ITU-T J 191-2004 IP feature package to enhance cable modems《增强电缆调制解调器的IP特性包》.pdf

1、 INTERNATIONAL TELECOMMUNICATION UNION ITU-T J.191TELECOMMUNICATION STANDARDIZATION SECTOR OF ITU (03/2004) SERIES J: CABLE NETWORKS AND TRANSMISSION OF TELEVISION, SOUND PROGRAMME AND OTHER MULTIMEDIA SIGNALS Cable modems IP feature package to enhance cable modems ITU-T Recommendation J.191 ITU-T R

2、ec. J.191 (03/2004) i ITU-T Recommendation J.191 IP feature package to enhance cable modems Summary This Recommendation provides a set of IP-based features that may be added to a cable modem or incorporated into a stand-alone device, that will enable cable operators to provide an additional set of e

3、nhanced services to their customers including support for IPCablecom Quality of Service (QoS), enhanced security, additional management and provisioning features, and improved addressing and packet handling. Source ITU-T Recommendation J.191 was approved on 15 March 2004 by ITU-T Study Group 9 (2001

4、-2004) under the ITU-T Recommendation A.8 procedure. ii ITU-T Rec. J.191 (03/2004) FOREWORD The International Telecommunication Union (ITU) is the United Nations specialized agency in the field of telecommunications. The ITU Telecommunication Standardization Sector (ITU-T) is a permanent organ of IT

5、U. ITU-T is responsible for studying technical, operating and tariff questions and issuing Recommendations on them with a view to standardizing telecommunications on a worldwide basis. The World Telecommunication Standardization Assembly (WTSA), which meets every four years, establishes the topics f

6、or study by the ITU-T study groups which, in turn, produce Recommendations on these topics. The approval of ITU-T Recommendations is covered by the procedure laid down in WTSA Resolution 1. In some areas of information technology which fall within ITU-Ts purview, the necessary standards are prepared

7、 on a collaborative basis with ISO and IEC. NOTE In this Recommendation, the expression “Administration“ is used for conciseness to indicate both a telecommunication administration and a recognized operating agency. Compliance with this Recommendation is voluntary. However, the Recommendation may co

8、ntain certain mandatory provisions (to ensure e.g. interoperability or applicability) and compliance with the Recommendation is achieved when all of these mandatory provisions are met. The words “shall“ or some other obligatory language such as “must“ and the negative equivalents are used to express

9、 requirements. The use of such words does not suggest that compliance with the Recommendation is required of any party. INTELLECTUAL PROPERTY RIGHTS ITU draws attention to the possibility that the practice or implementation of this Recommendation may involve the use of a claimed Intellectual Propert

10、y Right. ITU takes no position concerning the evidence, validity or applicability of claimed Intellectual Property Rights, whether asserted by ITU members or others outside of the Recommendation development process. As of the date of approval of this Recommendation, ITU had not received notice of in

11、tellectual property, protected by patents, which may be required to implement this Recommendation. However, implementors are cautioned that this may not represent the latest information and are therefore strongly urged to consult the TSB patent database. ITU 2005 All rights reserved. No part of this

12、 publication may be reproduced, by any means whatsoever, without the prior written permission of ITU. ITU-T Rec. J.191 (03/2004) iii CONTENTS Page 1 Scope 1 2 References. 1 2.1 Normative references 1 2.2 Informative references 3 3 Terms and definitions . 3 4 Abbreviations, acronyms and conventions.

13、4 4.1 Abbreviations and acronyms 4 4.2 Conventions 6 5 Reference architecture 6 5.1 Logical reference architecture 7 5.2 IPCable2Home functional reference model . 10 5.3 IPCable2Home messaging interface model 13 5.4 IPCable2Home information reference model. 14 5.5 IPCable2Home operational models 17

14、5.6 IPCable2Home physical interfaces. 19 6 Management tools. 20 6.1 Introduction/overview 20 6.2 Management architecture . 20 6.3 The Cable Management Portal (CMP) . 22 6.4 The Cable Test Portal (CTP) 43 6.5 Event reporting . 48 7 Provisioning tools . 53 7.1 Introduction/overview 53 7.2 Cable DHCP p

15、ortal architecture. 55 7.3 Bulk portal services configuration architecture 74 7.4 Time of Day client architecture 86 8 Packet handling and address translation. 88 8.1 Introduction/Overview . 88 8.2 Architecture 88 8.3 CAP requirements 96 9 Name resolution 99 9.1 Introduction/overview 99 9.2 Architec

16、ture 99 9.3 Name resolution requirements 101 10 Quality of Service. 102 10.1 Introduction 102 10.2 QoS architecture . 102 iv ITU-T Rec. J.191 (03/2004) Page 10.3 Cable QoS messaging requirements. 104 11 Security. 105 11.1 Introduction/Overview . 105 11.2 Security architecture. 105 11.3 Requirements

17、110 12 Management processes . 153 12.1 Introduction/Overview . 153 12.2 Management Tool Processes 154 12.3 PS operation 156 12.4 MIB access . 159 13 Provisioning processes 164 13.1 Provisioning modes 165 13.2 Process for provisioning the PS for management: DHCP provisioning mode . 168 13.3 Process f

18、or provisioning the PS for Management: SNMP provisioning mode . 173 13.4 PS WAN-Data provisioning process 181 13.5 Provisioning process: DHCP client in the LAN-Trans realm 182 13.6 Provisioning process: DHCP client in the LAN-Pass realm 184 Annex A MIB objects . 186 Annex B Format and content for ev

19、ent, SYSLOG and SNMP trap . 199 B.1 Trap descriptions 210 Annex C Security threats and preventative measures. 211 C.1 Security threats . 211 C.2 Preventive measures . 211 Annex D Applications through CAT and firewall 212 Annex E MIBs 213 E.1 Portal Service (PS) MIB. 213 E.2 Cable Test Portal MIB 224

20、 E.3 Security MIB 232 E.4 Definition 236 E.5 Cable DHCP Portal (CDP) MIB. 238 E.6 Cable Address Portal 250 ITU-T Rec. J.191 (03/2004) 1 ITU-T Recommendation J.191 IP feature package to enhance cable modems 1 Scope This Recommendation provides a set of IP-based features that may be added to a cable m

21、odem or incorporated into a stand-alone device, that will enable cable operators to provide an additional set of enhanced services to their customers including support for IPCablecom Quality of Service (QoS), enhanced security, additional management and provisioning features, and improved addressing

22、 and packet handling. This Recommendation implements the IPCable2Home Domain defined in ITU-T Rec. J.190. 2 References The following ITU-T Recommendations and other references contain provisions which, through reference in this text, constitute provisions of this Recommendation. At the time of publi

23、cation, the editions indicated were valid. All Recommendations and other references are subject to revision; users of this Recommendation are therefore encouraged to investigate the possibility of applying the most recent edition of the Recommendations and other references listed below. A list of th

24、e currently valid ITU-T Recommendations is regularly published. The reference to a document within this Recommendation does not give it, as a stand-alone document, the status of a Recommendation. 2.1 Normative references ITU-T Recommendation J.112 Annex B (2004), Data-over-cable service interface sp

25、ecifications: Radio frequency interface specification. ITU-T Recommendation J.161 (2001), Audio codec requirements for the provision of bidirectional audio service over cable television networks using cable modems. ITU-T Recommendation J.163 (2004), Dynamic quality of service for the provision of re

26、al-time services over cable television networks using cable modems. ITU-T Recommendation J.170 (2002), IPCablecom security specification. ITU-T Recommendation X.509 (2000) | ISO/IEC 9594-8:2001, Information technology Open Systems Interconnection The Directory: Public-key and attribute certificate f

27、rameworks. ITU-T Recommendation X.690 (2002) | ISO/IEC 8825-1:2002, Information technology ASN.1 encoding rules: Specification of Basic Encoding Rules (BER), Canonical Encoding Rules (CER) and Distinguished Encoding Rules (DER). ISO/IEC 15802-3:1998 (ANSI/IEEE Std 802.1D), Information technology Tel

28、ecommunications and information exchange between systems Local and metropolitan area networks Common Specifications Part 3: Media access control (MAC) bridges. FIPS 140-2-2001, Security Requirements for Cryptographic Modules. FIPS 180-2-2002, Secure hash standard. FIPS 186-2-2000, Digital signature

29、standard (DSS). IETF RFC 768 (1980), User Datagram Protocol (UDP). IETF RFC 792 (1981), Internet Control Message Protocol, DARPA Internet Program, Protocol specification. IETF RFC 868 (1983), Time Protocol. 2 ITU-T Rec. J.191 (03/2004) IETF RFC 1034 (1987), Domain Names Concepts and Facilities. IETF

30、 RFC 1035 (1987), Domain Names Implementation and Specification. IETF RFC 1122 (1989), Requirements for Internet Hosts Communication layers. IETF RFC 1157 (1990), A Simple Network Management Protocol (SNMP). IETF RFC 1350 (1992), The TFTP Protocol (Revision 2). IETF RFC 1901 (1996), Introduction to

31、community-based SNMPv2. IETF RFC 2011 (1996), SNMPv2 Management Information Base for the Internet Protocol using SMIv2. IETF RFC 2013 (1996), SNMPv2 Management Information Base for the User Datagram Protocol using SMIv2. IETF RFC 2131 (1997), Dynamic Host Configuration Protocol. IETF RFC 2132 (1997)

32、, DHCP Options and BOOTP Vendor Extensions. IETF RFC 2233 (1997), The Interfaces Group MIB using SMIv2. IETF RFC 2236 (1997), Internet Group Management Protocol, Version 2. IETF RFC 2315 (1998), PKCS #7: Cryptographic Message Syntax Version 1.5. IETF RFC 2437 (1998), PKCS #1: RSA Cryptography Specif

33、ications Version 2.0. IETF RFC 2576 (2000), Coexistence between Version 1, Version 2, and Version 3 of the Internet-standard Network Management Framework. IETF RFC 2578 (1999), Structure of Management Information Version 2 (SMIv2). IETF RFC 2579 (1999), Textual Conventions for SMIv2. IETF RFC 2580 (

34、1999), Conformance Statements for SMIv2. IETF RFC 2669 (1999), DOCSIS Cable Device MIB Cable Device Management Information Base for DOCSIS compliant Cable Modems and Cable Modem Termination Systems. IETF RFC 2670 (1999), Radio Frequency (RF) Interface Management Information Base for MCNS/DOCSIS comp

35、liant RF interfaces. IETF RFC 2786 (2000), Diffie-Helman USM Key Management Information Base and Textual Convention. IETF RFC 2863 (2000), The Interfaces Group MIB. IETF RFC 3022 (2001), Traditional IP Network Address Translator (Traditional NAT). IETF RFC 3280 (2002), Internet X.509 Public Key Infr

36、astructure Certificate and Certificate Revocation List (CRL) Profile. IETF RFC 3291 (2002), Textual Conventions for Internet Network Addresses. IETF RFC 3396 (2002), Encoding Long Options in the Dynamic Host Configuration Protocol (DHCPv4). IETF RFC 3412 (2002), Message Processing and Dispatching fo

37、r the Simple Network Management Protocol (SNMP). IETF RFC 3413 (2002), Simple Network Management Protocol (SNMP) applications. IETF RFC 3414 (2002), User-based Security Model (USM) for version 3 of the Simple Network Management Protocol (SNMPv3). ITU-T Rec. J.191 (03/2004) 3 IETF RFC 3415 (2002), Vi

38、ew-based Access Control Model (VACM) for the Simple Network Management Protocol (SNMP). IETF RFC 3416 (2002), Version 2 of the Protocol Operations for Simple Network Management Protocol (SNMP). IETF RFC 3417 (2002), Transport Mappings for the Simple Network Management Protocol (SNMP). IETF RFC 3418

39、(2002), Management Information Base (MIB) for the Simple Network Management Protocol (SNMP). 2.2 Informative references ITU-T Recommendation J.190 (2002), Architecture of MediaHomeNet that supports cable based services. IETF RFC 347 (1972), Echo Process. IETF RFC 1949 (1996), Scalable Multicast Key

40、Distribution. IETF RFC 2663 (1999), IP Network Address Translator (NAT) Terminology and Considerations. IETF RFC 2979 (2000), Behavior of and Requirements for Internet Firewalls. IETF RFC 3235 (2002), Network Address Translator (NAT) Friendly Application Design Guidelines. draft-ietf-ipcdn-bpiplus-m

41、ib-12 INTERNET DRAFT DOCSIS Baseline Privacy Plus MIB Management Information Base for DOCSIS Cable Modems and Cable Modem Termination Systems for Baseline Privacy Plus, October 2003. ICSA, Inc.: Firewall Buyers Guide, 1998, . 3 Terms and definitions This Recommendation defines the following terms: 3

42、.1 Cable Security Portal (CSP): A functional element that provides security management and translation functions between the HFC and the Home. 3.2 Call Management Server (CMS): IPCablecom Controls the audio connections. Also called a Call Agent in MGCP/SGCP terminology. 3.3 dynamic Quality of Servic

43、e (DQoS): IPCablecom Assigned on the fly for each communication depending on the QoS requested. 3.4 Embedded Multimedia Terminal Adapter (E-MTA): IPCablecom A single node that contains both an MTA and a cable modem. 3.5 IP enhanced cable modem: A cable modem that has been enhanced by the addition of

44、 the IP features of this Recommendation. 3.6 Portal Service (PS): A functional element that provides management and translation functions between the HFC and Home. 3.7 LAN IP device: A LAN IP Device is representative of a typical IP device expected to reside in the home, and that contains a TCP/IP s

45、tack as well as a DHCP client. 3.8 pass-through: A sub-function of the CAP, the Pass-through function bridges packets on the WAN-Data side of the CAP to the LAN-Pass side unchanged. 4 ITU-T Rec. J.191 (03/2004) 3.9 Stand-alone Multimedia Terminal Adapter (S-MTA): A single node that contains an MTA a

46、nd a non-DOCSIS MAC (e.g., Ethernet). 4 Abbreviations, acronyms and conventions 4.1 Abbreviations and acronyms This Recommendation uses the following abbreviations: ASP Application-Specific Proxy CA Certificate Authority CAP Cable Address Portal CAT Cable Address Translation CDC Cable DHCP Client CD

47、P Cable DHCP Portal CM Cable Modem CMP Cable Management Portal CMS Call Management Server CMTS Cable Modem Termination System C-NAPT Cable Network Address and Portal Translation C-NAT Cable Network Address Translation CNP Cable Naming Portal CQoS Cable Quality of Service CQP Cable QoS Portal CRL Cer

48、tificate Revocation List CSP Cable Security Portal CTP Cable Testing Portal CVC Code Verification Certificate CVS Code Verification Signature CxP Cable PS Sub-function DER Distinguished Encoding Rules DHCP Dynamic Host Configuration Protocol DNS Domain Name System DOCSIS Data-Over-Cable Service Inte

49、rface Specification DQoS Dynamic Quality of Service (IPCablecom) E-MTA Embedded Multimedia Terminal Adapter FTP File Transfer Protocol FW Firewall GMT Greenwich Mean Time HEX Hexadecimal ITU-T Rec. J.191 (03/2004) 5 HFC Hybrid Fibre Coax ICMP Internet Control Message Protocol IGMP Internet Group Management Protocol IP Internet Protocol KDC Key Distribution Centre LAN-Pass Pass-through LAN address LAN-Trans Translated LAN addre