Sran Products And Architecture

Slide 1

NokiaEDU SRAN radio planning and dimensioning topics [SRAN16.2] RA2350-162-LTE

1

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

1

Slide 2

Copyright and confidentiality NOTE: THIS IS A HIDDEN SLIDE To make this hidden slide visible in Slide Shows, via the “Slide Show” tab, please de-activate “Hide Slide”. Hidden slides are not printed if you de-activate the “Print hidden slides” option (found via File > Print > Print all slides > Print hidden slides). The contents of this document are proprietary and confidential property of Nokia Solutions and Networks. This document is provided subject to confidentiality obligations of the applicable agreement(s). This document is intended for use of Nokia Solutions and Networks customers and collaborators only for the purpose for which this document is submitted by Nokia Solution and Networks. No part of this document may be reproduced or made available to the public or to any third party in any form or means without the prior written permission of Nokia Solutions and Networks. This document is to be used by properly trained professional personnel. Any use of the contents in this document is limited strictly to the use(s) specifically created in the applicable agreement(s) under which the document is submitted. The user of this document may voluntarily provide suggestions, comments or other feedback to Nokia Solutions and Networks in respect of the contents of this document ("Feedback"). Such Feedback may be used in Nokia Solutions and Networks products and related specifications or other documentation.

2

Accordingly, if the user of this document gives Nokia Solutions and Networks Feedback on the contents of this document, Nokia Solutions and Networks may freely use, disclose, reproduce, license, distribute and otherwise commercialize the feedback in any Nokia Solutions and Networks product, technology, service, specification or other documentation. Nokia Solutions and Networks operates a policy of ongoing development. Nokia Solutions and Networks reserves the right to make changes and improvements to any of the products and/or services described in this document or withdraw this document at any time without prior notice. The contents of this document are provided "as is". Except as required by applicable law, no warranties of any kind, either express or implied, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose, are made in relation to the accuracy, reliability or contents of this document. NOKIA SOLUTIONS AND NETWORKS SHALL NOT BE RESPONSIBLE

RA23501EN162GLA0

IN ANY EVENT FOR ERRORS IN THIS DOCUMENT or for any loss of data or income or any special, incidental, consequential, indirect or direct damages howsoever caused, that might arise from the use of this document or any contents of this document. This document and the product(s) it describes are protected by copyright according to the applicable laws.

Nokia is a registered trademark of Nokia Corporation. Other product and company names mentioned herein may be trademarks or trade names of their respective owners. © Nokia Solutions and Networks 2016

© Nokia Solutions and Networks 2016

2

Slide 3

Course Objectives • At the end of the course you will be able to:

- Describe key features of the SRAN products and architecture - perform baseband dimensioning in SRAN deployments - perform TX power dimensioning in SRAN deployments - assess SRAN deployments for Passive Intermodulation

3

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

3

Slide 4

RA2350-162 Course Content • Introduction to Nokia SRAN 16.2 - SRAN products and architecture - Nokia SRAN key features (16.2 release) - Appendix • Detail of selected ASW/BSW features (16.2 release)

• Impact of SRAN on TX Power - investigate given sBTS configurations for limitations in TX power

• Impact of SRAN on baseband dimensioning - explain how baseband dimensioning is affected by SRAN configurations

• Passive Intermodulation - explain when and how Passive Intermodulation can affect the sBTS receiver - detect PIM problems - list options to resolve PIM problems

4

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

4

Slide 5

Introduction to NOKIA SRAN 16.2

5

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

5

Slide 6

Section Objectives • At the end of this section you will be able to:

- Describe key features of the SRAN products and architecture

6

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

6

Slide 7

Section Content • Introduction to Nokia SRAN 16.2 - SRAN products and architecture - Nokia SRAN key features (16.2 release)

• Appendix

7

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

7

Slide 8

SRAN products and architecture What is SBTS?

- SRAN16.2 release introduce a new Single RAN BTS. - SBTS is a Flexi Multiradio 10 Base Station that has new operability and SW architecture that enables: 1. SBTS System Module Sharing with shared RF fibers 2. New OAM Architecture and SBTS common OAM 3. SBTS Common Transport - The system module type required is FSMF i.e. HW release 3 of System Module (FSMr3)

RF RF

RF GSM

WCDMA TRS

TRS backhaul 8

RA23501EN162GLA0

LTE

OAM

System Module

Netact

© Nokia Solutions and Networks 2016

8

Slide 9

SRAN products and architecture Nokia Single RAN is designed to meet the operator needs for Multiple RATs Supporting multiple Radio Access Technologies with common or shared functionalities GSM WCDMA LTE TD-LTE

HW sharing

Common Operability

Common Transport

Nokia SRAN : key elements Multiradio capable HW

RF

> BTS RF, BTS baseband, Controllers > Enabling flexibility in reconfigurations and resource utilization between RATs

Single RAN SW

> SRAN SW product incl. Single RAN features and RAT features

Value adding functionalities

> > > >

9

Features for improving the Single RAN network performance

Spectrum refarming RAN sharing between CSPs Traffic steering Services

RA23501EN162GLA0

RF

GSM

S B T S

RF

WCDMA

LTE

BTS baseband

TRS

GSM

WCDMA

OSS

Controllers

© Nokia Solutions and Networks 2016

9

Slide 10

SRAN products and architecture SRAN release is a new SW product including new SBTS software GSM - no change

SRAN – new product

SRAN **

Dedicated GSM EX / GF

WCDMA - no change

FDD-LTE - no change

TD-LTE - no change

Dedicated WCDMA

Dedicated FDD LTE

Dedicated TD LTE

SBTS

WBTS

FL

TL

WCDMA application

FDD LTE application

TD LTE application

GSM application WCDMA application

GSM application

FDD LTE application GSM BTS O&M

Common O&M

WCDMA BTS O&M

LTE BTS O&M

LTE BTS O&M

GSM transport

Common Transport

WCDMA Transport

LTE BTS Transport

LTE BTS Transport

BSC / mcBSC BSC3i (1000/200)

BSC/mcBSC*

BSC / mcBSC RNC / mcRNC RNC/mcRNC* RNC / mcRNC OMS

OMS*

OMS

LTE iOMS*

iOMS

*) RNC OMS, BSC/mcBSC / BSC3i (1000/2000)and RNC/mcRNC instances are re-used as such in SRAN without any change. LTE iOMS is not needed **) SRAN 16.2 targets feature parity with parallel RAT releases, i.e. GSM 16, WCDMA 16 and LTE-FDD 16

10

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

10

Slide 11

SRAN products and architecture SBTS brings a fundamental change to Flexi MR 10 BTS Software Architecture

RF

RF GSM BB TRS

OAM

WCDMA BB TRS

OAM

LTE BB TRS

RF

RF

RF

GSM

WCDMA

OAM TRS

TRS backhaul

GSM

OSS WCDMA

LTE

Site with traditional approach • RF Unit sharing • Dedicated System Modules for RATs • Dedicated RF fibers per RAT • Shared transport backhaul

11

RF

RA23501EN162GLA0

OAM

TRS backhaul

LTE System Module

OSS

Site with Single RAN solution New operability and SW architecture enables • Common BTS OAM • System Module sharing with shared RF fibers • Common Transport

© Nokia Solutions and Networks 2016

SBTS Site: • Flexi Multiradio 10 System Module • All RAT specific features • Additional SRAN features • Common Operability • Common Transport • System Module Sharing • RF Sharing SBTS Product includes Single RAN and RAT features, all packaged into a single SW delivery • Includes support for all RATs, but customer can select which RATs will be activated • Concurrent operational mode: multiple RATs simultaneously • Dedicated operational mode: single RAT mode for sites running one RAT

11

Slide 12

SRAN products and architecture SRAN 16.2 Highlights

12

New SBTS Software

Common BTS OAM

One base station for GSM, WCDMA and LTE radio technologies

Common handling in Netact, Simplified site creation, commissioning and config.

Based on Flexi Multiradio 10 Base Station System Module

Supporting single radio all radio- and TRS SW upgrades

Common backhaul IP transport

System module sharing

One IP host and interface

Extremely compact sites

One IP address and IP security

Lower energy consumption

No external IP transport boxes

Scalable capacity

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

12

Slide 13

SRAN products and architecture SRAN OAM architecture Support for enhanced pre-integration and off-line validation

NetAct

NE3S

Web UI

Web UI Element Management Tool

SBTS OAM

NetAct

NE3S

SBTS SBTS OAM

Architectural improvements • Common BTS OAM • Flat O&M architecture, no OMS • Decoupling of O&M and RAT SW • Web UI based common SBTS Element Manager • Adding supported BTS configurations without dependency to SBTS SW 13

RA23501EN162GLA0

LTE TRS

WCDMA

GSM

BTS Platform SW

BTS

© Nokia Solutions and Networks 2016

New in SRAN16.2: • Flat OAM architecture, SBTS directly integrated to NetAct, no OMS for SBTS • New common OAM for SBTS • One harmonized common OAM for SBTS • Totally new OAM features, no feature parity with existing single RAT BTSs • New SBTS information model • New root object representing SBTS. Logical RNW model is assumed to be reused, changes in HW and transport model • Web UI is replacing the current BTS Site Manager • Totally new OAM features, no feature parity with BTS Site Manager • No need to install Nokia dedicated tool • New approach to support different BTS configurations with BTS profiles

13

Slide 14

SRAN products and architecture SRAN comes with consolidated NetAct

Note: NetAct supports multi-RAT already

NetAct

NetAct

OSS

NetAct

NetAct OSS

LTE WCDMA

WCDMA GSM LTE

• NetAct setup with single RAT networks can be fragmented between RATs

GSM SRAN network

Including RNC and BSC

• SRAN network is operated with one NetAct per area

• Complete network view in management system 14

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

14

Slide 15

SRAN products and architecture Web UI for BTS element management

Web UI

• Web UI replaces BTS Site Manager for SBTS • Can be used both locally and remotely • Works with a standard Web browser

http

• No need to install additional SW on the client side • New tool with modern user interface and high usability

SBTS OAM

• One element manager for SBTS LTE

WCDMA

TRS

GSM

BTS Platform SW

SBTS 15

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

15

Slide 16

SRAN products and architecture Flexi Multiradio 10 BTS with SRAN Architecture support - Sharing modes WCDMA (or GSM or LTE)

Opt. PDU

Opt.TRS ext

WCDMA

in dedicated mode with SRAN architecture

WCDMA

WCDMA

Single-RAT Mode Flexi Multiradio 10 System Module Opt. PDU

Opt.TRS ext

Opt. PDU

Opt.TRS ext

GSM&WCDMA WCDMA

WCDMA

Opt. PDU

Opt.TRS ext

3 HU

GSM/WCDMA 2nd Flexi MR 10(opt)

GSM<E LTE

LTE

Opt. PDU

Opt.TRS ext

GSM/LTE

2-RAT Modes

2nd Flexi MR 10(opt)

WCDMA

FSMF FBBA/C

2nd Flexi MR 10(opt)

FBBA/C

Standard Flexi Multiradio 10*) System Module as basis • Multi-RAT capable plug-in units: GSM, WCDMA, LTE • System Module chaining with up to two Modules for higher capacity configurations • Can also be used in dedicated Modes with SRAN architecture

LTE

Opt. PDU

LTE

Opt.TRS ext

FSMF: GSM&WCDMA WCDMA

LTE

WCDMA/LTE

2nd Flexi MR 10(opt)

GSM/LTE/ WCDMA

3-RAT Mode

*) from Flexi Multiradio 10 version A.102 onwards

16

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

PDU - Power distribution unit FTIF - Optional Transport sub- module FSMF- High capacity GSM/WCDMA/LTE System Module FBBA - Optional high capacity WCDMA/LTE extension sub- module FBBC - Optional high capacity LTE extension sub- module SRAN16.2 allows “Shared mode”: GSM, WCDMA and LTE can run simultaneously on a single FSMF with one common backhaul connection. Also allows “Dedicated mode“: e.g. only GSM application runs on FSMF. TRS processing centrally on one FSMF even in case of chaining of system modules.

16

Slide 17

SRAN products and architecture Flexi Multiradio 10 BTS with SRAN Architecture support - Sharing of fiber WCDMA-GSM RF sharing 1xFXDB

• Sharing of fiber between technologies for improved connectivity • RF module/RRH support defined for separately for SBTS - 6 Gbps RF-modules primarily - all RATs supported, if band in question is applicable to RAT FSMF

• Note that picture on the right is example only. Obviously also combination with LTE is possible GSM&WCDMA

Shared fiber between technologies 6 Gbps OBSAI

17

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

17

Slide 18

SRAN products and architecture SBTS common transport - one unified backhaul GSM

TRS

WCDMA

TRS

LTE

TRS

SBTS Common Transport

shared

shared

IP / Ethernet

IP / Ethernet

Legacy Transport Multiple BTS require aggregation

18

RA23501EN162GLA0

GSM

LTE

WCDMA

Common Transport Single Transport Entity in SRAN BTS

© Nokia Solutions and Networks 2016

18

Slide 19

SRAN products and architecture SBTS common transport • shared transport function in SBTS with unified operability • On Transport layer site appears as one IP host • Focus on IP/ETH-based Transport modes

• Single SBTS Transport feature set covering all RATs

S1/X2

Iub

IP Ethernet Common Transport

• Flexible IP addressing, QoS and IPsec concepts • Unified Transport Operability • Transport modes supported in parallel - LTE:

SBTS

Packet Abis

RAT 1 RAT 2 RAT 3

S1/X2 over IP/Ethernet

- WCDMA: IP Iub over Ethernet - GSM:

19

Full packet backhaul example

Packet Abis over IP/Eth or Packet Abis over TDM RA23501EN162GLA0

© Nokia Solutions and Networks 2016

19

Slide 20

SRAN products and architecture SBTS - Transport Interfaces • FSMF provides the following Transport interfaces (without the optional Transport Sub-Module) - 1x 100/1000 Base-T Ethernet port - 1x optional optical (if not in use for RP3-01)

Optional Transport Sub-Module FTIF 2 x Combo Ethernet Ports:

8x E1/T1/JT1 (twisted pair):

• 2x 1000/100BaseT, or

4 x RJ48C-style ports with 2 x E1/T1/JT1 each

• 2x optional optical GE SFP, or • 1x 1000/100BaseT and 1 x optional optical GE SFP

• Optional FTIF required in case of - use of TDM interface for • Packet Abis over TDM or • synchronization propagation via PDH - use of optical ethernet - need for multiple ethernet ports - use of Synchronous Ethernet Synchronization Output using Synchronous Ethernet as input

20

RA23501EN162GLA0

1x optional optical SFP (GE), available for Transport only if not used for RP3-01

1x 100/1000Base-T Ethernet port, dedicated for Transport

© Nokia Solutions and Networks 2016

20

Slide 21

SRAN products and architecture SBTS - IP addresses, IP versions, IP Security • Flexible IP addressing concept - Applications can bind to interface IP addresses, virtual IP addresses or alias IP addresses - IP addresses can be shared or dedicated across RATs and/or planes - SBTS M-plane binds to one IP address - In one extreme a SBTS can be operated with a single IP address for U-/C-/M-/S-plane, in other extreme it can be operated for U- and C-plane IP addressing same as individual BTSs (except for M-plane which is always shared) Example

SRAN BTS U/C/S /M

21

SRAN BTS

SRAN BTS VLAN (optional)

RA23501EN162GLA0

U/C/S

VLAN (optional)

M

VLAN (optional)

U/C

VLAN (optional)

U/C

VLAN (optional)

U/C

VLAN (optional)

S

VLAN (optional)

M

VLAN (optional)

© Nokia Solutions and Networks 2016

Supported IP versions: • On level of the IP interface IPv4 / IPv6 Dual Stack is supported • Which applications can use IPv6 is subject to features per Radio Access Technology, e.g. there are no plans for IPv6 for Packet Abis or IuB while it will be released for S1/X1 interface • IPv6 capabilities of a SBTS will thus be same as IPv6 capabilities of the individual Radio Access Technologies IP Security: • The SBTS provides the flexibility to freely map individual traffic flows to any IPsec security association (SA). Thus IPsec SAs can e.g. be • dedicated to a certain Radio Access Technology • dedicated to a certain plane of a certain Radio Access Technology • shared between multiple Radio Access Technologies („Common IPsec Tunnel“) 21

• The SBTS may be connected • to one IPsec gateway handling all traffic • to different IPSec gateways, e.g. • one per Radio Access Technology or • one for Management Traffic and other one for production traffic

22

Slide 22

SRAN products and architecture SBTS - Transport Quality of Service • Flexible QoS concept • Two levels of scheduling/shaping are provided • 1st level queuing/scheduler/shaper “per policed or bandwidth limited connection in the transport network”

- Traffic flows can be freely allocated to 1st level schedulers allowing to prioritize, shape and limit flows or combination of flows according to the preference of the operator • 2nd level scheduler/shaper “per phys. interface” • Common BTS mapping table for DSCP  PHB and DSCP  p-bits

22

RA23501EN162GLA0

Example scenarios

© Nokia Solutions and Networks 2016

23

Slide 23

SRAN products and architecture SBTS - Transport Admission & Congestion Control • Radio Access Technology-specific legacy Admission and Congestion Control mechanisms remain applicable and operate independently in Single RAN BTS - WCDMA:

Connection Admission Control

- LTE:

Measurement Based Transport Admission Control

- GSM: Packet Abis Congestion Control under the assumption that each Radio Access Technology has its own static configured bandwidth for committed bitrate traffic and other measures • Existing dimensioning plans and rules can be reused as the RAT specific admission control and preemption mechanisms are reused

23

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

24

Slide 24

Course Content • Introduction to Nokia SRAN - SRAN products and architecture - Nokia SRAN key features (16.2 release)

• Appendix

24

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

25

Slide 25

Nokia SRAN key features SRAN 16.2 release Feature ID

Feature Name

Type

Operator Benefit

Site Solutions SR000601

Initial SBTS Configurations for ETSI market with 6Gbps OBSAI radio units Supported RF HW in SBTS SBTS System Module Sharing RTU

BSW

Lower OPEX

BSW ASW

SR000999 SR001067

SBTS configurations with 3G OBSAI radios Adding Low Power RRH (2Tx/2x 4.0 RRH-family) to SBTS-configurations *

BSW BSW

SR001226

SBTS profiles for Indian customer and FXEE PIM avoidance configurations Initial SBTS-configurations with 2x FSMF System Modules Initial SBTS configurations for China market

BSW

List of supported RF-HW for SBTS Common hardware, but using different technologies saves OPEX for customers and simplifies operational tasks. The customer needs fewer number of sites, which results in savings of site rental, energy savings and savings of antenna systems. Lower OPEX One sector Flexi Metro Remote RF Head is able to support 2TX MIMO with medium range output power (2 * 5 W) for hot spot dense urban capacity sites. It enables easy installation outdoors close to antennas or with an integrated antenna thus minimizing BTS site weight and complexity while providing high capacity with SBTS features Better performance due to PIM avoidance

BSW

Lower OPEX

BSW

Lower OPEX Element manager Web based application to manage BTS. No need to install any management application to computer Simplifies operations for customer by introduction one common object model for SBTS to simplify operations. Seamless planning and operations also in mixed network scenarios

SR000944 SR000972

SR001253 SR001268

Operability SR000713

SBTS Web UI

BSW

SR000726

SBTS Object Model

BSW

SR000794

SBTS SW License Management

BSW

SR000832

Flexi BTS and its Transport Parameter Categorization SBTS Operator Certificate Management

BSW

SR000845

25

RA23501EN162GLA0

ASW

Licensing is running smoothly in the background eliminating risk of BTS being unintentionally out of operation due to missing licenses Reduced OPEX by simplification of the plan file and limitation of the number of basic parameters to be managed via NetAct CM tools. The BTS Certificate Management improves the overall system security. It supports the automated, centralized and scalable key and certificate management for operator networks

© Nokia Solutions and Networks 2016

SBTS features five categories are listed next: BTS Site Solution Operability Performance Monitoring RAT Feature Parity Transmission and Transport In general all the SBTS features are legacy features i.e. new implementation of existing functionality. SRAN 16.2 customer feature list and SBTS feature parity list can be found from NOLS: “Single RAN, Rel. SRAN 16.2, Operating Documentation”

26

Slide 26

Nokia SRAN key features SRAN 16.2 release Feature ID

Feature Name

Type

Operator Benefit

Operability SR000846

SBTS Vendor Certificate Management

BSW

The provision of Nokia Vendor certificates allows the operator to set up a 3GPP compliant PKI solution

SR000899 SR000900 SR000902 SR000903

SRAN Support of TLS 1.2 SBTS Operator Account Management SBTS sRIO Link Layer Security SBTS User Event Logging

BSW ASW BSW ASW

Improved network security Improved network security Improved security of BTS site Enables customer to monitor details of configuration changes, enabling faster detection of misconfiguration thus limiting network problems/outages

SR000904 SR000906

SBTS DNS Support SBTS Nokia Service Account Management

BSW BSW

Provides the operator with the possibility to use of DNS Remote and local service access capability with defined access permissions controlled by operator

SR000907

SBTS Security for Local Management Ports

BSW

This feature prevents from vulnerabilities due to unauthorized access of intruders connecting to a BTS via local Management Ethernet ports

SR000908

SBTS Crypto Agent

BSW

Significantly enhanced security is achieved because of the provided personal secure environment protecting sensitive credentials and cryptographic services

SR000909

SBTS Trusted Boot

BSW

SR000910

SBTS Antenna Line Management

BSW

Significantly enhanced risk management is achieved because only integrity checked code is accepted for activation. Operator can optimize network performance using RET and MHA devices.

SR000911

SBTS HW Management

ASW

Operator can view and modify 3GPP compliant SBTS HW via WebUI and NetAct.

SR000912 SR000913

SBTS SW Management SBTS Signed SW

ASW BSW

One SW delivery for SBTS and it covers all three technologies Enhanced risk management is achieved because SW deliveries can't be faked or modified after leaving the Nokia SW production environment.

26

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

27

Slide 27

Nokia SRAN key features SRAN 16.2 release Feature ID

Feature Name

Type

Operator Benefit

Operability SR000920

SBTS Fault Management

BSW

SR000921

SBTS NE3S WS NetAct integration

BSW

SR000924

SBTS Intelligent shut down *

ASW

Optimized investment to one battery backup system on a high-capacity BTS. Separate backup systems for BTS and transmission are unnecessary - CAPEX saving.

SR000928

SBTS Plug and Play

ASW

Fast deployment of the new SBTS. The manual work required on the site will be minimized

SR000929

SBTS Configuration Management

BSW

Operator can manage SBTS as a single entity within the configuration management operations, ensures CM at SBTS level is consistent

SR000930

SBTS Configuration Validation

BSW

Enables operator to validate site configuration from both NetAct and Web UI level

SR000937

SBTS LTE Trace

ASW

Provides trace functionality for the LTE RAT in SRAN that is equivalent to the trace functionality in existing LTE networks, reducing complexity and OPEX

SR000938 SR000940

SBTS SW upgrade/update SBTS Diagnostics and Self Test

BSW BSW

SR000942 SR000959

SBTS Manual Commissioning and system setup SBTS Energy saving

BSW ASW

Enables possibility to implement new features to network. Key diagnostics functions and self testing makes it possible to identify HW failures in commissioning and troubleshooting Site commissioning and setup with the use of Web UI or NetAct Operator can use energy saving features with SBTS in dedicated radio and RF-Sharing mode

SR000989 SR000996

SBTS - Minimizing Drive Tests (MDT) SRAN Clock Time Management

ASW BSW

OPEX savings by minimizing the need for drive tests. Clock time distribution is vital mandatory for whole network.

27

RA23501EN162GLA0

Integrated trouble shooting over several network technologies will reduce OPEX at Operation Centers The SBTS NE3S integration provides a flat operation, administration and maintenance (OAM) architecture without unnecessary mediation devices

© Nokia Solutions and Networks 2016

28

Slide 28

Nokia SRAN key features SRAN 16.2 release Feature ID`

Feature Name

Type

Operator Benefit

Operability SR001000

SBTS RF Sharing RTU

ASW

One common sales item simplifies license management of RF sharing .

SR001004

SBTS Data User RTU

BSW

One common sales item simplifies license management for invoicing # data users.

SR001005

SBTS Channel bandwidth RTU

ASW

One common sales item simplifies license management for invoicing channel bandwidth.

SR001015

SBTS Incremental Power RTU

ASW

One common sales item simplifies license management of incremental output power handling.

SR001027 SR001057

SBTS PAoTDM for GSM dedicated mode with mcBSC SBTS inheritance of Network Resiliency for mcBSC *

BSW ASW

Possibility to utilize existing transport network in SRAN Introduces resiliency solution for mcBSC, minimized network impact of BSC outage

SR001185

SBTS Composer UI *

BSW

Guided manual commissioning wizard for site setup without ready made SCF

SR001244

SBTS PAoTDM for Flexi BSC with transport media converter

BSW

CAPEX savings because of re-use of TDM transport

BSW

Operator can have same RAT specific PM as earlier, and reuse existing competence and tools on BTS PM

Performance Monitoring SR000918

SBTS Basic Performance Management

RAT Feature Parity SR001007

SBTS feature parity in SRAN 16.2

BSW

Feature brings feature parity with dedicated technologies, and enables usage of same features in SBTS.

SR001052

Feature parity with FDD-LTE 16 newly developed features

BSW

SRAN customers get FDD-LTE 16 features available at the earliest possible time.

28

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

29

Slide 29

Nokia SRAN key features SRAN 16.2 release Feature ID

Feature Name

Type

Operator Benefit

Transport SR000176

ML-PPP termination

BSW

Enables migration to IPv4 based transport while utilizing existing TDM infrastructure. No need to immediately update the complete transport network to Ethernet

SR000344

Fast IP Rerouting

ASW

Enables to make use of redundant backhaul connections to improve availability

SR000350

Ethernet Termination

BSW

Basic feature needed with every Ethernet interface Key differentiators: Jumbo frame support (ready for IPv6 with IPv6 IPsec)

SR000356

IPsec for BTS

ASW

IPsec allows using transport networks which cannot be fully trusted

SR000357

Symmetrical E1 Interface

ASW

The support of standard E1 interfaces allows the connection of widely available TDM based infrastructure

SR000360

IP Transport Network Measurements

ASW

Brings OPEX savings as the operator is able to monitor the network conditions and can react quickly to potential service degradations

SR000361

Link Supervision with BFD

BSW

BFD allows tight monitoring of the transport connection

SR000365

Electrical 100/1000-Base-T Interface

ASW

The support of standard Ethernet interfaces allows the connection of widely available Ethernet based infrastructure

SR000366

BTS Firewall

BSW

Increased network element security providing more robust network operation.

SR000367

Small Form Factor Plugable Slot (SFP slot)

ASW

Flexibility with regards to the optical physical media selection

SR000368

1000Base-SX Optical GE Interface

BSW

Provision of a cost effective short-haul optical GE interface

SR000369

1000Base-LX Optical GE Interface

BSW

Provision of a cost effective medium-haul optical GE interface

SR000370

1000Base-ZX Optical GE Interface

BSW

Provision of a BTS integrated cost efficient long-haul optical GE interface

29

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

30

Slide 30

Nokia SRAN key features SRAN 16.2 release Feature ID

Feature Name

Type

Operator Benefit

Transport SR000371 SR000374

1000Base-BX Optical GE Interface BSW Timing over Packet with Frequency Sync ASW

Provision of a cost effective single fiber optical GE interface ToP solution allows the operator to take full advantage of packet based backhaul networks. It can be used for providing synchronization to the BTS. This brings CAPEX/OPEX savings.

SR000375

Synchronous Ethernet

ASW

Synchronous Ethernet is a solution to provide an accurate frequency reference for the BTS through a Packet Network. Can provide a high quality synchronization reference. Does not depend on the network conditions, unlike Timing over Packet.

SR000376

Synchronization from 2.048MHz signal

ASW

G.703 compliant 2.048MHz signal can be used to frequency synchronize the BTS

SR000377

Synchronization from PDH interface

BSW

Existing E1/T1/JT1 backhaul links can be used for base station frequency synchronization.

SR000382

Multiple VLAN interfaces

BSW

Ability to separate different traffic types to different VLAN interfaces.

SR000383

Timing over Packet with phase synchronization *

ASW

The Timing over Packet (ToP) with Phase Synchronization feature provides significant CAPEX/OPEX savings as GNSS receiver is not mandatory anymore to provide Phase and Time synchronization to BTS

SR000384

Timing over Packet Resilience

BSW

This feature provides the capability for geographical redundancy of the ToP Master equipment thus increasing the reliability of the synchronization

SR000385

Synchronization Hub

BSW

Collocated or chained BTSes can share single synchronization source, saving the CAPEX and OPEX of synchronization solution e.g. one GNSS receiver for multiple BTSs

SR000386

QoS Aware Ethernet Switching

BSW

CAPEX savings at the BTS site for providing Ethernet Switching functionality. Use cases: -- Ethernet traffic aggregation in collocation scenarios -- Chaining of BTS's

SR000395 SR000396

IPv4 based S1/X2 IPv4 based Iub

ASW ASW

Standards based backhaul solution for LTE S1 and X2 transport. OPEX and CAPEX savings in transport result from more cost efficient transport network for Iub traffic.

SR000397

IPv4 based Packet Abis Transport

ASW

OPEX and CAPEX savings in transport result from more cost efficient transport network for the GSM Abis interface.

30

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

31

Slide 31

Nokia SRAN key features SRAN 16.2 release Feature ID

Feature Name

Type

Operator Benefit

Transport SR000402

BTS QoS Support for Terminated and Routed BSW Traffic

QoS mechanism limits the possible traffic loss and maps the traffic to a suitable transport network QoS class. Accordingly the QoE for the end-users is improved.

SR000403

Source based routing in BTS

BSW

This feature increases the IP addressing flexibility by introducing a more sophisticated routing mechanism. The feature may obsolete the need for address re-planning and reconfiguration during network migration cases, such as Single RAN or multi-operator scenarios which require merging of multiple legacy networks operating on identical or overlapping IP subnets.

SR000439

IPSec Emergency Bypass

BSW

Feature allows limiting the network outage time in case of a severe IPsec cluster failure to a minimum

SR000465

Local and Remote IP Traffic Capturing

BSW

IP traffic capturing enabling multiple troubleshooting use cases for operator

SR000589

IPv4/IPv6 Transport Stack

BSW

This feature is the foundation for IP based Iub, IP based Packet Abis over IP/Ethernet, and IP based S1/X2 , which allow to make use of cost efficient and state of the art packet transport for mobile backhaul

SR000600

Backup IPsec Tunnel

ASW

Service continuation w/o BTS site visit after SEG site disaster, while in normal operation maximum security is applied, i.e. M-plane is protected by IPsec as well. By this retain customers, manage risks and differentiate in the market.

SR000770

LTE Dual U-plane IP addresses

BSW

Exceeding UL/DL 1 GE throughput on backhaul interfaces. IP networks with two separate transport paths can be supported end to end.

31

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

32

Slide 32

Course Content • Introduction to Nokia SRAN - SRAN products and architecture - Nokia SRAN key features (16.2 release)

• Appendix - selected ASW/BSW features (16.2 release)

32

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

33

Slide 33

SBTS Configuration Management SR000929 • Configuration management for SBTS supports • Configuration provisioning and activation

NetAct

• Robust SBTS configuration synchronization with NetAct • Warnings on service impacting operations

Configurator

SW repository

CM

BTS BTS Profile Profile

• Direct activation and delta configuration operations • Emergency plan provisioning • One Site Configuration File for the whole SBTS

• BTS internal details are automatically generated

SCF

• Generation is based on associated BTS HW profile • BTS HW profiles represent the supported SBTS configurations and are provided by Nokia

SBTS

• SBTS configuration management actions are supported both via NetAct and Web UI

33

RA23501EN162GLA0

SBTS WebUI

© Nokia Solutions and Networks 2016

34

Slide 34

SBTS CM Validation SR000930 • CM validation is supported both offline before the actual SBTS HW integration and online with the real SBTS • Validation is supported both with NetAct and WebUI • Off-line validation covers

NetAct SCF SCF

- Parameter range and consistency checks

Offline validation

Scalable parallel processing

- SCF validation against the BTS HW profile

• On-line validation covers in addition checks against the actual HW and radio constraints • Validation is distributed both NetAct internally, and towards the SBTSs in online validation for high performance

SBTS

SBTS

• The validation rules and coverage are SBTS specific Online validation, distributed

34

RA23501EN162GLA0

SBTS WebUI

© Nokia Solutions and Networks 2016

35

Slide 35

SBTS Information Model SR000726 • There is one information model for SBTS, containing all RNW, TNL, synchronization and HW aspects

PLMN SBTS

• SBTS is using logical RNW models compatible with the single RAT releases

RAT RNW RAT RATRNW RNW models models models

• For example LTE cell (LNCEL) configuration

• One common HW model for SBTS

Common HW model

• Transport network layer and synchronization configuration is SBTS specific

TNL and SYNC

Relation

• Note: SBTS internal details are automatically generated based on BTS HW profiles to simplify planning

MGMT

• TNL HW part is closely integrated with the HW model RNC

• MGMT provides the M-plane related configuration

WBTS

WCEL

BCF

BTS

BSC

35

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

36

Slide 36

SBTS NE3S WS NetAct Integration SR000921

• SBTS is integrated directly to NetAct with Nokia internal NE3S WS oam interface

NetAct

• There is one M-plane connection to NetAct regardless of the number of RATs running in SBTS

Applications Applications Applications

• NE3S is based on HTTPs and provides inbuilt efficiency and scalability for direct integrations

• NE3S is used for SBTS M-plane operations and oam data transfer • Specific oam data exchange with RNC and BSC over NBAP and Abis is supported for network functionality purposes

HTTPs NE3S SBTS M-plane SBTS

NBAP RNC

36

RA23501EN162GLA0

Abis BSC

© Nokia Solutions and Networks 2016

37

Slide 37

Web UI for BTS element management SR000713 • Web UI replaces BTS Site Manager for SBTS

Web UI

• Can be used both locally and remotely • Works with a standard Web browser • No need to install additional SW on the client side

http

• New tool with modern user interface and high usability • One element manager for SBTS

SBTS OAM

• Supports multiple user read sessions LTE

TRS

WCDMA

GSM

BTS Platform SW

SBTS

37

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

38

Slide 38

SBTS Plug and play SR000928 • Plug and Play is a part of Automated Site Creation • IP connection is established automatically to NetAct (Auto-connection) • Autoconnection Infrastructure is used • DHCP server • Security server • PnP server

• Auto-connection can be done without DHCP • Progress reporting provides Status indication in

BTSSM / Web-UI through the PnP process • Prepared configuration file includes all the radio technologies used by the SBTS and is installed while auto-configuration • After SBTS SW and configuration is installed, the SBTS starts to use NE3S interface for O&M

38

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

39

Slide 39

Manual commissioning and setup SR000942 • Ready made HW configurations template (BTS Profile) defined by Nokia • Ready made documentation for each BTS profile (cabling instruction) • Reduce content (need for planning) of SCF-file. • SCF-file done at NetAct or customer specific planning tool. • Guided manual commissioning without ready made SCF is optional feature. • All SCF parameter modifications can be done by using Web.

SBTS power up

Cancel Autoconnection SW Download & Activation SCF-file exist Full SCF Download SCF file BTS configuration generation & validation

Partial SCF, no SCF

BTS profile selection Fill missing parameter with Web UI or use Optional BTS SCF Composer UI

Configuration activation

39

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

40

Slide 40

SBTS Composer UI SR001185 * • Guided manual commissioning without ready made Site configuration File (SCF). • All SCF parameter modification can be done by using Composer UI

• Guided mode (like current BTS SiteManager) • Tool available directly from SBTS • No need to external tool to be updated at release upgrade

SBTS power up Cancel Autoconnection

SW Download & Activation SCF-file exist Full SCF Download SCF file

* will be released post-C5, as late feature

40

RA23501EN162GLA0

BTS configuration generation & validation Configuration activation

Partial SCF, no SCF

BTS profile selection Fill missing parameter with Web UI or use Optional BTS SCF Composer UI

© Nokia Solutions and Networks 2016

Roadmap style slide => this will be included in customer materials and roadmaps

41

Slide 41

SBTS SW Management SR000912 • One SW packet for SBTS. It includes all needed components: Site O&M, Node O&M, RAT SW, TRS SW, RF SW and Platform SW.

NetAct

• SBTS SW management actions are supported via NetAct and from WebUI.

SW Manager

• SBTS supports manual fallback to previous SW version, if problem on SW activation is noticed. • Simultaneous SW mgmt actions for all (multiple) SBTSs (sites) from NetAct.

NE3S

• NetAct support also scheduled SW management operations • Detailed SBTS SW configuration (build) information at site & NetAct • Monitoring the status of SW management operation

SBTS WebUI

FSMF

SBTS OAM

WCDMA

41

RA23501EN162GLA0

LTE

GSM

© Nokia Solutions and Networks 2016

42

Slide 42

SBTS SW Upgrade SR000938 • Feature will bring support for upgrading SBTS SW. SBTS can be upgraded as one operation. • SBTS will download only the SW components needed for current configuration and are changing. • Both upgrade & update (maintenance updates) are supported

• SBTS SW upgrade is supported via NetAct SW Manager and from SBTS WebUI.

• Whole SW upgrade workflow is supported: • Pre-check • SW download • SW activation • Post check

42

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

43

Slide 43

SBTS Performance Management SR000918 NBI

• SBTS related measurement data

Reporting Suite

• Existing RAT (LTE, WCDMA & GSM) measurements supported • New common transport measurements

NetAct

•Counter data is transferred to NetAct for storing and reporting • Data visible via • SBTS WebUI: latest measurements + short history • NetAct reporting tools: latest measurements + history

BSCP M file

RNC PM file

• Configurable measurement collection

RNC

SBTS PM file

• Counter data available also via NetAct NBI

BSC SBTS data via Abis

SBTS SBTS WebUI 43

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

44

Slide 44

SRAN Fault Management & recovery SR000920 • SRAN BTS alarms are visible in SRAN BTS and NetAct alarm repositories

NetAct

Alarms NWI3

• Note: SBTS alarms are not visible in RNC or RNC OMS level

WCDMA OMS NE3S

• SBTS alarms are visible also via SBTS WebUI

Alarms BTSOM

• RNC can reset the WCDMA SW of SRAN BTS as a recovery action

RNC

BSC

Alarms

Alarms

NBAP

SBTS WebUI

OMUSig

SRAN BTS Alarms LTE 44

RA23501EN162GLA0

WCDMA

GSM

© Nokia Solutions and Networks 2016

45

Slide 45

SBTS HW Management SR000911 NetAct

• HW management modeling as defined in 3GPP •

1. HW notification includes HW change information

3GPP 32.622 for managedElement and 32.692 for inventoryUnit

• HW management via NE3S (CM operations) •

Information of HW change is included in the notification (change, remove, add HW) and no extra upload is needed. One notification message can include several updates.

•

User can manually add, remove and modify passive HW via SBTS WebUI.

•

Inventory upload to NetAct. Upload includes all active SBTS HW units (detected by SBTS SW) and created passive HW units.

• SBTS HW inventory view is licensed in NetAct

User views

2. HW inventory upload to NetAct

SBTS

SBTS

Common HW Model

RAT Specific Model RAT Specific Model

managedElement

InventoryUnit 3GPP Inventory Model

45

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

46

Slide 46

SBTS LTE Trace SR000937

• This feature will bring two LTE trace functionalities SBTS: Subscriber and equipment trace & Cell trace.

NetAct Trace Viewer

• Subscriber and equipment trace:

Trace reports

- The subscriber and equipment trace supports the tracing for certain IMSI or IMEI and it provides detailed subscriber oriented information at call level for one or more specific mobile(s).

Security Gateway

(LTE163) : management based trace activation for subscriber and equipment trace

MME

S1AP: Signal based trace activation

Trace reports

• Cell trace: - With LTE Cell Trace all UEs in a target cell in connected state are traced simultaneously. The target cell will be defined by operator.

management based trace activation for cell trace

X2 SBTS WebUI

SBTS – LTE RAT

SBTS – LTE RAT

SBTS WebUI

configure cell, equipment and cell trace by WebUI

46

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

47

Slide 47

SRAN Clock time management SR000996 Time management in SRAN consist of 3 aspects 1. Clock time delivery in SRAN (in priority order for SBTS) - GPS for BTSs (when installed) - ToP(PTP / IEEE 1588v2) for BTSs - SNTP for NetAct, RNC, BSC, 2G BTS, 3G BTS, 4G BTS, OMS, SBTS 2. Clock time usage in O&M data in NEs and management elements - SBTS uses local time in all O&M interfaces for O&M data - NetAct and all other elements continues to use their local time 3. Clock time presentation - SBTS WebGUI uses PC local time - NetAct GUI and NBI uses NetAct local time for SBTS O&M data

NTP time distribution architecture can be freely configured. Picture presents one example.

Master clock

NTP I/F

NetAct

NetAct

NTP I/F

NTP I/F

OMS NTP I/F

mcBSC

mcRNC

NTP I/F

ABIS time setting

NTP I/F

GPS

NTP I/F GPS

GPS

SBTS 3G BTS

3G BTS

eNB

ToP (PTP) clock time source

47

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

48

Slide 48

SBTS Intelligent Shut Down SR000924 * • The feature optimizes the investment to one battery backup system on a high-capacity BTS, especially on sites that operate as important transmission hub nodes. With Intelligent ShutDown, separate backup systems for BTS and transmission are unnecessary. • The SBTS with battery backup system supports an intelligent BTS site power shutdown procedure in the event of an AC power failure. During the commissioning of each site, the operator can define different shutdown timers and priorities for the BTS sectors and carriers.

• Intelligent shutdown is activated from Power systems by activating one external alarm (EAC) lines to Flexi BTS.

* will be released post-C5, as late feature

48

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

49

Slide 49

SBTS - Minimizing Drive Tests (MDT) SR000989

• 3GPP standardized MDT provides the UE measurements for further analysis

• Measurements supported in WCDMA and LTE • MDT measurements are added in the Cell Trace

RNC Data Collector

and forwarded to upper level systems via L3 Data Collectors

• L3DCs are not mandatory if a limited amount of the UEs are monitored

SBTS (LTE+WCDMA)

Data Collector

Trace Viewer…

Traffica CLA Etc..

• MDT is used as a basis for Call Location Analysis

and other applications on top of the OSS systems

49

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

50

Slide 50

SBTS Energy Saving SR000959 • Significant OPEX savings by reducing power

GSM WCDMA LTE

consumption

• Power Amplifier (PA) has a functionality to automatically switch to stand-by mode in case when no radio resources are used in Single-RAT, dedicated Radios and RF Sharing mode

O A M

SBTS - Dedicated Radio Modules

• Radio module is not switched off but put to idle state

and can be powered up in seconds when there is a need to get back to normal state GSM WCDMA LTE

• Solution consist of co-existence of RAT specific Energy

Saving features: RG301936 (GSM), RAN955 (WCDMA) and LTE1103 (LTE)

50

RA23501EN162GLA0

O A M

SBTS – RF Shared Radio Modules

© Nokia Solutions and Networks 2016

51

Slide 51

SBTS16.2 Security Security Certificate management SR000845 - SBTS Operator Certificate Management SR000846 - SBTS Vendor Certificate Management SR000904 - SBTS DNS Support

User account management SR000900 - SBTS Operator Account Management SR000903 - SBTS User Event Logging SR000906 - SBTS Nokia Service Account Management Secure SBTS environment SR000902 - SBTS sRIO Local Link Layer Security SR000907 - SBTS Security for Local Management Ports SR000908 - SBTS Crypto Agent SR000909 - SBTS Trusted Boot SR000913 - SBTS Signed SW Secure OAM interfaces SR000713 - SRAN WebUI with multiple read session support SR000899 - SBTS Support of TLS 1.2

51

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

52

Slide 52

SBTS Operator Certificate Management SR000845 • The feature supports 3GPP (Rel11) compliant certificate life cycle management, including multi-layer hierarchical PKI architecture and cross certification with revocation list

• Chain of trust verified over multiple signing layers (up to 3 sub-ordinate layers), an RA as first CMP peer is supported

• Automated Certificate / Key update in case of certificate lifetime is to expire Network Operator

system by multiple trust anchor management for RAN Sharing

• Certificate revocation management: • SBTS global CRL activation/deactivation • CRL source for own PKI selectable to be taken from X.508

certificate or configurable CRL distribution point attributes (CRLDP), CRL source selectable

• Supports Primary & Secondary “PKI & CRL Server”

52

RA23501EN162GLA0

Signing Hierarchy

• The SBTS supports a second partner operator PKI

Root Cert CRL Sub-CA 1 Cert CRL Sub-CA 2 Cert

Sub-CA 3 Cert

RAN Sharing Operator

Root CA Certificate

Root CA Certificate

Root CA RAN Operator

CRL

Root CA RAN Sharing Operator

Subordinate RA / CA

CRL

Subordinate RA / CA

CRL

Entity Cert Root CA Certificate

SBTS

NetAct

other vendors NB/eNB

SeGW

SeGW 2nd Operator

© Nokia Solutions and Networks 2016

53

Slide 53

SBTS Vendor Certificate Management SR000846 • At the factory, strong cryptographic identity X.509 vendor certificates are installed to modules within a protected memory and files system

• During initial start-up of the SBTS HW modules the vendor certificate/module certificate with the associated RSA keys and the Factory CA and Nokia Root CA certificate ( Nokia Trust Chain) are provided to SBTS applications which need to make use of the vendor credentials as for • automated operator certificate enrollment acc. 3GGP (Rel11) • authentication of sRIO peers for Local Link Layer Security between modules

• authentication of Ethernet peers for MACsec between modules

Nokia Factories Nokia Root CA certificate

RA23501EN162GLA0

Certificate management

Factory CA certificate

sRIO Local Link Layer Security

Vendor certificate for module

MACsec

and backbone peers (in case of supported by HW)

53

SBTS

……

© Nokia Solutions and Networks 2016

54

Slide 54

SBTS DNS Support SR000904 • This feature provides support for DNS resolution for addresses given by a Full Qualified Domain Name (1) into the corresponding IP address.

• The DNS client queries (2) the DNS Server to resolve the FQDN, which returns the corresponding IP address (3) assigned to the repository (4). • Functionality is used as a part of the X.509 certificate validation to check if the certificate has been revoked. The BTS downloads the revocation lists from the revocation repository server

Name Server

DNS

2. FQDN

3. IP@

1. FQDN

4. IP packet

SBTS

Network Peer

Example: X.509 certificate revocation list URL

• Reverse lookup, e.g. solving the FQDN to a given IP address, is not supported

CRL Distribution point FQDN: URL=ldap//crldp.operator.net ldap//193.245.187.201

54

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

55

Slide 55

SBTS User Event Logging SR000903 • Logs entries for operator user events done with WebUI or via Nokia Service Account Secure Shell access are logged in granular details

NetAct framework

…..

Name1, Value1 Name2, Value2 Name3, Value3 … , ….

WebUI

• Configuration changes done by WebUI or SSH are logged

e.g. XML export

SLC central log repository

with details of

• Parameter name and value • Execution status

• The feature helps to identify the incorrect configurations faster thus limiting network problems or even network outages.

• SLC(Standalone Log Collector) collects the logs from SBTS periodically or upon request and forward the logs to Security information and event management (SIEM) for operator to audit.

• SBTS triggers SLC(Standalone Log Collector) to upload files

Name1, Value1 Name2, Value2 Name3, Value3 … , ….

Name1, Value1 Name2, Value2 Name3, Value3 … , ….

Operator user WebUI

REST

SBTS

Nokia Service user

SSH Access s...

Local log repository

SSH

in case of memory expire

55

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

56

Slide 56

SBTS Nokia Service Account Management SR000906 • The SBTS provides Secure Shell Access for Nokia Service personnel for troubleshooting NetAct framework “NetAct Sec Tool”

• The default password for the BTS Nokia Service account “toor4nsn” and optional keys for Secure Shell access can be modified / set by operator on demand with WebUI and NetAct tool for security credential mass deployment • All local & remote logins to with the Nokia service account, activation and deactivation of R&D services and SSH sessions are logged into the user event log file • Configurable session login delay for SSH logins

Security credential mass configuration SBTS Operator user

Service Access config...

1 REST

Nokia Service user SSH Access s...

• Configurable session inactivity timer to close session automatically

RA23501EN162GLA0

NE3S Local BTS SSH account

2 SSH

56

“Configurator”

SBTS

Pwd, public keys

© Nokia Solutions and Networks 2016

57

Slide 57

SBTS Operator Account Management SR000900 • The SBTS supports the management of a local operator user

account and multiple remote operator users managed by the Centralized NE User Management (CNUM) in NetAct

• Preventions against attacks is applied by

NetAct framework WebUI

CNUM

• Session login delay and temporary account locking • Alarms in case a the number of consecutive failed logins reaches a threshold

LDAP query: user-id / pwd / lifetime?

• Local operator user credential can be modified via WebUI per SBTS and from NetAct for network wide mass deployments

Local BTS User Account

WebUI REST

Last login lifetime

SBTS CNUM user accounts Last logins

57

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

58

Slide 58

SBTS SRIO Local Link Layer Security SR000902 • For SBTS hardware supporting connection via serial Rapid I/O bus (sRIO) front cabling the SBTS supports ciphered communication

FSMF + FBBx extension module

• New plugged-in system modules or extension modules are

sRIO

authenticated by its Nokia Networks module certificate

• All traffic is between main and extension module is ciphered

sRIO

FBBx sRIO Front patch cable: Transmission secured by AES-128 ciphering

• X.509 NSN Vendor/module certificates are used for

authentication and AES-128 algorithm is applied for ciphering

sRIO

FSMF for capacity extension Nokia Networks Vendor/Module x.509 certificate

58

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

59

Slide 59

SBTS Security for Local Management Ports SR000907 • Access capabilities via physical local maintenance Ethernet ports are restricted.

• Packets received on local management port (LMP) are only sent to the OAM application/server

• Selective routing rules prevents from WebUI

• intercepting internal traffic on external ports

REST

LMP Eth

OAM

• using attacks like “address resolution protocol (ARP) poisoning” to reroute traffic via external ports and back to the legal recipient

• access to core network nodes by tunneling packets into existing secure links

59

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

60

Slide 60

SBTS Crypto Agent SR000908 • The Crypto Agent provides a personal secure environment to store security credentials like RSA keys and passwords.

SBTS Modules

• It provides its services via a common API to applications.

Applications

• Secrets never leave the crypto agent in unencrypted form

UNIX socket

• Private key operation service (en/decoding with private key) is performed within the Crypto Agent

• The secure file storage service will allow files to be stored

Crypto Agent

CRA Server

encrypted in the file system (for future use cases)

File System Key Storage

CRA Services

Encrypted fille

60

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

61

Slide 61

SBTS Trusted Boot SR000909 • The SBTS HW modules provide a secured bootstrap. Only integrity checked code is allowed to go into service • The Trusted Boot Agent verifies the digest of boot image, Linux and application SW with cryptographic techniques utilizing local credentials and trust anchors stored in a HW locked memory • Found integrity violation in

Trusted Boot Agent

Device keys

Written and sealed during manufacturing

SW integrity corrupted ? digests

• Boot loader -> activate fall-back Boot loader

digests

• Linux -> activate fall-back SW, if ok -> send alarm SBTS doesn’t go “onAir” • Application SW -> send alarm, SBTS doesn’t go “onAir”

Fall-back Boot loader

nok

RA23501EN162GLA0

ok

Linux Fall-back Linux Kernel

• In case of Boot loader or Linux back-up fails HW has to be sent back to repair

61

ok

Boot Loader

digests

nok

Application SW

Alarm

NetAct

nok

© Nokia Solutions and Networks 2016

62

Slide 62

SBTS Signed SW SR000913 • Source origin and integrity of SBTS SW is guaranteed by signing of the SW deliverables by the Nokia SW Signing Service • The integrity of SW builds is granted by individual SW certificates

Nokia SW production environment Nokia CA certificate

SW Build certificate

SW

• The SBTS SW Management checks the SW certificate validity and SW build integrity during SW download. • Once found ok the binary is handed over to the Trusted Boot Agent to apply local integrity protection and storage into passive file system.

Nokia SW Signing Service

SW Build Server

SBTS Integrity ?

Certificate?

SW

SW

62

RA23501EN162GLA0

SW Build certificate

Store SW in file system

© Nokia Solutions and Networks 2016

63

Slide 63

SRAN WebUI provides multiple user read session support Part of SR000713 • Centralized NE User Management (CNUM) privileges for BTS operator user accounts with “read-only” and “read/write” permissions

NetAct framework

• Up to 5 parallel sessions supported for WebUI

WebUI

• One user with full access permissions (read/write) is

CNUM

allowed to login at the time. Other users are allowed to login with ‘read-only’ permissions

• If one user with full access has already been logged in and another user logs in, access rights will be lowered automatically to ‘read-only’ mode.

User n : permission User 1 : permission

WebUI

LDAP query: user-id / pwd / permission? WebUI

WebUI

REST BTS

Read only user

63

RA23501EN162GLA0

Read/write user

© Nokia Solutions and Networks 2016

64

Slide 64

SBTS - Support of TLS 1.2 SR000899 • TLS is a secure communication method for protecting the confidentiality and integrity of m-plane communication protocols and file transfers (HTTPS, REST/TLS, WebUI/TLS, NE3S/TLS, LDAPs, Syslog/TLS)

• The SBTS supports TSL 1.2 • TLS 1.2 is offered as default protocol version, if the peer doesn’t support TLS 1.2 the communication falls back to TLS1.0

• Cipher suites out of the for TLS 1.1. and TLS 1.2 pool are supported • Cipher with Perfect Forward secrecy are supported. • RC4 ciphers and ciphers with NULL integrity protection are not supported

• Compliant to normative Annex E of TS 33.301

• Session time based key negotiation according to RFC 5746 governed by a configurable timer of 5 up 24 hours/86400 sec

64

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

65

Slide 65

SBTS SW License Management SR000794 • Feature’s usage is checked by OSS • Uses CLS (Centralized License Server) and it extends OSS SWAM (SW Asset Monitoring) NetAct tool by the new component SWEM (SW Entitlement Manager).

• SWEM is checking feature's usage within NetAct database and it is verifying by inter-working to CLS existing license capacity 1. Protected feature related event: A. Configuration change notification B. SBTS measures feature usage value 2. SWEM is notified of event 3. SWEM checks notified value 4. SWEM requests complement from CLS 5. CLS reply to SWEM based available ‘feature pool’ capacity: 6. SWEM actions based on CLS reply: A. If OK  SWEM to SBTS: a. No action b. Max value is increased B. If denial  SWEM to SBTS: a. Initiate ‘General limiting actions reducing overall traffic volume b. Sets feature capacity limitation into previous value

A. User / Actor Change SBTS configuration

SRAN SW License Key download

1 NetAct RC #

RA23501EN162GLA0

CM

PM CLS OoD/iSON pf.

4 5

SRAN BTS

6

2

Request

SWEM

Grant / Deny

SWEM = SW Entitlement Manager CLS = Centralized SW License Manager

65

SBTS 1 CM

2

3 6

B. SBTS measures feature usage value

SBTS 1 PM 1 SRAN BTS

© Nokia Solutions and Networks 2016

66

Slide 66

BTS and its Transport Parameter Categorization SR000832 • Feature helps user to filter essential parameters regarding to Flexi BTS and its transport for all radio technologies • Parameter categorization value of each Flexi BTS and Transport CM parameter is Basic or Advanced • Configuration Management parameter categories are common for GSM, WCDMA, LTE, SRAN and NetAct • Parameter categorization is automatically taken into use on CM templates and GUI views of NetAct CM Editor and NetAct Plan Editor.

Flexi BTS CM parameter category views on NetAct Basic CM Editor GUI: All, Basic, Advanced Advanced

• NetAct CM Editor and NetAct CM Plan Editor GUI (graphical user interface) allow to select if all parameters are shown or just basic, or advanced parameters from drop-down menu

66

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

67

Slide 67

Common Transport SR000954

shared transport function in SBTS with unified operability S1/X2

• Secured internal bus between modules if SBTS consists of multiple modules

Iub

Packet Abis

SBTS

IP Ethernet

Common Transport

• On Transport layer site appears as one IP host

• Focus on IP/ETH-based Transport modes

• Single Transport feature set • Flexible IP addressing, QoS and IPsec concepts

RAT 1 RAT 2 RAT 3

• Unified Transport Operability Full packet backhaul example

67

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

68

Slide 69

Network resiliency for mcBSC SR001057 *

Network resiliency for mcBSC – redundancy on network level • Network resiliency : GSM radio network controllers protected against exceptional environmental incidents • Service availability : Continued service availability for end users with protected GSM radio network • Switchover to Backup mcBSC is performed in case of a total failure in the Active mcBSC – Network Resiliency for mcBSC supports disaster recovery • mcBSC switchover is triggered by the operator but is otherwise automatic – operator has the final decision • Backup mcBSC can be located at different site than the Active mcBSC – Network resiliency for mcBSC supports geographical redundancy • One Backup mcBSC can support upto 16 Active mcBSCs – additional equipment needed for network level redundancy is minimised Dual homed BTS

* will be released post-C5, as late feature

69

RA23501EN162GLA0

Dual homed BTS

Backup mcBSC takes over the GSM service of the mcBSC out of service Dual homed BTSs are switched over from protected mcBSC to backup mcBSC

© Nokia Solutions and Networks 2016

RG301939 - mcBSC Pooling - Cluster Redundancy

69

Slide 71

71

RA23501EN162GLA0

© Nokia Solutions and Networks 2016

70