Post on 31-Dec-2015
description
AdvOSS Service Management Platform
PolicyServer
AAA Applications
Service Execution Engine(SDP)
RADIUSAAA
HSS
DIAMETERAAA
AdvOSS Service Management Platform
Products0 AAA Server
0 RADIUS0 DIAMETER0 SDE (Service Delivery Engine)
0AAA Applications and Service Management Workflows
0 Policy Server 0 PCRF Compliant
0 HSS (Home Subscriber Server)0 Subscriber & Subscriptions data repository & management
0 Hot-lining / Captive Portal0 Provisioning Engine
AdvOSS Service Management PlatformRADIUS AAA Server
AAA ApplicationWorkflows
RADIUS InterimACCOUNTING
AUTHORIZATION
AUTHENTICATION
Policy Server
RADIUS Server
Re-AUTHORIZATION
StopACCOUNTING
StartACCOUNTING
HSS
Service Management Platform
SESSIONMANAGEMENT
Billing /OSS
Database
Application Server
Access Server
AdvOSS Service Management PlatformRADIUS AAA Server --> Key Modules
Basic Authentication Advanced Authentication Session Management
Authorization Applications Re-authorization Applications Accounting Applications
Hot-lining Application
AdvOSS Service Management Platform
RADIUS Server --> Key Modules contd
Service Control Application (Service Profile management)
Concurrency Control Application Credit Control Application
Policy based Request Routing Policy based Access Control (Hunt Groups)
Dynamic IP address allocation
SNMP support
RADIUS AAA Server --> Supported: Protocols/Standards
Basic Authentication0 PIN based0 CLI/ANI based0 Username/Password based0 HTTP digest/SIP Authentication0 IP based
Advanced Authentication0 - EAP Authentication
0 EAP-TLS0 EAP-TTLS with MS-CHAP, PAP, MS CHAP v20 EAP- LEAP 0 EAP-GTC0 EAP- MD50 EAP-SIM0 IMS AKA0 A12 (CDMA)
EAP-TLS
CPEAdvOSS AAA
Server File SystemWi-Max
EAP-TLSEAP-RADIUS(TLS)
Motorola CAPCAccess Point
Controller
Certificates
EAP-TLS Certificate Authentication
Authentication (EAP -TLS)
EAP-TTLS
EAP-TLS
CPEAdvOSS AAA
Server File SystemWi-Max
EAP-TTLSEAP-RADIUS(TTLS)
Motorola CAPCAccess Point
Controller
Certificates
EAP-TTLS Tunnel Establishment
Authentication Phase-1(EAP -TTLS)
PAP, CHAP, MS CHAPPAP, CHAP, MS CHAP
CPE
PAP, CHAP, MS CHAPAdvOSS AAA
ServerWi-Max
Motorola CAPCAccess Point
Controller
EAP-TTLS Tunnel (Encrypted)
Authentication Phase-2(EAP -TTLS)
DatabaseUsername
/Password
PAP , CHAP , MS SHAP
EAP-SIM
EAP-SIMAuthorization
AccountingEAP-sim
HLRAdvOSS
AAA Server
Core Network
SS7 SignalingGateway
3rd PartyPrepaid IN
Authorization/ Accounting
RADIUS / Native API
Authorization/ Accounting
AdvOSS API(Optional)
AdvOSSPrepaid IN
RADIUS
Access Gateway
AdvOSSAAA Proxy
EAP-SIM
RADIUS
Access Gateway
AdvOSSAAA Proxy
EAP-SIMAuthorization
Accounting
3rd PartyPrepaid IN
Authorization/ Accounting
RADIUS / Native API
Authorization/ Accounting
AdvOSS API(Optional)
AdvOSSPrepaid IN
Core NetworkAdvOSS
AAA ServerAdvOSS
API
AdvOSSHSS
HLRCore Network
Provisioning Server
AdvOSS Service Management PlatformDIAMETER AAA Server
AAA ApplicationWorkflows
Diameter
Policy Server
Diameter Server
HSS
Service Management Platform
Billing /OSS
Database
Cx/Dx App
OCS/Credit Control App
EAP Authentication
Sh Application
Sp App
Other Diameter Applications
AdvOSS Service Management PlatformDIAMETER Server Applications
AuthenticationMD-5 Digest with
DIAMETER SIP application (RFC 4740)
IMS-AKA
EAP Authentication DCCA (DIAMETER Credit Control App)
Sh / Sp ApplicationHSS
Cx/Dx ApplicationRo / Gy
Online Charging
RxSy
Between PCRF and OCS
AdvOSS Service Management PlatformDIAMETER Server Applications
0 Carrier Grade, High Performance & Scalable Server that provides Authentication, Authorization, Accounting and Policy lookup services over DIAMETER Protocol. It can be used by any telecom or other service provider to obtain a real-time interface to policy control, Subscriber Management, Billing and OSS systems.
Sp Application Gy App Gx / Gxa Reference Point
Ud App DIAMETER Accounting Application
AdvOSS Service Management PlatformAAA Server --> AAA Applications
AAA Applications: Each AAA request is handled by a respective AAA Application that interfaces with different functions in core network over multiple interfaces.
CRM/Hotlining
Subscriber Manager Policy Manager
Rating & Charging EngineAAA Applications
Provisioning Engine
Quota Manager
VoucherManagement
AdvOSS Service Management PlatformApplication Workflow Layer
0 All AAA and Service Management Applications implemented as Workflows
0 Simple but powerful scripting language for creating arbitrary real-time workflows
0 Used for implementing complex service logic and customer specific AAA policy variations while performing Authentication, Authorization and Accounting
AdvOSS Service Management PlatformMechanisms available to Workflow Layer
0Change of Authorization (CoA)0Session Disconnection 0API Pipelining 0Policy Server Lookup0HSS lookup 0Provisioning Network Elements 0Accessing Web-Services0Accessing Databases
Service Management Platform(Workflow Layer )
AAA Standard logic
Policy Server Lookup
Session Management
Interaction withIN & Billing
Provisioning of Network Elements
Redirection & Hotlining
HSSLookup
PolicyServer
Database
ProvisioningEngine
Profiles
HSSServer
Subscribers
Mobile Dialer
Access Point
AAA PacketArrives
Network Element(AAA Client)
AAA response & COA(Change Of Authorization)
IN & Billing
Deep Packet Inspection(DPI)
Policy Enforcement Point
Captive Portal
AdvOSS Service Management Platformcommon use cases enabled by workflow layer
0 Redirections, Account Top-ups and Bill Day Alerts0 Gating
0Asking different network elements through their exposed APIs if the flow should continue or not
0 Bandwidth throttling and real-time bandwidth Management
0 Disconnecting AAA sessions0 Changing service profiles for subscribers by retrieving
them from HSS on subscriber status change0 Service Assurance
0 Continuing Service in the face of network connectivity and other problems
Authentication Use cases
0 Automatic Authentication (MAC based)0 Managing the policy of the basis of Authentication0 Multiple successive Authentications from different
network elements0 Providing device Exclusivity0 Control of Mobility0 Identity Theft Protection0 Account Sharing Prevention and Allowance0 Load Sharing among VLANs0 Lawful Intercept0 CPE Sharing
Authorization Use Cases
0Service Request Authorization0Re-Authorization and Quota Reservation0Concurrency Authorization0Capability Authorization for multiple services0Quality of Service (QoS) and Quality of Experience
(QoE)Authorization0 Interconnect or terminating side capacity control
AdvOSS Service Management PlatformPolicy Server
0 AdvOSS Policy Server
HSS
Service Management
Billing /OSS AAAServer
Rules Based Engine
Zoning Module
Policy Server
Destination Zoning
Origin ZoningAccess Zoning Access Number Zoning
Other Zonings (pluggable through
hooks)
Bandwidth Management Policy QoS Policy QoE Policy
Charging Policy Routing Policy Accounting Policy
Access Method Control Policy
Authentication Basis Policy
Origin Policy
Debugging Policy
AdvOSS Service Management PlatformPolicy Server --> Key Modules
0 Policy server provides the core rule based engine and request zoning modules that combine with HSS and AAA applications to provide a powerful policy framework that is fully compliant with the PCRF framework defined by 3GPP for policy and charging control.
Rules Based Engine
Zoning Module
Policy Server
Destination Zoning
Origin ZoningAccess Zoning Access Number Zoning
Other Zonings (pluggable through hooks)
Bandwidth Management Policy QoS Policy QoE Policy
Charging Policy Routing Policy Accounting Policy
Access Method Control Policy
Authentication Basis Policy
Origin Policy
Debugging Policy
AdvOSS Service Management PlatformPolicy Server – Business Use cases
Some important use cases are highlighted below
Access Aware Policy Restrictions : based on Type of access (HFC, Wi-Max, Wi-Fi)
Speed and QoS control based on periodically consumed data volume limits
Fair Usage based Bandwidth Throttling
Night unlimited and other time of day based plans
Pay As You Go models
Bandwidth on Demand: Subscriber initiated Turbo Boost
AdvOSS Service Management PlatformHSS (Home Subscriber Server)
Service Management
Subscription State Management
Service Offering Manager
Identity Manager
Policy Server
HSS
Subscription Manager
Integrated Service Profile Management
AAA ServerBilling /OSS
AdvOSS Service Management PlatformHSS use cases
0Subscriptions0Buckets, counters and Add-Ons0Monetization of Multiple Services and Counters0Promotions, Loyalty Programs and Bonuses0Service Profile Management for Multiple Network
Elements0Service Personalization0Service Profiles Conflict Resolution
AdvOSS Service Management PlatformHSS Use Cases
HSS
Cx/Dx App
OCS/Credit Control App
EAP Authentication
Diameter Server
Sh Application
Sp App
AdvOSSTransactional
API
NetworkAccess Server
ApplicationServer
ApplicationServer
RFC-4072
Ro / RFC-4006
Sh
Cx/Dx
SpPCRF
RADIUS Server
AdvOSSTransactional
APIInterim
ACCOUNTING
AUTHORIZATION
AUTHENTICATION
Re-AUTHORIZATION
StopACCOUNTING
StartACCOUNTING
SESSIONMANAGEMENT
IMS Call Server (P/I/S - CSCF) Subscription State
Management
Service Offering Manager
Identity Manager
Subscription Manager
Integrated Service Profile Management
AdvOSS Service Management PlatformHSS Use Cases
HSS
Cx/Dx App
OCS/Credit Control App
EAP Authentication
Diameter Server
Sh Application
Sp App
AdvOSSTransactional
API
NetworkAccess Server
ApplicationServer
ApplicationServer
PCRF
RADIUS Server
AdvOSSTransactional
API
InterimACCOUNTING
AUTHORIZATION
AUTHENTICATION
Re-AUTHORIZATION
StopACCOUNTING
StartACCOUNTING
SESSIONMANAGEMENT
IMS Call Server (P/I/S - CSCF)
RFC-4072 Ro / RFC-4006 Sh Cx/Dx
Sp
Access ServerApplication
Server
RADIUSRADIUS
Subscription State Management
Service Offering Manager
Identity Manager
Subscription Manager
Integrated Service Profile Management
AdvOSS Service Management Platform
Alerting Application
0 Bill Day Alerts0 Bill Shock Alerts0 Grace period Alerts
AAA Server
Alerting Application
SMS
SMS
Voice Call
Captive Portal
AdvOSS Service Management Platform
Captive PortalRedirection of the users to a Web based Portal Captive Portal when a user is hot- lined and for sub self care, Account Recharge and monitoring.
User
Web
Web Based Portal
Captive Portal
AdvOSS Service Management PlatformExample Policy-driven Use Cases for AAA
0Authentication based on arbitrary AAA Attributes as per business requirements
0Authentication bypass and Automatic learning0Handling malformed packets and missing
attributes in AAA packets0Handling missing AAA packets for a Session0Handling multiple concurrent AAA sessions for
same subscriber identity0Service Assurance mode and scenarios0Revenue Assurance scenarios
GSM-Data offload use case (Wi-Fi)
UE(User Equipment)Wi-Fi Hotspot
Wi-Fi Backhaul
Captive Portal
Wireless Access Gateway
(WAG)
Tunnel Termination Gateway
(TTG)
wm
AAA Proxy
Control Plane
User Data Plane
Internet
Core Network
GSM Data Offload (Wi-MAX)
Captive Portal
wm
AAA Proxy
Core Network
UE(User Equipment)
Control Plane
User Data Plane
Internet
ASN Gateway
BTS
Service Management Platform Products Roadmap
G
• Gx: Between PCRF and PCEF (residing on PDN-GW)
• Gxa: Between PCRF and Access BBERF (Bearer Binding and Event reporting function)
• Gxc: Between PCRF and Serving BBERF• Gy: Between PDN-GW and OCS (Online
charging Function)• Gz: (Between PDN-GW and OFCS (Offline
Charging System)
S • S9: Between Home-PCRF and visited PCRF
R • Rx: Between AF and PCRF
Q3 2012: support for LTEMain Goal is to make products PCC Framework compliance which will automatically make AdvOSS Service Management Products LTE Compliant (Expected to be completed Q3 2012). AdvOSS is in process of implementing the following interfaces.
Contact Us
Head Office: 10691 Shellbridge Way, Suite 120Richmond, British
Columbia V6X 2W8 Canada
Tel: +1 (604) 800 0269Website: http://AdvOSS.com Email: sales@advoss.com