Transcript
8/11/2019 ManagmentProtocolTR-069
1/12
Management Protocol
TR 069
CPE - WAN
ClarissaPinto Bastos
Heru Pranoto
02/05/2011
8/11/2019 ManagmentProtocolTR-069
2/12
What is TR-069?
A protocol for communication between CustomerPremise Equipment (CPE) and Auto-Configuration Server
(ACS) that encompasses secure auto-configuration as well as
other CPE management functions within a common
framework.
8/11/2019 ManagmentProtocolTR-069
3/12
Why TR-069?
Service Providers can, through TR-069, use one
common platform to manage, through the Internet, all of theirCustomer Premise Devices, no matter the device nor the
manufacturer.
This common application has never been achieved
before due to CPE vendors creating proprietary mechanisms formanagement, and not wanting to expose those mechanisms to
their competitors.
8/11/2019 ManagmentProtocolTR-069
4/12
CPE ACS
Open connection
SSL initiation
HTTP post
HTTP response
Inform request
Inform response
HTTP post
GetParameterValues response
HTTP response
SetParameterValues request
HTTP post
SetParameterValues response
Close connection
HTTP response
HTTP post
HTTP response
GetParameterValues request
TR-069 CPE/ACS Interaction Model:
8/11/2019 ManagmentProtocolTR-069
5/12
Advantages of TR-069:
CWMP device configuration, troubleshooting, firmware upgrades,
user management, and reporting for TR-069 enabled devices to
reduce truck rolls
Enables service providers to offer dynamic services such as home
networking, security, Voice over IP, centrally managed by a TR-069
ACS
Reduces support calls by automated/proactive monitoringand
managing of TR-069 CWMP devices
8/11/2019 ManagmentProtocolTR-069
6/12
8/11/2019 ManagmentProtocolTR-069
7/12
Disadvantages TR-069 cont.)
Has to cross several layers of protocols and methods that must interoperate:
Layer Description
CPE/ACS Application The application uses the CPE WAN Management Protocol on the CPE and ACS,
respectively. The application is locally defined and not specified as part of the CPE WAN
Management Protocol.
RPC Methods The specific RPC methods that are defined by the CPE WAN Management Protocol.
SOAP A standard XML-based syntax used here to encode remote procedure calls. Specifically
SOAP 1.1
HTTP HTTP 1.1
SSL/TLS The standard Internet transport layer security protocols. Specifically, either SSL 3.0
(Secure Socket Layer), or TLS 1.0 (Transport Layer Security)
TCP/IP Standard TCP/IP.
Table 1 of TR-069 Amendment 1
8/11/2019 ManagmentProtocolTR-069
8/12
TR-069 vs. SNMP
SNMP is a technology that is tried and true, but each company has it's
own MIB (management information base), and SNMP has been known to have
security flaws. TR-069 was created to be device agnostic, meaning that all CPE
devices can be managed by one TR-069 Auto Configuration Server (ACS) no
matter the manufacturer etc.
SNMP (Simple Network Management Protocol) is used by networkmanagement systems to monitor network-attached devices for conditions
that warrant administrative attention. It consists of a set of standards for
network management, including an application layer protocol, a database
schema, and a set of data objects.
8/11/2019 ManagmentProtocolTR-069
9/12
Privacy Concerns:
Although it may seem invasive and insecure to have devices able to
be accessed without active consent, there are many security protocols included
in the TR-069 documents.
Security Goals:
The CPE WAN Management Protocol is designed to provide a high degree of
security. The security model is also designed to be scalable. It is intended to allow basic
security to accommodate less robust CPE implementations, while allowing greatersecurity for those that can support more advanced security mechanisms. In general terms,
the security goals of the CPE WAN Management Protocol are as follows:
Prevent tampering with the management functions of a CPE or ACS, or the
transactions that take place between the CPE and ACS.
Provide confidentiality for the transactions that take place between a CPE andACS.
Allow appropriate authentication for each type of transaction.
Prevent theft of service.
From the TR-069 Amendment 1 document:
8/11/2019 ManagmentProtocolTR-069
10/12
What can TR-069 be used for so far?
Any and all CPE, such as VoIP Analog Telephone Adapters, DSL Modems, and
Residential Gateways.
These capabilities are provisioned by TR-069 and its extensions (TR-098, TR-104, TR-106, TR-110, TR-111)
TR-069 Extensions:
TR-098 - data model for internet gateway devices (DSL modems with built in routers)
TR-104 - data model and any specific items for VoIP devices
TR-106 - a base object structure for TR-069 enabled devices
TR-110 - a reference model for VoIP configurations
TR-111 - covers applying TR-069 to remote management of home networking devices
8/11/2019 ManagmentProtocolTR-069
11/12
Conclusion
Since TR-069
s ratification, changing market dynamics continue to
impact the way service providers conduct business. A single high-speed
data service is no longer a viable, long-term path to retain market share
or grow revenue. Prices of core data servicesand the associated
marginsare declining steeply, and market saturation of basic
broadband is on the horizon. To remain competitive, carriers are
expanding into new video and content services, going after video
franchises, bundling entertainment packages, and competing head-to-
head with traditional cable operators to attract and retain new
customers.
TR-069 has to keep expanding to incorporate the many newtechnologies being developed for in-home use
8/11/2019 ManagmentProtocolTR-069
12/12
References:
Technical Report DSL Forum TR-069 CPE WAN Management
Protocol, 2004
http://en.wikipedia.org/wiki/TR-069
http://en.wikipedia.org/wiki/TR-069http://en.wikipedia.org/wiki/TR-069http://en.wikipedia.org/wiki/TR-069http://en.wikipedia.org/wiki/TR-069
top related