Reference Guide
Table Of Contents
- Apex Lifestyle Reference Guide
- Preface
- Chapter 1. Overview
- About this chapter
- Product overview
- Technical specifications
- Apex Lifestyle Small Cell features
- Hardware features
- General and network related features
- Plug and Play (PnP) connectivity
- GPS location and synchronization
- GPS antenna
- Data connectivity
- VoLTE
- Open and closed subscriber group
- Channel and bearer support
- Scheduler features
- Interference management
- Modulation and link adaptation
- MIMO and transmission modes
- Radio resource management
- Mobility and service continuity
- SON (Self Organizing Networks)
- TWAMP Protocol Support
- Security
- Management interface
- SON Support
- Plug and Play Support (PnP)
- Software installation
- Supported OM/KPIs
- Apex Lifestyle Small Cell alarms
- Chapter 2. Installation and Configuration
Apex Lifestyle Small Cell features
Apex Lifestyle Small Cell
Reference Guide
1-26
TWAMP Protocol Support
• Casa implementation complies with RFC 5357.
• Casa implementation only supports unauthenticated mode between the client and
server.
Security
The Apex Lifestyle Small Cell includes a distribution of IPSec software compatible
with carrier class SeGWs based in IPSec standards. It uses the tunnel mode with ESP
packets for establishing the secured connection between the Apex Lifestyle Small Cell
and the SeGW. All communication from the Apex Lifestyle Small Cell towards the
network is IPSEC encrypted. The Apex Lifestyle Small Cell will not come up "in
service" if IPsec tunnel is not established.
The Apex Lifestyle Small Cell includes an encrypted zone called Trusted
Environment (TrE), required to store certificates, keys and sensitive information. This
zone is configured through a 2048 bits RSA software certificate, which is a unique
device certificate, to be able to uniquely identify the node.
The following features are the most relevant security related features of the Apex
Lifestyle Small Cell:
General
• The Apex Lifestyle Small Cell is connected to the EPC via a Security Gateway
(SeGW).
• Support of SeGW: The Apex Lifestyle Small Cell mutual authentication using
certificates.
• The solution requires an IPSec tunnels for the backhaul of user traffic to EPC and
any communication with the AeMS.
• Software integrity validation is performed, previous to the set-up of the
connection to the SeGW and the EPC.
• All Non IPSec traffic is filtered at the Apex Lifestyle Small Cell.
• Trusted Environment (TrE): Encryption keys, authentication credentials, software,
logs, config and any user data are saved in Trusted Environment (TrE), and are
protected against not-authorized reading/writing