Nokia SW production environment Nokia CA certificate
SW Build certificate
SW
• The SBTS SW Management checks the SW certificate validity and SW build integrity during SW download. • Once found ok the binary is handed over to the Trusted Boot Agent to apply local integrity protection and storage into passive file system.
Nokia SW Signing Service
SW Build Server
SBTS Integrity ?
Certificate?
SW
SW
62
RA23501EN162GLA0
SW Build certificate
Store SW in file system
© Nokia Solutions and Networks 2016
63
Slide 63
SRAN WebUI provides multiple user read session support Part of SR000713 • Centralized NE User Management (CNUM) privileges for BTS operator user accounts with “read-only” and “read/write” permissions
NetAct framework
• Up to 5 parallel sessions supported for WebUI
WebUI
• One user with full access permissions (read/write) is
CNUM
allowed to login at the time. Other users are allowed to login with ‘read-only’ permissions
• If one user with full access has already been logged in and another user logs in, access rights will be lowered automatically to ‘read-only’ mode.
User n : permission User 1 : permission
WebUI
LDAP query: user-id / pwd / permission? WebUI
WebUI
REST BTS
Read only user
63
RA23501EN162GLA0
Read/write user
© Nokia Solutions and Networks 2016
64
Slide 64
SBTS - Support of TLS 1.2 SR000899 • TLS is a secure communication method for protecting the confidentiality and integrity of m-plane communication protocols and file transfers (HTTPS, REST/TLS, WebUI/TLS, NE3S/TLS, LDAPs, Syslog/TLS)
• The SBTS supports TSL 1.2 • TLS 1.2 is offered as default protocol version, if the peer doesn’t support TLS 1.2 the communication falls back to TLS1.0
• Cipher suites out of the for TLS 1.1. and TLS 1.2 pool are supported • Cipher with Perfect Forward secrecy are supported. • RC4 ciphers and ciphers with NULL integrity protection are not supported
• Compliant to normative Annex E of TS 33.301
• Session time based key negotiation according to RFC 5746 governed by a configurable timer of 5 up 24 hours/86400 sec
64
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
65
Slide 65
SBTS SW License Management SR000794 • Feature’s usage is checked by OSS • Uses CLS (Centralized License Server) and it extends OSS SWAM (SW Asset Monitoring) NetAct tool by the new component SWEM (SW Entitlement Manager).
• SWEM is checking feature's usage within NetAct database and it is verifying by inter-working to CLS existing license capacity 1. Protected feature related event: A. Configuration change notification B. SBTS measures feature usage value 2. SWEM is notified of event 3. SWEM checks notified value 4. SWEM requests complement from CLS 5. CLS reply to SWEM based available ‘feature pool’ capacity: 6. SWEM actions based on CLS reply: A. If OK SWEM to SBTS: a. No action b. Max value is increased B. If denial SWEM to SBTS: a. Initiate ‘General limiting actions reducing overall traffic volume b. Sets feature capacity limitation into previous value
A. User / Actor Change SBTS configuration
SRAN SW License Key download
1 NetAct RC #
RA23501EN162GLA0
CM
PM CLS OoD/iSON pf.
4 5
SRAN BTS
6
2
Request
SWEM
Grant / Deny
SWEM = SW Entitlement Manager CLS = Centralized SW License Manager
65
SBTS 1 CM
2
3 6
B. SBTS measures feature usage value
SBTS 1 PM 1 SRAN BTS
© Nokia Solutions and Networks 2016
66
Slide 66
BTS and its Transport Parameter Categorization SR000832 • Feature helps user to filter essential parameters regarding to Flexi BTS and its transport for all radio technologies • Parameter categorization value of each Flexi BTS and Transport CM parameter is Basic or Advanced • Configuration Management parameter categories are common for GSM, WCDMA, LTE, SRAN and NetAct • Parameter categorization is automatically taken into use on CM templates and GUI views of NetAct CM Editor and NetAct Plan Editor.
Flexi BTS CM parameter category views on NetAct Basic CM Editor GUI: All, Basic, Advanced Advanced
• NetAct CM Editor and NetAct CM Plan Editor GUI (graphical user interface) allow to select if all parameters are shown or just basic, or advanced parameters from drop-down menu
66
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
67
Slide 67
Common Transport SR000954
shared transport function in SBTS with unified operability S1/X2
• Secured internal bus between modules if SBTS consists of multiple modules
Iub
Packet Abis
SBTS
IP Ethernet
Common Transport
• On Transport layer site appears as one IP host
• Focus on IP/ETH-based Transport modes
• Single Transport feature set • Flexible IP addressing, QoS and IPsec concepts
RAT 1 RAT 2 RAT 3
• Unified Transport Operability Full packet backhaul example
67
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
68
Slide 69
Network resiliency for mcBSC SR001057 *
Network resiliency for mcBSC – redundancy on network level • Network resiliency : GSM radio network controllers protected against exceptional environmental incidents • Service availability : Continued service availability for end users with protected GSM radio network • Switchover to Backup mcBSC is performed in case of a total failure in the Active mcBSC – Network Resiliency for mcBSC supports disaster recovery • mcBSC switchover is triggered by the operator but is otherwise automatic – operator has the final decision • Backup mcBSC can be located at different site than the Active mcBSC – Network resiliency for mcBSC supports geographical redundancy • One Backup mcBSC can support upto 16 Active mcBSCs – additional equipment needed for network level redundancy is minimised Dual homed BTS
* will be released post-C5, as late feature
69
RA23501EN162GLA0
Dual homed BTS
Backup mcBSC takes over the GSM service of the mcBSC out of service Dual homed BTSs are switched over from protected mcBSC to backup mcBSC
© Nokia Solutions and Networks 2016
RG301939 - mcBSC Pooling - Cluster Redundancy
69
Slide 71
71
RA23501EN162GLA0
© Nokia Solutions and Networks 2016
70