Professional Documents
Culture Documents
Objectives
!Examine a DOCSIS system !Define the DOCSIS modes
! RF Return ! Telco Return
!Learn the DOCSIS Downstream and Upstream Parameters !Define the DOCSIS modem registration process
Satellite
Fiber Node
PC or MAC Television
DHCP Server
TOD Server
TFTP Server
Home Subscriber
4
TOD: Time of Day; TFTP: Trivial File Transfer Protocol; DHCP: Dynamic Host Configuration Protocol
" IP addresses can be reserved for specific clients or assigned from pools " clients may be authenticated based on their MAC address " address may be assigned from different pools based on extended options
DHCP Process
! The following parameters will be requested by the Cable Modem (CM) from the DHCP server
" IP address of the CM " IP address of the TFTP Server (for DOCSIS Configuration file) " IP address of the DHCP Relay Agent (if the DCHP server resides on a different network than the CM) " TFTP/DOCSIS Configuration file name " Subnet Mask to be used by the CM " Time offset of the CM from Universal Coordinated Time (UTC) " Default IP Gateway " Time of Day Server IP address " SYSLOG Server IP address
DHCP Server
! UDP port 69 ! Small and easy to implement ! Read and write to and from remote servers
TFTP Process
! The following settings MUST be included in the configuration file:
" Network Access Configuration Setting " Class of Service Configuration Setting
TFTP Server
10
11
! Synchronous Transmission
" " " " Clock Synch messages from head end (613 per second) One source per downstream Multiple sources per upstream requiring time sharing Cable Modems identified by 16 bit Service ID (SID)
12
! Shared time slots for Maintenance & Requests (e.g. for new modems with no SID to come online)
13
14
15
! Frequency Range
! 5 to 42 MHz (Edge to Edge)
! RF Performance requirements
! CNR -- Not less than 25 dB
17
HFC
MODEM
CMTS
19
QAM Signal
HFC
MODEM
CMTS
20
SYNC Message
HFC
MODEM
CMTS
21
MODEM
CMTS
22
Initial Ranging
!CMTS periodically transmits MAP messages !Upstream Bandwidth Allocation Map (MAP) includes:
! Initial Maintenance Interval (broadcast interval) with start and end of connection opportunity
MAP Message
HFC
MODEM
CMTS
RNG-REQ
23
Auto Adjustments
!CMTS receives initial Ranging Request from CM !CMTS responds with Ranging Response (unicast)
! assigns a SID and allocates bandwidth to this SID ! adjust power level, timing offset, and frequency adjustment ! Sets downstream and upstream channels
RNG-RSP
HFC
MODEM
CMTS
24
Admission Control
!CMTS allocates a Temporary SID for the CM and puts the CM in
the Forwarding Tables !CMTS sends MAP with Station Maintenance opportunity for that SID !CM ranges with new settings !CMTS sends RNG-RSP to indicate success or failure of Admission
MAP Message
HFC
MODEM
CMTS
RNG-REQ
25
Bandwidth Requests
! Uses special MAC frame (REQ - 6 bytes only) ! Can also piggyback request on data frame
! Uses a 4-byte Extended Header TLV
26
MAPS
!The upstream time is allocated to modems in the MAP
message
! MAP is variable length, typically 5-15 ms
27
MAP Example
28
IP Connectivity
!CM sends a broadcast DHCP request via the CMTS to the
DHCP Server !DHCP server returns:
! IP address and Subnet Mask ! CM configuration file name and IP address of TFTP server ! UTC time offset to establish local time ! TOD Server IP address
Server DHCP-REQ
LAN/WAN
HFC
MODEM
CMTS
DHCP-RSP
29
Time of Day
!CM sends a request to the ToD Server !ToD Server responds: GMT
Server ToD-REQ
LAN/WAN
HFC
MODEM
CMTS
ToD-RSP
30
Server TFTP-REQ
LAN/WAN
HFC
MODEM
CMTS
TFTP-RSP
31
Registration
!CM generates a Registration Request (REG-REQ) !Includes configuration parameters received from TFTP
configuration file:
! Downstream frequency, Upstream channel ID ! Network access configuration settings ! Class of Service ! Modem Capabilities ! Modem IP address
REG-REQ
HFC
MODEM
CMTS
32
Registration
!CMTS
! checks CMs MAC address and authentication signature on the parameters ! assigns a SID ! provides bandwidth for CM requested Class of Service ! modifies forwarding table to allow full user data if the modem requested Network Access ! sends REG-RSP to CM (CM can pass unencrypted data)
REG-RSP
HFC
MODEM
CMTS
33
Baseline Privacy
!Follows modem registration !Provides user data privacy by encrypting traffic flows,
upstream and downstream !Provides cable operators basic protection from theft of service !Mechanisms for:
! authentication: CM to CMTS and CMTS to CM ! key distribution: traffic keys and lifetimes ! data encryption applied to Sid's
34
Security Association
!If CM is configured for Baseline Privacy in the modem TFTP
configuration file:
! CM sends Authorization Request Public key, MAC address, and SIDs ! CMTS responds with an Authorization Response Authorization Key (encrypted KEK) Key Sequence number and Lifetimes List of SIDs (for each requested Class of Service)
AUTH-REQ
HFC
MODEM
CMTS
AUTH-RSP
35
Security Association
!CM requests Key Request for each SID !CMTS responds with DES encrypted TEK for each SID !CM can now pass encrypted data
KEY-REQ
HFC
MODEM
CMTS
TEK
36
DOCSIS Today
! DOCSIS 1.0 ! Product Interoperability across available CMTSs ! 64 and 256 QAM modulation (downstream) formats ! 6-MHz occupied spectrum coexists with all other signals on the cable plant ! Variable-depth interleaver supports both latency-sensitive and insensitive data. ! The features in the upstream direction are as follows:
Flexible and programmable CM under control of the CMTS Frequency agility Time division multiple access QPSK and 16 QAM modulation formats Support of both fixed-frame and variable-length PDU formats Multiple symbol rates Programmable Reed-Solomon block coding Programmable preambles
37
!Concatenation, PHS
! Efficient use of upstream channels
38
!OSS enhancements
! SNMPv3 ! Full set of standard events and messages are specified
39
40
! Can DOCSIS 1.0 and 1.1 Modems Used on the Same Upstream Channel?
! Yes. ! Managing 1.0 and 1.1 modems on the same upstream channel is a more complex task for the CMTS ! If QoS commitments cause conflicts, the CMTS can easily move a CM from one upstream channel to another
41
42
Quality of Service
E-mail Voice
HFC
HFC
file
CM
CM
In In DOCSIS DOCSIS 1.0, 1.0, all all services services compete compete for for upstream upstream bandwidth bandwidth on on a a best best effort effort basis. basis.
In In DOCSIS DOCSIS 1.1, 1.1, each each service service can can get get performance performance assurances assurances based based on on QoS QoS parameters parameters (e.g. (e.g. bandwidth, bandwidth, jitter) jitter)
43
Packet Processing
Classifier Data Packet Service Queues Upstream Scheduler
Classification
IP Protocol Source/Dest IP Address Source/Dest Port ToS Source/Dest MAC Address
Service Flow
Max burst size Req/Transmission policy Max traffic rate Min reserved traffic rate Upstream scheduling type Grant/poll jitter Grant/poll interval
Upstream Scheduling
Unsolicited Grant Service (UGS) UGS w/ Activity Detection Real-Time Polling Non-Real-Time Polling Best Effort
44
! Dynamic
! Created as needed, based on demand ! Dynamic service flow messages Dynamic Service Add (DSA) Dynamic Service Change (DSC) Dynamic Service Delete (DSD) ! Either CM or CMTS can create
45
!Admitted
! The resources are reserved, but the flow is not active
!Active
! The resources are in use, data is actively being transmitted on the flow
46
47
Fragmentation
48
Concatenation
! Transmission from single CM limited by the REQ/Grant
handshake
! Nominal latency for REQ/Grant sequence in idle network is ~2.5 msec, or ~400 Grants/sec for a single CM ! Operationally, ~150 grants/sec is typical ! Thus, transmission limited to ~150 bursts/sec
49
50
PHS Example
51
52
Strong Authentication
! DOCSIS 1.0 does not have a secure mechanism to authenticate the CM ! DOCSIS 1.1 adds strong authentication of the CM through the use of
X.509 digital certificates ! Each CM issued a unique digital certificate that is verified through the DOCSIS root certificate authority
53
54
CM Authorization
Auth Request (CM-ID, CM-Certificate, Security-Capability, primary SAID)
CM
CMTS
CM-ID : serial number, manufacturer ID, MAC addr, & RSA public key CM Certificate : X.509 certificate Security-Capability : crypto capability, BPI version Primary SAID : CMs primary SID Auth-Key : Authorization key encrypted with CMs public key Key-Lifetime : remaining time that key is valid in secs Key-Sequence-Number : Sequence number of Auth key SA-Descriptors : Properties of the security association, including SAID, SA-type, & cyrpto-suite
55
56
57
58
IGMP/SA-MAP Example
CPE
IGMP MR (Join)
CM
IGMP MR (Join)
CMTS
Key Req/Reply
Multicast Data
59
60
!Manufacturer !MSO
! Signs code file ! Send code file w/ CVC to MSO ! Verifies code file ! Optionally, adds MSO co-signature and MSO CVC to code file ! Send code file to CM on request ! ! ! ! Download code file Verify manufacturers signature Verify MSO signature, if present If verified, install code image
!Cable Modem
61
62
SNMPv3
! Enhances the SNMP v1/v2 framework to support:
! Privacy & authentication ! Authorization
63
SNMPv3 Architecture
64
65
References
! Specifications are publically available at
www.cablemodem.com/specifications.html ! IEEE Communications, March 2001, p. 202
! Good overview article, available as PDF file
! CableLabs training on 1.0 MAC (VGs) ! CableLabs training on 1.1 (VGs and video)
! Video is of a presentation of the VG
66
Return to Introduction
67