smec communication products overviews
TRANSCRIPT
Company Overview
About Us and What We Offer
SMEC has over 17 years of experience developing and deploying carrier-grade NGN and Wireless network solutions. Combining our technical expertise and along with our fully implemented and commercially referenced solutions with Tier 1 operators, we offer our global partners competitive solutions.
A global telecommunication systems vendor
17+ Years of R&D Experience in Telecom Systems
Over 200+ employees Strong R&D capabilities
Core Business offerings • Telco Mobile Security Solutions • Telco Wireless Data Offload Solutions • Telco TDM & NGN Gateway Solutions
10+ Years Partnership with Global Vendors
2011 Revenue ~$120M Tier 1 Global
Commercial References
2
Partners
4
Product Lineup
Table of contents Solutions Overview
3G/LTE security Solutions • Security Gateway
WiFi Offload Solutions • Trusted WLAN Access Gateway
• Evolved Packet Data Gateway
• Flow Mobility Gateway
LTE Offload Solutions • LTE Small Cell Gateway
• LTE Access Offload Gateway
Table of contents
Solutions Overview
Mobile Data Explosion: Need to Offload
Solutions for Mobile Network Issues
Mobile Data
Explosion
Need for Data
Offload
Deploy Small Cells with Backhaul over Broadband
Deploy eNodeB with Backhaul over Public
Internet
Data Offload over WiFi
Key Operator Concerns
Approach Solution
Flow Mobility
GW
Issues
Increased Signaling Load in LTE Core
Security Issue
HeNB GW
Security Issue
UE / Infrastructure Dependency
Need for Faster and
Flexible Coverage Extension
Gro
win
g CA
PEX
/OP
EX D
eclinin
g AR
PU
Increasin
g Load
on
LTE Co
re
Core Network Connectivity
LTE Offload
GW
3GPP SeGW
3GPP ePDG
TWAG
9
Mobile Data Security and Offload Solutions
Fig. Mobile Data Security and Offload Solutions Architecture
10
Acronym
• LOGW: LTE Offload Gateway
• TWAG: Trusted WLAN Access Gateway
• FMOG: Flow Mobility Gateway
Colored boxes
represent SMEC
solutions
Mobile Data Security and Offload Products
Application
• 3GPP standard Security Gateway solution
Security Gateway (SeGW)
• Offload for LTE solution
Security Integrated HeNB Gateway (HeNB GW) (with direct Internet offload)
LTE Offload Gateway (LOGW)
• Offload for WiFi solution
Trusted WLAN Access Gateway (TWAG) (with direct Internet offload)
evolved Packet Data Gateway (ePDG)
Flow Mobility Gateway (FMOG )
Platform • Common platform for all products
• 2 / 6 / 14 slots ATCA standard platform
• Active / Standby or N+1 redundancy for flexibility
11
Table of contents
3G/LTE Security Gateway (SeGW/SEG) Solution
SeGW/SEG Overview
Fig. SeGW implementation Example
Mobile Networks Must be Secure (Trusted)
SeGW must be deployed to ensure security and confidentiality when connecting to untrusted (unsecured) networks such as Public Internet
Dangers of Using Untrusted Networks to Standards-based Mobile Networks
• Man-in-the-Middle Attacks (Eavesdropping, Masquerading, Replaying Attack, etc.) • Network Infrastructure Exposure (need for topology hiding) • Leakage of personal information (need to encrypt signaling and bearer traffic)
13
Security Gateway Requirements
Key Operator Concerns
Small Cell Network
Deployment
Extending LTE RAN using Public Internet
Issues
Growing need to backhaul traffic over
Public Internet
Growing number of access points connected
over Public Internet
Performance and Capacity Scalability
Different security features as standards
evolved
Solution
SeGW offering high performance/capacity
Scalability and flexible licensing to minimize initial cost
Simultaneous IKEv1/v2 support
Extensive authentication support (PSK/EAP/Certificates)
14
SeGW/SEG Features
Key Features of SMEC Security Gateway
• High capacity and performance SeGW solution
• IKEv1 & 3DES supports for 3GPP Rel-8 and before
• IKEv2 & AES supports for 3GPP Rel-9 and later
• Multiple authentication & authorization : PSK / EAP with external AAA / Certificates
• Scalable system configuration : 2 / 6 / 14 slots
• Flexible redundancy scheme : Session Capacity / Throughput
Virtual Routing and LAG
IPsec and IKEv1, v2 Support
IPv6 Support CLI and GUI based system
management
Scalability with standard ATCA chassis
(2/6/14 slot)
Flexible Redundancy Schemes (1+1/N+1) 99.999% Availability
Hardware-based Packet Processing
Extensive 3GPP Encryption Algorithm Support
Extensive Client Authentication Method
Support
15
Table of contents
WiFi Offload Solutions
WiFi Offload Options
WiFi Offload Solution
18
Trusted WLAN Access Gateway (TWAG)
Evolved Packet Data Gateway (ePDG)
Flow Mobility Gateway (FMOG)
TWAG Overview
Support direct offload of Internet traffic and mobility
3GPP standard TWAG solution
Support PGW interworking for inter-RAT mobility
Support mobility between WiFi APs
Customize to operate with Service Provider WiFi user
authentication system
Built-in NAT for direct Internet offload
Support inter-radio (WiFi/LTE) mobility
Provide security in unsecured network
Interworking with LTE core network elements
Key Operator Concerns Issues Solution
Eliminate device dependency
Ensure confidentiality over last mile of
fixed/mobile network
Minimize LTE core load by offloading traffic
to WiFi network
Encourage subscribers to actively use WiFi
networks instead of LTE
19
Fig. Trusted WLAN Access Gateway Architecture
(*) The features in orange are required by 3GPP but not defined, so they need to be customized.
TWAG Features
Key features of SMEC TWAG (Trusted WLAN Access Gateway) Solution
• Support 3GPP standard TWAG functionality (IPsec, STa and S2a)
• Support diverse tunneling protocols enabling connection with existing WiFi Infrastructure
• Support RADIUS or Diameter customizing enabling connection with existing WiFi Infrastructure
• Direct Internet offload through built-in and external NAT
Scalability with standard ATCA chassis
(2/6/14 slot)
3GPP standard TWAG functionality
Virtual Routing and LAG / ECMP
Hierarchical QoS (5 Tuple)
Flexible Redundancy Schemes (1+1/N+1) 99.999% Availability
CLI and GUI based system management
EAP support to authenticate
WiFi users
WiFi AP Tunneling (IPsec / GRE / IPinIP)
3GPP standard IPsec and IKE support
Flow-based Internet offload
Customizing to interwork with existing
WiFi infrastructure
20
WiFi Offload Solution
21
Trusted WLAN Access Gateway (TWAG)
Evolved Packet Data Gateway (ePDG)
Flow Mobility Gateway (FMOG)
ePDG Overview
Fig. evolved Packet Data Gateway Architecture
Ensure confidentiality over last mile of
fixed/mobile network
Connectivity/ Seamless Mobility
Need to support inter-radio (WiFi/LTE/WiMAX)
mobility
IPsec/IKE session encryption between
UE and gateway
3GPP standard ePDG
ePDG interworking with LTE Core (P-GW) or WiMAX Core (HA)
Offload using existing WiFi infrastructure
Provide security in unsecured network
Need to interwork with LTE/WiMAX
core network elements
Key Operator Concerns Issues Solution
22
ePDG Features
Key Features of SMEC ePDG (Evolved Packet Data Gateway) Solution
• Support 3GPP Standard ePDG Features
• Support HA (Home Agent) interworking to interwork WiFi and WiMAX networks
• Capacity / Session scalability
• Scalable system configuration : 2 / 6 / 14 slots
Scalability with standard ATCA chassis
(2/6/14 slot)
Inter-WiFi mobility using MOBIKE
Virtual Routing and LAG / ECMP
Hierarchical QoS (5 Tuple)
Flexible Redundancy Schemes (1+1/N+1) 99.999% Availability
CLI and GUI based system management
AAA interworking using Diameter / RADIUS
Interworking with LTE P-GW
QoS enforcement for 3GPP PCC Network
Interworking with WiMAX HA
23
WiFi Offload Solution
24
Trusted WLAN Access Gateway (TWAG)
Evolved Packet Data Gateway (ePDG)
Flow Mobility Gateway (FMOG)
FMOG Overview
Fig. Flow Mobility Gateway Architecture
Maximize usage of pre-existing wireless
infrastructure (LTE/WiMAX/WiFi)
Increase service bandwidth by
aggregating traffic across multiple
radio technologies
Software enabling UE and OTT GW to flow traffic across multiple RATs
Support mobility between different radio technologies
Architect OTT GW behind Public Network to ensure
RAT independence
Distribute traffic flows across
multiple networks
Turn-key solution (Device software
and gateway)
Key Operator Concerns Issues Solution
25
Position Over-the-Top GW to interconnect with LTE, WiMAX, WiFi networks
OTT GW
FMOG Features
Key Features of SMEC FMOG (Flow Mobility Gateway) Solution
• Turn-key solution with device software and gateway
• Flow control across multiple access technologies (WiFi, LTE, WiMAX, etc.) controlled by gateway
• Customized to interwork with operator’s pre-existing AAA infrastructure
Scalability with standard ATCA chassis
(2/6/14 slot)
Flow-based tunneling to UE
Virtual Routing and LAG / ECMP
Hierarchical QoS (5 Tuple)
Flexible Redundancy Schemes (1+1/N+1) 99.999% Availability
CLI and GUI based system management
Customizing of Authentication &
Authorization
Flow control between multiple access points
UE management & IP allocation
Android-based Connection Manager and Tunneling Agent
26
Table of contents
LTE Offload Solutions
27
LTE Offload Solution
28
LTE Small Cell Gateway (HeNB-GW)
LTE Access Offload Gateway (LOGW)
HeNB-GW Overview
Fig. Home eNodeB Gateway Architecture
Provide security from HeNB to core network
over untrusted network
Aggregation to meet explosive growth in HeNB
Explosion in LTE paging and handover overhead
3GPP standard SeGW to provide security
3GPP standard HeNB GW for signaling and bearer
aggregation
HeMS (HeNB Management System)
Remote management and provisioning of thousands
of CPEs automatically
Key Operator Concerns Issues Solution
29
HeNB deployed in unsecure locations
(home, office, outside)
Tens of thousands of access sites in small area launched simultaneously
Mobility/Handover
between large numbers of access sites
Reduce macro eNodeB expenditure with
LTE hotspots (home, in-building)
HeNB-GW Features
Key Features of SMEC HeNB GW (Home eNodeB Gateway) Solution
• Integrated 3GPP SeGW functionality
• Signaling aggregation for MME offloading and bearer aggregation for S-GW offloading
• HeNB clustering (Virtualized eNodeB using HeNB Grouping)
• Direct internet offload of femto user traffic using built-in NAT and external NAT (optional)
Scalability with standard ATCA chassis
(2/6/14 slot)
S1 Signaling and Bearer Aggregation
HeNB Gateway
Virtual Routing and LAG / ECMP
Hierarchical QoS (5 Tuple)
Flexible Redundancy Schemes (1+1/N+1) 99.999% Availability
CLI and GUI based system management
HeNB Clustering (Virtualized eNodeB)
Paging optimization and X2 handover between
HeNB and eNodeB
Integrated 3GPP standard SeGW
Direct Internet Offload
Built-in and External NAT
30
LTE Offload Solution
31
LTE Small Cell Gateway (HeNB-GW)
LTE Access Offload Gateway (LOGW)
LOGW Overview
Fig. LTE Offload Gateway Architecture
Subscribers prefer to use LTE over WiFi Offload LTE traffic before
SAE Gateway (S/P-GW)
Offload solution with OFCS/OCS interworking
Direct Internet Offload
Built-in and External NAT
Steadily increasing cost of LTE core network
infrastructure
Steadily increasing cost of LTE backhaul
Seamless mobility of offloaded traffic is not
critical
Using dual radio shortens battery life
Limits of WiFi Offload Service (Coverage & QoE)
Most web traffic does not require seamless handover
to macro RAN
Key Operator Concerns Issues Solution
32
LTE Offload Solution – LOGW
Key Features of SMEC LOGW (LTE Access Offload Gateway) Solution
• Transparent Internet offload between eNB and SGW without disturbing existing LTE core
• Multiple Offload Policy (EPS type, Tracking Area, Bypass / Built-in NAT / External NAT)
• Monitoring and analysis of S1-AP signaling for offload & mobility support
Scalability *) (40 ~ 320Gbps)
Select between various offload policies
CLI and GUI based system management
Built-in and External NAT
Bandwidth Control for Offloaded traffic
Transparent Offloading
S1-MME & S1-U
Online/Offline Charging for Offloaded traffic
Inter-eNodeB Mobility Support
33
Integrated Bypass switch for transparency *)
*) Roadmap feature
Hairpin style integration with PBR support for S1-MME/S1-AP Bypass style integration with external/internal
Bypass switch for S1-MME/S1-AP
Copyright and Confidentiality
Copyright © 2013 SMEC Co., Ltd. SMEC reserves the right to make changes to the specifications of the
products detailed in this document at any time without notice and obligation to notify any person of such
changes. Information in this document is proprietary to SMEC. No information contained here may be
copied, translated, transcribed or duplicated in any form without the prior written consent of SMEC.