System Release PTP 670-02-00 introduces these new features:
Enhancements to wireless security
PTP 670 supports the same set of wireless security features as the PTP topology of PTP 700-02-50. Three new encryption algorithms are provided:
- TLS RSA
- TLS PSK 128-bit
- TLS PSK 256-bit
The TLS RSA option provides secure authentication and authorization of the remote end of the link, in ODUs with or without the optional AES license. If both ends of the link have an AES license then the link will be automatically encrypted using AES, based on a randomly-generated master secret with the largest mutually-supported key size.
TLS RSA can be based on factory-installed device certificates, or user-supplied device certificates for additional security. User-supplied device certificates are erased by the Zeroize CSPs action.
The TLS PSK options provide security based on a 128-bit or 256-bit pre-shared key.
All three encryption algorithms support an optional rekeying feature, allowing the AES session keys to be automatically changed after a configurable interval. Automatic rekeying can significantly reduce the maintenance effort in a network where the security policy mandates frequent key changes.
The rekeying is seamless and does not interrupt customer data.
The 128-bit and 256-bit AES options from PTP 650 are not supported in 670-02-00. The TLS PSK options are an improved replacement, configured in a similar way and with an equivalent level of security, and with the additional benefit of optional rekeying.
The changes in wireless security deserve, and will probably get, a Knowledge Base message all to themselves.
See Device Authentication in PTP topology for PTP 670/700
Additional TDD Synchronization options
System Release 670-02-00 supports three options for TDD synchrnoization as follows:
- Synchronization using PTP-SYNC, similar to PTP 650
- Synchronization using the Universal GPS (UGPS) receiver with the CMM5 Power and Sync Injector.
- Synchronization over a direct connection between two PTP 670 ODUs.
The TDD Sync feature supports a mixed network where some ODUs are synchronized using PTP-SYNC with the Trimble GPS receiver, and other ODUs are synchronized using UGPS and CMM5.
TDD Sync networks can include PTP 650, PTP 670 and PTP 700 ODUs.
An Alarms page has been introduced into the web-based interface. The page is reached from the Navigation Bar or by clicking on the yellow warning triangle. Alarms previously shown on the System Summary page are now displayed on the Alarms page.
Listen-before-talk for EN 301 893 v1.8.1
System Release 670-02-00 complies with the listen-before-talk (LBT) requirements in EN 301 893 v1.8.1. This are mandatory for operation at 5.4 GHz in the European Union.
In addition to the features described above, PTP 670 is always supplied with the Full capacity license and, as a consequence, there are no Lite to Full upgrades.