Home Gateway Enabling Evolution of Network Services



Similar documents
FENICS IP Telephony Services

IPv6 over Power Line for the Digital Home

High-Performance IP Service Node with Layer 4 to 7 Packet Processing Features

Edgewater Routers User Guide

Management Architecture and Distribution Framework for Home Network Services

Firewall-Friendly VoIP Secure Gateway and VoIP Security Issues

Edgewater Routers User Guide

Part Number: HG253s V2 Home Gateway Product Description V100R001_01. Issue HUAWEI TECHNOLOGIES CO., LTD.

User Manual. Page 2 of 38

Cisco Virtual Office Express

DATA SECURITY 1/12. Copyright Nokia Corporation All rights reserved. Ver. 1.0

Application Note Secure Enterprise Guest Access August 2004

Using Cisco UC320W with Windows Small Business Server

Full Digital Contents Distribution to the Home using IPv6

To ensure you successfully install Timico VoIP for Business you must follow the steps in sequence:

GR2000: a Gigabit Router for a Guaranteed Network

Truffle Broadband Bonding Network Appliance

Network Management System (NMS) FAQ

Service Delivery Platforms for Network Operators

Hanlong Technology Co., Ltd

Configuration Notes 283

How To Manage A Network Management System (Hitachi)

Multifunctional Broadband Router User Guide. Copyright Statement

ZyXEL offer more than just a product, we offer a solution. The Prestige DSL router family benefits providers and resellers enabling them to offer:

CTS2134 Introduction to Networking. Module Network Security

Service Delivery Platform Technologies

Solutions Guide. Secure Remote Access. Allied Telesis provides comprehensive solutions for secure remote access.

Enabling NAT and Routing in DGW v2.0 June 6, 2012

On-Demand VPN Service between Home Networks for NGN Users

Cisco Virtual Office Flexibility and Productivity for the Remote Workforce

A Study on Mobile IPv6 Based Mobility Management Architecture

IPv6 Broadband Access Network Systems

Cisco Knowledge Network

Network Services Internet VPN

ENTERPRISE SESSION BORDER CONTROLLERS: SAFEGUARDING TODAY S AND TOMORROW S UNIFIED COMMUNICATIONS

DEPLOYMENT OF I M INTOUCH (IIT) IN TYPICAL NETWORK ENVIRONMENTS. Single Computer running I m InTouch with a DSL or Cable Modem Internet Connection

VoIP Network Configuration Guide

Virtual Leased Line (VLL) for Enterprise to Branch Office Communications

District of Columbia Courts Attachment 1 Video Conference Bridge Infrastructure Equipment Performance Specification

Chapter 5. Data Communication And Internet Technology

Broadband Bonding Network Appliance TRUFFLE BBNA6401

Advanced Higher Computing. Computer Networks. Homework Sheets

TSC (Total Solution Communications Ltd)

Cisco Configuration Assistant

Enabling Smart Data on M2M Gateways and Aggregators

Chapter 9A. Network Definition. The Uses of a Network. Network Basics

RAS Associates, Inc. Systems Development Proposal. Scott Klarman. March 15, 2009

Broadband Phone Gateway BPG510 Technical Users Guide

300Mbps Wireless N VoIP VDSL/ADSL Modem Router

BlackBerry Enterprise Service 10. Secure Work Space for ios and Android Version: Security Note

Cisco RV215W Wireless-N VPN Router

Configuration Guide. BlackBerry Enterprise Service 12. Version 12.0

FortiVoice. Version 7.00 VoIP Configuration Guide

VoIP Solutions Guide Everything You Need to Know

Optimize your network for voice.

Trends of Interactive TV & Triple Play

Quick Guide of HiDDNS Settings (with UPnP)

Deploying QoS sensitive services in OSGi enabled home networks based on UPnP

VIA COLLAGE Deployment Guide

P-2612HNU-Fx n ADSL2+ VoIP IAD DEFAULT LOGIN DETAILS. Firmware V3.00 Edition 1, 1/2010. Password: 1234 User Name: admin Password: 1234

IP Telephony Management

Broadband Bonding Network Appliance TRUFFLE BBNA6401

Network Solution for Achieving Large-Scale, High-Availability VoIP Services

Avaya IP Office. Converged Communications. Contact Centres Unified Communication Services

Industrial Network Security for SCADA, Automation, Process Control and PLC Systems. Contents. 1 An Introduction to Industrial Network Security 1

Security and the Mitel Teleworker Solution

White Paper: Virtual Leased Line

Gigabit Content Security Router

Contents. Specialty Answering Service. All rights reserved.

Introducing Cisco Unified Communications Express

VOIP NETWORK CONFIGURATION GUIDE RELEASE 6.10

White Paper: Broadband Bonding with Truffle PART I - Single Office Setups

WHITE PAPER. Centrally Monitoring Set-tops and Implementing Whole-Home Video Assurance

VIA CONNECT PRO Deployment Guide

Cisco WAP4410N Wireless-N Access Point: PoE/Advanced Security Cisco Small Business Access Points

Software Registration and the DoorKing IM Server Internet Modem (IM) Server Program Summary

DSL-2600U. User Manual V 1.0

ADSL or Asymmetric Digital Subscriber Line. Backbone. Bandwidth. Bit. Bits Per Second or bps

Voice over IP Communications

Lab Configuring Access Policies and DMZ Settings

IPv4/IPv6 Translation Technology

Cisco WAP4410N Wireless-N Access Point: PoE/Advanced Security. Cisco Small Business Access Points

Secured Voice over VPN Tunnel and QoS. Feature Paper

System-on-a-Chip with Security Modules for Network Home Electric Appliances

Internet Access to a DVR365

2X SecureRemoteDesktop. Version 1.1

Chapter 6 Using Network Monitoring Tools

BRC-W14VG-BT Wireless BitTorrent Download Router

VoIP in the Enterprise

Transcription:

Home Gateway Enabling Evolution of Network Services V Tomohiro Ishihara V Kiyoshi Sukegawa V Hirokazu Shimada (Manuscript received July 3, 2006) Broadband access services have spread rapidly and are now widely diffused. Also, new network services offered via broadband access are attracting public attention. We are now conducting R&D on a home gateway that connects various devices and appliances in the home to the network and provides new network services through them. This paper introduces our newly developed Multigateway, which is a multifunction home gateway with an integrated broadband router and service adaptors. It then describes the concept of a platform for providing services for the next-generation network and the architecture of a home gateway called Service Gateway that realizes this concept. Finally, this paper describes a home appliance remote control service as an example of new services provided on the platform and describes our newly developed technologies that enable the realization of these services, including a prototype system. 1. Introduction Recently, broadband access services have attracted worldwide attention. In particular, in Japan the number of broadband access lines has increased dramatically over the past several years. As of December 2005, there are 22 million lines, 1) making Japan the world leader in penetration of broadband access. Also, there is a growing interest in providing new network services over these broadband lines. The network services attracting the most attention are high-speed Internet access, Internet Protocol telephony (IP telephony), and IP-TV, which collectively are called Triple Play. A large number of service providers have started providing Triple Play as their key network services over broadband access lines. Among the key elements enabling Triple Play are broadband access devices, including Asymmetric Digital Subscriber Line (ADSL) and Fiber To The Home (FTTH) access devices. Fujitsu Access of the Fujitsu Group provides a full line-up of these devices. Also, the Voice over Internet Protocol (VoIP) adaptor needed for IP telephony service is increasing in importance. We assume this adaptor box placed in the users homes will evolve into a critical device that provides various new network services to users. We call this device a home gateway. Although the term home gateway is often used, there is no standard definition yet. We have defined a home gateway as not only a device that provides Triple Play but also a device that enables new network services to be realized by connecting home appliances to a network. We are currently developing home-gateway technologies and products. This paper introduces a home gateway that provides IP telephony over broadband access and Wireless Local Area Network (WLAN) within the home. It then proposes the concept of the service delivery platform and describes the architecture of the home gateway, which plays the most 446 FUJITSU Sci. Tech. J., 42,4,p.446-453(October 2006)

important role in the platform. Lastly, this paper describes home appliance remote control as an example of the new services provided on the service delivery platform and technology we have developed that makes the service secure. 2. Multifunction home gateway These days, broadband access services usually bundle optional services such as IP telephony and WLAN. Conventionally, to use these optional services, users had to install IP telephone adaptors and WLAN adaptors in their homes. However, installing multiple adaptors in a living space can become problematic from the viewpoints of installation space and economical efficiency. Moreover, it can be very difficult for general users to connect and set up these devices, and the resulting large number of calls to support centers has become a serious problem for service providers. To solve these issues, in September 2005, Fujitsu Access released a multifunction home gateway called the Multigateway. As shown in Figure 1, the Multigateway is a box that integrates a VoIP adaptor, WLAN adaptor, and broadband home router. The Multigateway requires less space and is less expensive than the conventional solution. It also automatically sets itself up to reduce the users workload. The Multigateway has VoIP functions to provide IP telephony service. They include a Quality of Service (QoS) function, which forwards VoIP packets with high priority and provides a highquality telephony service. The Multigateway also provides WLAN within the home using a Personal Computer Card VoIP adaptor User s home TV PC Set-top box PC Ethernet WLAN adaptor Broadband home router Ethernet Line termination device Broadband line (FTTH, ADSL) To service provider s office Integration Multigateway Figure 1 Multifunction home gateway: Multigateway. FUJITSU Sci. Tech. J., 42,4,(October 2006) 447

International Association (PCMCIA) based accesspoint card that is installed in the Multigateway if needed. Because of this add-on feature, the service provider can easily add a WLAN service, even after initial setup. The Multigateway has a four-port wired Ethernet interface on the LAN side to connect multiple devices within the home. The Multigateway can assign bandwidth and QoS to each port individually. Therefore, it can provide advanced QoS-enabled services by cooperating with the QoS features of service providers networks. To prevent problems during setup, the Multigateway automatically sets up the parameters for IP telephony, WLAN, and Internet access. It automatically downloads parameters from the service provider s server and then sets itself up. This feature prevents incorrect setups and also enables management of setup parameters by service providers. In addition, the Multigateway periodically accesses the service provider s server to look for updates of its software and automatically downloads the updates when they are found. The Multigateway also supports IPv4/IPv6 dualmode routing, so it will be ready for the upcoming IPv6 networking. With its integrated VoIP adaptor, WLAN adaptor and broadband router functions, and the automatic setup function, the Multigateway reduces the installation and operation costs so that an economical broadband access service can be realized. 3. Service delivery platform The previous section described how the Multigateway contributes to smooth and economical provisioning of services over broadband access. This section describes our proposed concept of a service delivery platform and the technologies we developed for the platform. It also describes the Service Gateway (SGW), which is the key component of the platform. 3.1 System architecture and features As shown in Figure 2, the service delivery platform consists of an SGW, SGW management server, and service portal. The SGW is positioned at the boundary between the home network owned by the user and the network provided by the access service provider. The SGW management Access service provider SGW management server Home network Service Gateway (SGW) rperiodic monitoring edownload service modules winter-provider interface Service portal Service modules qselect service Service menu Service profile Setup parameter Device driver Application Application provider Figure 2 Service delivery platform. 448 FUJITSU Sci. Tech. J., 42,4,(October 2006)

server is placed in the operation center of the access service provider and managed by the provider. We separated the service portal from the SGW management server so third-party application providers can offer services to users over access services providers networks. We assume that the Web-service-based server interface (w in Figure 2) is an inter-provider interface. The key feature of this platform is that when additional SGW software modules are needed to provide a new service, they are automatically downloaded from the SGW management server to the SGW without any manual operation. The software modules, which we call service modules, are the setup parameters, device drivers, and application software. The procedure for automatic download is as follows: 1) The user accesses the service portal through the Web browser of a home appliance or PC and selects the desired service (q in Figure 2). 2) The service portal references the profile of the requested service and tells the SGW management server the names of the service modules needed for the service (w in Figure 2). 3) The SGW management server checks the service modules installed in the target SGW against the database in the server. If the SGW management server detects that the required service module has not been installed, the server sends the module to the SGW and installs it (e in Figure 2). 4) The SGW management server periodically monitors the SGW, upgrades service modules, and installs additional service modules when the user connects a new device to the SGW (r in Figure 2). 3.2 Prototype system We developed a prototype system to confirm the feasibility of the proposed service delivery platform. The software architecture of the prototype SGW enables various types of service modules (setup parameter, native code, Java code, and OSGi bundle 2) ) to be added or removed (Figure 3). Compared to the OSGi framework, which targets only Java-based OSGi bundles, this software architecture enables a much wider usage. The service-module management block communicates with the SGW management serv- SGW Service modules SGW management server Setup parameter Native code Java code OSGi bundle Device driver Java VM Middleware OSGi Service-module management block OS Device drivers (LAN, USB, etc.) Hardware Figure 3 Software architecture of SGW. FUJITSU Sci. Tech. J., 42,4,(October 2006) 449

er and forwards the service modules to the appropriate layer in the SGW. Communication between the SGW and SGW management server is performed with extensible Markup Language (XML) coded data (e.g., setup parameters and status data), which is transferred using HyperText Transfer Protocol (HTTP). We chose this architecture because it is universal and extensible. We also developed SGW manager software to be installed on the SGW management server. Figure 4 shows a screen shot of the SGW manager used to perform the following administrative operations: View the firmware version and setup parameters of the SGW. Add, update, or remove device drivers. Add, update, or remove service modules. Using this prototype system, we confirmed the feasibility of the service delivery platform. 4. Home appliance remote control technology One of the attractive applications that can be implemented on the service delivery platform will be home appliance remote control using a mobile phone. This service will enable users to program a video recorder s timer, view the inside of their homes via network cameras, and lock/unlock doors. Since this type of network service allows access from the Internet into the home, prevention of illegal access from the Internet is very important. However, because access control functions of conventional broadband home routers are generally based on IP address filtering, they cannot distinguish authorized accesses from unauthorized ones due to the following reasons: 1) PCs take dynamically assigned IP address when they are used in WLAN hot spots. Figure 4 Screen shot of SGW manager. 450 FUJITSU Sci. Tech. J., 42,4,(October 2006)

Therefore, IP addresses cannot be known in advance. 2) Mobile phones do not have their own IP addresses. They use the IP addresses of the gateway devices owned by the mobile communications provider, and many mobile phones use the same IP address. To solve these problems, we have developed a remote access system that can identify unauthorized accesses and realize stronger security (Figure 5). We achieved these features by tightly coupling the operations of the home gateway and the center server, which performs authentication. 3),4) In this system, the user first logs in to the center server with an ID and password through the Web browser of the remote terminal (mobile phone, PC, or PDA) (q in Figure 5). When the authentication process is completed, the center server sends an access permission code to the remote terminal and home gateway (w and e). The access permission code is a random number generated by the center server for each access, and it is used like a one-time password in this system. Next, the remote terminal accesses the home gateway with the code (r). Lastly, the home gateway compares the codes received from the center server and the remote terminal, and permits the access only if the codes match (t). This authentication procedure therefore can reject unauthorized accesses from terminals that do not have the correct access permission code. We developed a prototype home gateway to test our proposed architecture. Figure 6 shows the software architecture of the prototype s remote access function. Web-server functions are implemented on the home gateway to generate Web-based operation menus that are sent to the remote terminal. In this system, the users can utilize the standard Web browsers that are installed in mobile terminals (mobile phone, PCs, and PDAs), and they do not need to install dedicated software on their terminals to use the service. In addition, the system provides easy operation through the unified Web-menu generated by the home gateway, even if each home appliance has a dedicated control interface. The system also supports Universal Plug and Play (UPnP) based automatic appliance discovery and Center server Home gateway e Access permission code q User authentication w Access permission code r Access to home gateway with code Remote terminal User data (images, control commands, etc.) t Compare codes from center server and remote terminal Access denied Attacking terminal Figure 5 Architecture for home appliance remote control. FUJITSU Sci. Tech. J., 42,4,(October 2006) 451

Center server Home gateway Access permission code Home appliance interface Web server function (Web UI) Firewall HTTP over SSL Remote terminal Figure 6 Software architecture of remote access function of home gateway. HTTP-based appliance control. Using this prototype, we have demonstrated the following service examples through mobile terminals: 1) Monitoring a room via a network camera 2) Programming a DVD recorder s timer 3) Checking, opening, and closing an electronic door lock. 4) Turning a light on and off 5) Browsing data stored in a home server These functions are bundled as a remote access module, which is automatically downloaded to the home gateways of subscribers to the remote access service. Using the prototype, we confirmed that our proposed architecture can deny unauthorized access and that various mobile terminals can be used without installing dedicated software. 5. Conclusion This paper introduced our R&D activities for achieving smooth and economically effective deployment of new network services over broadband access. Our activities are currently focusing on the home gateway because we believe it will be a very key device to providing future network services. We also believe our technologies and products are contributing to the evolution of network services. Parts of the work described in this paper were funded by the National Institute of Information and Communications Technology (NICT) in Japan. References 1) Ministry of Internal Affairs and Communications of Japan: Main Data on Information and Communications in Japan. 2005. http://www.soumu.go.jp/joho_tsusin/eng/ main_data.html 2) OSGi Service Platform Release 4 Core. 2005. http://www.osgi.org/ 3) T. Ishihara et al.: Home Appliance Networking Technology Creating New Services Beyond Triple Play. PTC 06, T.3.4.4, 2006. 4) T. Ishihara et al.: Home Gateway Architecture Enabling Secure Appliance Control Service. ICIN 2006, 8B-4, 2006. 452 FUJITSU Sci. Tech. J., 42,4,(October 2006)

Tomohiro Ishihara, Fujitsu Laboratories Ltd. Mr. Ishihara received the B.E. and M.E. degrees in Electrical Engineering from Waseda University, Tokyo, Japan in 1983 and 1985, respectively. He joined Fujitsu Laboratories Ltd., Kawasaki, Japan in 1985, where he has been engaged in research and development of SDH transport systems, broadband access systems, ATM networking, and IP networking. He is a member of the IEEE and the Institute of Electronics, Information and Communication Engineers (IEICE) of Japan. Hirokazu Shimada, Fujitsu Access Ltd. Mr. Shimada received the B.E. degree in Electronic Engineering from Nihon University, Chiba, Japan in 1985. He joined Fujitsu Access Ltd., Kawasaki, Japan in 1985, where he has been engaged in development of high-speed digital leased line systems, ISDN systems, and broadband access systems. He is currently researching and developing home gateway systems. E-mail: hsimada@access.fujitsu.com E-mail: t.ishihara@jp.fujitsu.com Kiyoshi Sukegawa, Fujitsu Access Ltd. Mr. Sukegawa received the B.S. degree in Physics from Rikkyo University, Tokyo Japan in 1988. He joined Fujitsu Ltd., Kawasaki, Japan in 1988, where he was engaged in development of ISDN systems. He has transferred to Fujitsu Access Ltd., Kawasaki, Japan in 2001, where he has been engaged in development of broadband access systems. E-mail: sukegawa@access.fujitsu.com FUJITSU Sci. Tech. J., 42,4,(October 2006) 453

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information