Documente Academic
Documente Profesional
Documente Cultură
Lectures overview
June 14th
– Wi-Fi deployments
Self Organizing Networks – Standardization environment
– Wi-Fi system architecture
©Max Riegel, 2018 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 2
About my person
Max Riegel
<maximilian.riegel@nokia.com>
Dipl.-Ing. (TU)
Nokia Bell Labs - IEEE Standardization
• Job positions
– prior to 1998
• Various positions regarding HW and SW development at PKI and TPS
– 1998 - 2007
WLAN IEEE 802.11 • Responsible for IETF and IEEE Standardization at Siemens Communications
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 3 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 4
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 5 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 6
1
2018-12-22
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 7 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 8
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 9 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 10
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 11 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 12
2
2018-12-22
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 13 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 14
Terminal Access Network Control Services Access Network Control and IP connectivity
• Network advertisement • Subscription management
• Pre-association signaling • Terminal provisioning
Internet
• Authentication, authorization and • Authentication, authorization and
accounting client accounting server
Wireless communication networks supporting dynamic attachment of terminals are
usually structured into • L2 session establishment • IP address management
• Terminal – w/ QoS and Policy Enforcement • IP connectivity establishment to
– Communication endpoint towards the consumer and subscriber of communication services
• L2 mobility management inside Internet and services
• Access Network
– Distributed infrastructure for aggregation of multiple network access interfaces into a common access networks • Policy & QoS management server
interface
• Traffic forwarding to core based (policy decision)
• Control and IP connectivity
– Infrastructure for control and management of network access and end-to-end IP connectivity on L2 addresses • Mobility Anchor
• Services • Roaming support to other cores
– Infrastructure for providing services over IP connectivity
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 15 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 16
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 17 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 18
3
2018-12-22
P802.1CF: Specification of IEEE 802 access network ‘Stage 2’ Definition by ITU-T I.130/Q.65
• P802.1CF provides an access network model for IEEE 802: The Stage 2 defines The Stage 2 provides
• a functional model using functional • a single functional specification which can be applied
‘External’ requirements from the entities, in a number of different physical realizations,
service/deployment perspective • the functional entity actions needed, • a precise definition of functional capabilities and their
? • information flow or API calls between possible distribution in the network to support the
functional entities required network capabilities,
Develop a logical/functional model
• recommendations for the allocation of • a detailed description of what functions, information
for evaluation of those requirements;
functional entities to physical flows and API calls will be provided, but not how they
locations for a few examples. are to be implemented,
Available IEEE 802 specifications • requirements for protocol capabilities as input to
of protocols and attributes. Stage 3 of the method.
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 19 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 20
• The portion of the access infrastructure in scope of IEEE 802 was defined
according to the protocol layer architecture of the data path
Application Application
Transport Transport
Physical Phy Phy Phy Phy Phy Phy Physical Physical Physical
Medium Medium Medium Medium Medium
• IEEE 802 access network describes the layer 2 network between terminal
and access router implemented through IEEE 802 technologies.
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 21 WLAN as a service for IoT ©Max Riegel, 2018 2018-06-13 22
Network Reference Model basics IEEE 802 Access Network Reference Model
• The NRM denotes the functional entities and their relation to • Comprehensive NRM shows highest level of details
each others
Subscription
NMS Service
R2 R11 R4 R12
4
2018-12-22
The life-cycle of an IEEE 802 session Generic operational roles of IEEE 802 access network
User Access Network Operator Service Provider
Coordination Subscription
Network
and Service
Management
Information
System
Service
R2 R10 R11 R4 R12
AN Ctrl
TE Ctrl AR Ctrl
R8 R9
R5 R7 Access
Terminal
Router
Interface NA Backhaul Interface
R1 R6 R3
Terminal Access Network Access Router
IP Provider
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 27 WLAN as a service for IoT ©Max Riegel, 2018 2018-06-13 28
•
– Fault diagnostics and maintenance
Information model
WLAN ACCESS TO THE INTERNET
NetworkOAM
• Annex: 1+ Session
– Information model notation 1 ANConfig
– SDN abstraction
1 NetManagement
– Network Function Virtualization
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 29 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 30
5
2018-12-22
WLAN is used in the fixed networks for Internet access WLAN Access protocol architecture for the Internet
GSM/WCDMA/LTE
Access Network Internet
WLAN
LAN
2G/3G 4G
xDSL FTTH Cable
Leased
Line
Mobile Core
Firefox apache
HTTP HTTP
CSP Backbone TCP TCP
IP
ip IP IP
ip
802.2
ppp 802.2 802.2 802.2 802.2
ppp
802.11 802.11 802.3 802.3 802.3 802.3
Internet
IEEE802.11
Station Access Point Access Router WebService
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 31 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 32
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 33 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 34
2
802.3 802.11 802.15 802.16 802.22 with 1 to 20 Mbps
CSMA/CD Wireless Wireless Wireless Wireless
... LAN ... PAN MAN ... RAN •IEEE 802.11 started in 1990
"Ethernet„ Local Personal Metropolitan Regional
Area Area Area Area
– Initially aimed for linking cash
Standards environment LAN WLAN WPAN WMAN WRAN registers!
1 Physical
– Challenging regulatory!
IEEE 802.11 STANDARDIZATION •Further MAC and PHY groups
added, e.g. 802.15, 802.16
Specifies only Physical and Link Layer. •Unifying themes
– common upper interface to the
Complete set of standards for carrying IP Data Link Control
– common data framing
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 35 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 36
6
2018-12-22
2000-06
2002-06
2004-06
2006-06
2008-06
2010-06
2012-06
• IEEE "Sponsor Ballot“
– same as above, but with open group IEEE 802.11-2007 Wireless LAN Medium Access Control (MAC) and Physical Layer (PHY) Specifications Jun 2007
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 37 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 38
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 39 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 40
IEEE 802.11 standards evolution (from 09/2016 …) IEEE 802.11 standards evolution (.. to 03/2017)
The working group concurrently operates in different standardization phases The working group concurrently operates in different standardization phases
802.11ai
MAC FILS 802.11ae MAC
Prio Mgt Frames
Wake-up 802.11ba
WNG 802.11ax
WNG LiFi TIG WUR 802.11ax
radio 802.11af
802.11 ah 802.11ah
S1G TVWS S1G
802.11ay 802.11ay
60Gng PHY 802.11ac 60Gng PHY
VHT 5GHz
802.11aj 802.11aj
11ad_cn 802.11ad 11ad_cn
VHT 60 GHz
Discussion Study Project without WG Sponsor Published Published Discussion Study Project without WG Sponsor Published Published
Topics group approved draft Letter Ballot Ballot Amendment Standard Topics group approved draft Letter Ballot Ballot Amendment Standard
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 41 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 42
7
2018-12-22
IEEE 802.11 standards evolution (.. to 05/2018) IEEE802.11 (Wi-Fi) radio standards evolution
Allowable Approximate Approximate
The working group concurrently operates in different standardization phases Std Release
Freq. Bandwidth Data rate per stream
MIMO Modulation indoor range outdoor range
(GHz) (MHz) (Mbit/s)
streams (m) (m)
Jun 1997 2.4 20 1, 2 1 DSSS 40 150
802.11-2020 a Sep 1999 5 20** 6, 9, 12, 18, 24, 36, 48, 54 1 OFDM 40 150
TGmd 802.11
802.11 b Sep 1999 2.4 20 5.5, 11 1 DSSS 40 150
802.11ak - 2016
802.11az GLK - 2016 OFDM
POSng g Jun 2003 2.4 20 6, 9, 12, 18, 24, 36, 48, 54 1 40 150
NGV SG (DSSS)
802.11aq
MAC PAD 2.4 60 200
n Oct 2009 20/40 up to 72.2/150 4 OFDM
BCS SG 5 40 150
802.11ai
802.11bb FILS y Nov 2008 3.7 5/10/20 up to 13.5/27/54 1 OFDM - 5 000
WNG LC 802.11ax
HEW 802.11ah
FD TIG ac Dec 2013 5 20/40/ 80/160 up to 87/200/433/867 8 OFDM 40 150
802.11ba 802.11ay S1G
WUR 60Gng 802.11aj ad Oct 2012 60 2000 up to 6 700 1 SC/OFDM line of sight -
ER TIG 11ad_cn
af Dec 2013 TV WS 1,2,4x 6/7/8 up to 1,2,4x 26.7/26.7/35.5 4 OFDM 100 1000
PHY
ah Dec 2016 <1 1/2/4/8/16 0.15 … up to 4.4/9/20/43/87 4 OFDM 100 1000
20/40/
ax ~ 2020* 1...6 tbd (~ 1.3 Gbps) 8 OFDMA ~ 80 ~ 300
80/160
Discussion Study Project without WG Sponsor Published Published
Topics group approved draft Letter Ballot Ballot Amendment Standard ay ~ 2020* 60 up to 6 GHz > 25 Gbps tbd tbd line of sight
* Preliminary information; specifications still in early phases of development.
** Half-clocked and quarter clocked variants available for 10 MHz and 5 MHz channel bandwidth, as used by IEEE 802.11p
IEEE 802.11y-2008 is only licensed in the United States by the FCC; licensed spectrum allows for higher TX power
Company Confidential ©Max Riegel, 2018 WLAN as a service for IoT ©Max Riegel, 2018 2018-06-13 44
To overcome interoperability
issues experienced with early
IEEE 802.11 products, the Members by Segment Members by Regions
Wireless Ethernet (June 2013) (June 2013)
Wi-Fi Alliance
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 47 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 48
8
2018-12-22
The Wi-Fi Alliance Approach to Certification The Wi-Fi Alliance Certification Process
Wi-Fi CERTIFIED Compatibility Certified equipment has been tested for connectivity with other
Interoperability Rigorous test cases are used to ensure
certified equipment. It involves tests with multiple devices from
products have to that products from different equipment
vendors can interoperate in a wide variety different equipment vendors and ensures that devices purchased
demonstrate that today will work with Wi-Fi CERTIFIED devices already owned or
of configurations.
they can perform purchased in the future.
well in networks Backward Backward compatibility protects
Conformance The equipment conforms to specific critical elements of the
with other Compatibility investments in legacy Wi-Fi products and
enables users to gradually upgrade and IEEE802.11 standard. Conformance testing usually involves
Wi-Fi CERTIFIED standalone analysis of individual products and establishes
expand their networks.
products, running whether the equipment responds to inputs as expected and
Keeping up with
common Innovation Timely introduction of new certification
mobile broadband specified.
Keeping up with
mobile broadband
technology as the latest technology and
programs
applications, in technology
specifications come into the marketplace. Performance The equipment meets the performance levels required to meet
situations similar to Equipment vendor can differentiate in end-user expectations in support of key applications.
those encountered areas that are not covered by certification Performance tests verify that the product meets the minimum
in everyday use. testing. performance requirements for a good user experience. Specific
performance tests results are not released by the Wi-Fi Alliance.
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 49 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 50
Documentation of a Wi-Fi CERTIFIED Product The base Wi-Fi Alliance certification programs
Program Description Remarks
IEEE 802.11a Wi-Fi products based on IEEE radio standards - 802.11a, Required by CTIA for Wi-
IEEE 802.11b 802.11b, 802.11g in single, dual mode (802.11b and 802.11g) or Fi enabled handsets
IEEE 802.11g multi-band (2.4GHz and 5GHz) products. seeking CTIA certification
EAP (Extensible An authentication mechanism used to validate the identity of Includes mandatory
Authentication Protocol) network devices (for enterprise devices) support for EAP-SIM
Wi-Fi CERTIFIED n Based on the IEEE 802.11n ratified standard. Includes also Wi-Fi
Multimedia (WMM) testing
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 51 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 52
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 53 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 54
9
2018-12-22
IEEE802.11 Configurations
• Independent
– one “Basic Service Set”, BSS STA-AH1
– direct communication
– limited coverage area STA-AH3
• Infrastructure
– Access Points and Stations DISTRIBUTION SYSTEM
Self Organizing
©Max Riegel, 2018 Networks
2018-06-14
SS2018 55 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 56
(WLAN)
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 57 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 58
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 59 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 60
10
2018-12-22
EAP Authentication •
and master key delivery to AP
Key establishment SECURITY EVOLUTION
– Four-way handshake for pair-wise keys
– Additional groups keys for broadcasts
Key Establishment • Secure data transfer
– Secure data transfer over controlled port starts once
encryption keys are established
Secure Data Transfer
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 63 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 64
• IEEE 802.11-1997 provided shared key authentication based on WEP privacy Key sizes 40bit or 104bit 40bit or 104bit 128bit (encryption) 128bit (encryption and
(encryption) (encryption) 64bit (integrity integrity protection)
mechanism protection)
– RC4 algorithm with 40 bit secret key Per-packet key Created through Derived from EAP Created through TKIP Not needed; temporal
• WEP was completely insufficient concatenation of WEP authentication mixing function key is sufficiently
key and 24bit IV secure
– WEP unsecure at any key length
Integrity protection Enciphered CRC-32 Enciphered CRC-32 Michael message CCM
– No user authentication integrity check (MIC)
– No mutual authentication with countermeasures
– Missing key management protocol Header protection None None Src and Dest Src and Dest
addresses protected by addresses protected by
• IEEE 802.11i-2004 fixed weak security by “Robust Security Network” (RSN) MIC CCM
– Transitional solution w/ TKIP for fixing bugs in existing hardware Replay protection None None Enforce IV sequencing Enforce IV sequencing
– Conclusive solution w/ CCMP (AES) for new hardware
Authentication Open system or shared EAP method with IEEE PSK or EAP method PSK or EAP method
• Also known by WFA terms WPA (TKIP) and WPA2 (CCMP) key 802.1X with IEEE 802.1X with IEEE 802.1X
• WPA2 supported by all Wi-Fi hardware since about 2005 Key distribution Manual IEEE 802.1X manual or IEEE 802.1X manual or IEEE 802.1X
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 65 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 66
11
2018-12-22
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 67 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 68
EAP Identity Response Access Request Extensible Derive Pairwise Master Key Use PSK as Pairwise Master Key
EAP Request Access Challenge Authentication
EAP Response Access Request
Protocol • Establish temporal keys by executing 4-way key management algorithm for pairwise keys and
EAP Success Access Accept
group key management for broadcast keys
Master-Key distribution
Key Management
Authorization • Protect the data link by operation of ciphering and message authentication with keys generated
Data Encryption above.
IP-Configuration (DHCP)
• If Protected Management Frame (PMF) is enabled, the temporal keys and pairwise cipher suite is
used for protection of individually addressed robust management frames
IP User Data Transfer
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 69 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 70
12
2018-12-22
• At the end of discovery STA knows Probe Response + RSN IE (AP supports
– SSID of the network CCMP Mcast, CCMP Ucast, 802.1X Auth)
– Authentication and cipher suites of the network 802.11 Open System Auth
– The preferred choice of authentication and cipher suites 802.11 Open Auth (success)
• STA selects authentication suite and unicast cipher suite in Association Req + RSN IE (STA
Association Request requests CCMP Mcast, CCMP Ucast,
802.1X Auth)
– STA and AP have an established Ethernet link
Association Response (success)
– STA and AP are ready to authenticate by 802.1X
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 73 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 74
Port Port
Unauthorized Unauthorized
802.1X AUTHENTICATION • Deploys Port Authentication Entity (PAE) with uncontrolled port and controlled port.
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 75 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 76
13
2018-12-22
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 79 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 80
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 81 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 82
PSK Authentication
STA AP
14
2018-12-22
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 85 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 86
Install TK Install TK
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 87 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 88
15
2018-12-22
EAP/EAP-Method
Robust Security Network
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 93 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 94
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 95 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 96
16
2018-12-22
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 97 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 98
• Solution: caching in the wireless network part of the key derived from
IEEE 802.11 Security the server
– Reasonable number of future connections based on the cached key.
FAST TRANSITION
• FT protocols are part of the re-association service
– Only apply to STA transitions between APs within the same mobility domain
within the same ESS.
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 99 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 100
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 101 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 102
17
2018-12-22
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 103 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 104
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 105 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 106
Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 107 Self Organizing Networks SS2018 (WLAN) ©Max Riegel, 2018 2018-06-14 108
18
2018-12-22
19