Reference Guide
Table Of Contents
- Apex Lifestyle Reference Guide
- Preface
- Chapter 1. Overview
- About this chapter
- Product overview
- Technical specifications
- Apex Lifestyle Small Cell features
- Hardware features
- General and network related features
- Plug and Play (PnP) connectivity
- GPS location and synchronization
- GPS antenna
- Data connectivity
- VoLTE
- Open and closed subscriber group
- Channel and bearer support
- Scheduler features
- Interference management
- Modulation and link adaptation
- MIMO and transmission modes
- Radio resource management
- Mobility and service continuity
- SON (Self Organizing Networks)
- TWAMP Protocol Support
- Security
- Management interface
- SON Support
- Plug and Play Support (PnP)
- Software installation
- Supported OM/KPIs
- Apex Lifestyle Small Cell alarms
- Chapter 2. Installation and Configuration
Apex Lifestyle Small Cell features
Reference Guide
Reference Guide
1-27
• The TrE is based on a trusted root that cannot be removed. It is based on hardware
registers and an encrypted Flash partition, defined as TrustZone which is not
accessible from the operating system. It is accessible through a set of functions
that do not disclose the content of this memory, only enabling the use of the stored
information. It is built through a secure boot process executed every time the
Apex Lifestyle Small Cell is switched on or a hard-reset is performed.
On Air
Supports Snow3G, AES, ZUC Encryption algorithms to comply with 3GPP Uu
requirement for LTE.
Towards EPC
• Supports IKEv2
• Roaming support using IKEv2 MOBIKE
• Support of IKEv2 Multiple Authentication Exchanges
• Support of Elliptic curve DH groups and ECDSA certificates
• Supported Encryption Algorithms: 3DES, AES128, AES192, AES256
• Integrity Algorithms: MD5, SHA1, SHA256, SHA384, SHA512, AES_XCBC,
AES_CMAC
• Diffie Hellman Groups (1, 2, 5, 14, 15, 16, 17, 18)
• Support of IPSec peer authentication with public key infrastructure (PKI) and
Pre-Shared Key (PSK)
• Support of secondary endpoint authentications with Extensible Authentication
Protocol (EAP)
• Support of Mutual Authentication using X509 certificates with RSA keys. The
credentials and critical functions for device authentication are protected inside the
TrE
• Supports disabling IPsec, CMP and DHCP
• A Fully Qualified Domain Name (FQDN) formatted identifier shall be used for
certificate based authentication of the Apex Lifestyle Small Cell and of the SeGW.
• Support OCSP (Online Certificate Status Protocol) and CRLs (Certificate
Revocation List) for Certificate Validation Management