Contents
Drivers Evolution of I-WLAN Integration of Non-3GPP IP access technology with EPC BBAI HS 2.0/Wi-Fi CERTIFIED Passpoint SAMOG & Rel-12 Conclusion
Drivers
Requirements
those we will face
Connectivity will be the performance bottleneck and differentiator in the world of cloud services on mobile devices. Within 10 years, we predict to see:
X10
devices
X100
Service offerings
X1000
capacity
Capacity
Data and voice volume capacity to serve all subscribers
Always on
Signaling capacity everywhere
Network architecture
Leverage proven macro functionality Advanced radio coordination Network integrated carrier grade Wi-Fi
Iub/S1/X2
mRBS
pRBS
Iub/S1/X2
Internet grade
pRBS
Wi-Fi
CTRL
Main Unit
mRRU
RRU
Macro RBS
RRU
Evolution of I-WLAN
Wf
Wa
Wd
Wo
Roaming architecture
W-APN, Local IP & Remote IP
Wu
Dw Wx
/ D' r' G
Wp
W f
OCS
Wz
Wi
Roaming reference model - 3GPP PS based services provided via the 3GPP Home Network, TS23.234
Considering legacy 3GPP system and I-WLAN architecture, DSMIPv6 was selected as a mobility protocol
3GPP AAA Server WLAN Access Network
Wn Wx
HSS
WAG
Wp
PDG/ AR
H3
H2
Ww
Wu H1
UE
Uu/Um
HA
HGi
External PDN
H3
GERAN/UTRAN
Iu_ps/Gb
SGSN
Gn
GGSN/ AR
In TS23.402 4.3.1.2., Trusted and Untrusted Non-3GPP access network are described as followings:
Trusted and Untrusted Non-3GPP Access Network are IP access networks that use access technology whose specification is out of the scope of 3GPP. Whether a Non-3GPP IP access network is Trusted or Untrusted is not a characteristics of the access network In non-roaming scenario it is the HPLMN's operator decision if a Non-3GPP IP access network is used as Trusted or Untrusted Non-3GPP Access Network. In roaming scenario, the HSS/3GPP AAA Server in HPLMN makes the final decision of whether a Non-3GPP IP access network is used as Trusted or Untrusted non3GPP Access Network. The HSS/3GPP AAA Server may take the VPLMN's policy and capability returned from the 3GPP AAA Proxy or roaming agreement into account.
LMA (P-GW)
2.PBU (MN-ID,MAG1,Reg) 5.PBA (MN-ID,HNP) 6.Bi-directional tunnel
GGSN P-GW
2.Create Session Request (MN-ID,S-GW)
HA (P-GW)
Signaling DSMIPv6 bootstrapping Security IKEv2 Auth Home network @ Binding update Binding update Acknowledge Finding HA Pre-loaded DNS look-up Acquire/Configure CoA
6.GTP tunnel
MAG (S-GW)
1.Router solicitation (MN-ID) 7.Router Advertisement1.L3 Trigger (MN-ID, HNP) (MN-ID)
SGSN S-GW
Able to utilize all EPS MM protocol e.g. PMIPv6, DSMIPv6 and GTP
PDN #1 3GPP Access
SGW
APN #1 APN #2
Non-3GPP Access
PGW
ePDG
PDN #2
IP Flow mobility
Support more flexible and ramified traffic flow handling than MAPCON Enables establishment of multiple IP flows with same APN over multiple accesses Support different access network connection although the same APN is used (the same PDN) The base granularity for mobility and offloading is IP flow e.g. 5 tuple, not PDN connectivity level Currently based on only DSMIPv6 (RFC5555) and complementary, specified in TS 23.261
3GPP Access
SGW
IP flow #1
PGW
Non-3GPP Access
ePDG
HA
IP Flow mobility
Simplicity of network support mobility increases burdens of each end node
P-GW (Home agent)/ UE (Mobile node)
UE ePDG/IPSEC IP ePDG EUTRAN PDNGW HSS/ AAA PCRF
HA
1: (HoA1, CoA1, BID1,x) 2: (HoA2, CoA2, BID2,y) 3: 1: (HoA1, CoA1, BID1,x) 2: (HoA2, CoA2, BID2,y) 3:
LTE bearer assignment as per TR23.401 DSMIPv6 bootstrapping & Binding update over LTE IP-in-IP tunnel ( in case of standalone HA and dedicated home prefix) Wi-Fi connection preparation as per TR 23.402 IPSec tunnel with IKEv2 signaling DSMIPv6 bootstrapping & Binding update over Wi-Fi IPSec tunnel DSMIPv6 tunnel
ePDG/IPSEC IP
HA
Exchange of routing filter, update of binding cache & IP-CAN modification Exchange of routing filter, update of binding cache & IP-CAN modification
NON-SEAMLESS OFFLOADING
Optional capability of a UE supporting WLAN radio access in addition to 3GPP radio access. Route specific IP flows via the WLAN access without traversing the EPC Non seamless offloaded IP flows are identified:
User preferences The Local Operating Environment Information defined in TS 23.261 Statistically pre-configured or dynamically provided by ANDSF offloading policies
Uses the local IP address allocated by the WLAN access network and no IP address preservation is provided between WLAN and 3GPP accesses
SGW PGW
3GPP Access
Non-3GPP Access
ePDG
Non-seamlessly offloaded traffic
R6/7
3GPP-WLAN Interworking scenario I-WLAN architecture Access control, billing and service based on 3GPP framework
R8/9
I-WLAN seamless handover and service continuity support I-WLAN mobility support with UTRAN/GERAN over pre-EPS network
R10/11
Multiple access connectivity IP flow mobility (IFOM) & seamless offloading Non-seamless WLAN offloading BBF inter-working
S2a mobility based on GTP & WLAN
BBAI
(Broad band access interworking)
PCRF
SGi
S5
ePDG
SWn
AN (e.g. DSLAM/ONT)
UE
S9a S15
Iu-PS
MSC
HNB GW SeGW
Iu-CS
BPCF
RG
3GPP Femto
BBF Device
Motivation
Technology segmentation increases as much as Wi-Fi access is getting popular
MAC based, user name and password based...
Source: Driving next generation Wi-Fi experience, Tiago Rodrigues , Wi-Fi global congress 2012
HS 2.0
Specifies capabilities and requirements as per AP and mobile device
Minimal set of capabilities for APs and mobile devices WPA2, User credentials, Interworking information element including Venue info and HESSID field Roaming consortium information element BSS load element (Mobile device population and channel utilization)
Mainly focused on the expansion of Wi-Fi hotspot coverage based on the roaming agreement between different local/global MNOs Major underlying technologies
Benefit of Wi-Fi CERTIFIED Passpoint
Comments Identifying a particular advertisement protocol supported. e.g. ANQP or 802.21 Identifying roaming consortium and/or SSP authorized to provide accessibility on the AP Support for the QoS service Indication whether the AP supports an interface to SSPNs
The purpose of seamless network access is to remove all complicated procedures to establish Wi-Fi client configuration
No need of user management for Wi-Fi access/authentication More preferred option for MNOs: Subscriber identity module based Username/password combinations are also considered for non-MNO Wi-Fi service providers No end-user intervention is required in order to establish a connection to a trusted network
SaMOG
(S2a Mobility based On GTP & WLAN access to EPC)
Motivation
Existing overlay solution for Wi-Fi access do not lead to market uptake
IPsec/IKEv2 based client towards TTG/ePDG DSMIPv6 based client towards PGW CMIPv4 based client towards a standalone HA GBA-based authentication for HTTP based services
SAMOG
Part of BBF inter-working activities between 3GPP and Broadband forum Solution to provide the ease of WLAN access to EPC
Complicated authentication and security overhead of WLAN interworking have been obstacles of largescale I-WLAN deployment
IPSec, IKEv2 to encrypt and authenticate WLAN via ePDG
Increased security, easy discovery and set up procedure are already mature
802.1x/802.1i/802.1u/Hotspot 2.0
Converged policy control, where a policy controller can provide both fixed and mobile policy control
The same PCC rule can be installed in the fixed access with single point of control
EPC
APN 1
PDN #1
MME
HSS
APN 2
S/PGW
PDN #2
7. UE completes L3 establishment with PDN#2 3. UE triggers L3 establishment 5. PCRF installs PCC rules except BBERF interaction
2. UE detects Wi-Fi (EPC-routed) SSID: EPC-routed availability and begin to EAP authentication procedure. AAA downloads required data for BNG to create GTP tunnel to PGW upon successful authorization
SSID: NSWO
IP fixed access
VLAN-EPC VLAN-NSWO
AAA
4. BNG initiates GTP tunnel creation session 6. PGW responds to BNG with GTP tunnel creation
BNG
ANDSF highlights
Access Network Discovery and Selection Function Operators use the ANDSF to assist the UE to scan and select an appropriate access network for the establishment of an IP flow. ANDSF contains data management and control functionality necessary to provide network discovery and selection assistance data as per operators' policy Simple architecture leveraging OMA Device Management specifications protocol
Actually, OMA DM uses a SyncML protocol bound to, e,g, HTTP The SyncML protocol carries an ANDSF Management Object (MO), which is encoded in XML or WBXML.
The ANDSF can be located in the home or visited networks (or both) UE ANDSF
AP
ANQP Request ANQP response
Public | 2012-10-19 | Page 36
PCRF
Radius CoA
Gx QoS
(802.11p)/DSCP
GTP
BNG PGW
AP
* EDCF is fairly simple to implement, but does not guarantee bandwidth, Jitter or latency
Public | 2012-10-19 | Page 37
Clientless
No impact, based on 802.1x and available EAP methods supported by the device (SIM, AKA, TTLS) Yes, requires 802.1x enabled Wifi Access Points on the operators SSID, AAA supporting EAP and MAP interface towards HLR or DIAMETER towards HSS. User IP packet awareness Very low. The fixed edge could look like a new GGSN or using S2a GTP it could look like a new SGSN or SGW Yes, using S9a or Policy interfaces between Mobile and Fixed Policy Managers, or also using GTP-C in band signaling. Marking packets on down and up streams Yes BBF, 3GPP, WIFI ALLIANCE (HOTSPOT 2.0) YesNon SIM Based devices are already 802.1x capable and could use any supported EAP method e.g. EAP-TTLS or TLS
No
Policy and Charging Control for Supporting Fixed Broadband Access Networks (P4C)
Policy and Charging Control in the fixed broadband access network in the convergent scenario where a single operator is deploying both the fixed broadband access network and the Evolved Packet Core (EPC).
Conclusion
Release 10
Inter-flow mobility Multiple radio connections UE-driven IP flow mobility
Release 12
Network driven flow mobility HS discovery & selection And more
Current
NW discovery & selection Seamless authentication, Wi-Fi global roaming and mobility
Future
Load balancing, multi-band steering ANDSF policy integration And more