Product Details The BSC6900 software connects to the core networks and manages the base stations in the GSM and UMTS networks. The BSC6900 software performs functions such as radio resource management, base station management, power control, and handover control. The BSC6900 software possesses the following functional features: 1. The BSC6900 software can work with GSM and UMTS technologies. Thus facilitating the smooth evolution from GSM to GSM&UMTS, and the evolution between GSM&UMTS and UMTS, 2. The BSC6900 software provides the highly efficient transmission resource management algorithm, 3. Industry-leading technologies, delivering excellent performance, 4. Easy maintenance through the Web LMT 5. Flexible networking. The major security features implemented by BSC6900 software and subject to evaluation are: 1. Authentication: Operators accessing the TOE in order to execute device management functions are identified by individual user names and authenticated by passwords. Also, the TOE connects with the M2000 entity (external management element of the whole communication solution). The communication with the M2000 is protected connection using the SSL/TLS. Also an additional private arithmetic process common to both parties is applied before the authentication. Once the M2000 is properly connected the interaction with the TOE is made by the utilization of a special user (EMSCOMM) registered in the BSC6900 software. 2. Role-based access control: The TOE implements role-based access control, limiting access to different management functionality to different roles. 3. Auditing: Audit records are created for security-relevant events related to the use of BSC6900 software. Huawei BSC6900 Multimode Base Station Controller Software Security Target 2011-12-20 Huawei BSC6900 Multimode Base Station Controller Software Security Target Page 7/ 58 4. Communications security: BSC6900 software provides SSL/TLS channels (for FTP, HTTP, MML, BIN) to access the TOE. 5. Management of security functionality: The TOE offers management functionality for its security functionality. 6. Digital signature: For the installation of GBTS managed element, the TOE is able to check the software integrity of the package previous to the installation of the element in order to verify its integrity. BCS 6900 boards list: 0IUa 03051122-WP11OIUa DDB 02120185(UG0E3MDDB) DPD 02120471(WP1E01DPD) DPUc 03051813-WP13DPUc DPUd 03051814-WP13DPUd EIUa 03051121-WP11EIUa FAN 02120447(WP1E3PFNS) 2120370N-WP1E2PFNS FG2a 03051488-WP11FG2a GCUa 03051116-WP11GCUa OMUa 02238806-WP11OMUa OMUb 02237111(WP11OMUb) PEUa 03051486(WP11PEUa) POUa 03052741-WP11POUc SCUa 03051117-WP11SCUa TNUa 03051118-WP11TNUa XPUa 03051119-WP11XPUa XPUb 03052780(WP11XPUb) Cabinet 02112682(WP1K1PBCS) 02300582(WP1K1PBCS) 2300562N-WP1K1PBC HW Version Board HW60 R8 OMUb,SCUa,TNUa,GCUa,DPUc,DPUd,XPUa,EIUa,FG2a,GOUa,OIUa,PEUa HW69 R11 OMUa,SCUa,TNUa,GCGa,GCUa,DPUc,DPUd,XPUb,EIUa,FG2c,GOUc,OIUa,PEUa,POUc HW69 R13 OMUc,SCUb,TNUa,GCGa,GCUa,DPUf,DPUg,XPUb,EIUa,FG2c,GOUc,OIUa,PEUa,POUc Board Type Board Name Function OMU board OMUa zHandles configuration management, performance management, fault management, security management, and loading management for the BSC6900 Software. zWorks as the OM agent for the LMT/M2000 to provide the BSC6900 OM interface for the LMT/M2000, thus achieving the communication between the BSC6900 Software and the LMT/M2000. zWorks as the interface to provide the web-based online help. Switching processing board SCUa zProvides MAC/GE switching and enables the convergence of ATM and IP networks. zProvides data switching channels. zProvides system-level or subrack-level configuration and maintenance. zDistributes clock signals for the BSC6900 Software. TDM switching Network Unit TNUa zProvides 128K x 128K time slots TDM switching zAllocates the TDM network resources Clock processing board GCGa Obtains the system clock source, performs the functions of phase-lock and holdover, and provides clock signals. Differences: Unlike the GCUa board, the GCGa board can receive and process the GPS signals. GCUa Signaling processing board SPUb/ XPUb Manages user plane and signaling plane resources in the subrack and processes signaling. Service processing board DPUe/ DPUd/ DPUc Processes CS services and PS services within the system. Service identification board NIUa Provides the service identification function. It works with the service processing boards to schedule different types of services. Interface processing board AEUa Provides 32 channels of ATM over E1/T1. zExtracts clock signals and sends the signals to the GCUa or GCGa board. AOUc Provides four channels over the channelized optical STM-1/OC-3 ports based on ATM protocols. zSupports ATM over E1/T1 over SDH or SONET. zProvides 252 E1s or 336 T1s. zExtracts clock signals and sends the signals to the GCUa or GCGa board. FG2c Provides 12 channels over FE electrical ports or 4 channels over GE electrical ports. zSupports IP over FE/GE. GOUc zProvides four channels over GE optical ports. zSupports IP over GE. PEUa Provides 32 channels of IP over E1/T1. zExtracts clock signals and sends the signals to the GCUa or GCGa board. EIUa zProvides four E1/T1 electrical ports for TDM transmission zTransmits, receives, encodes, and decodes 32 E1s/T1s. The E1 transmission rate is 2.048 Mbit/s, the T1 transmission rate is 1.544 Mbit/s zProcesses signals according to the LAPD protocol zProcesses signals according to the SS7 MTP2 protocol POUc Provides four channels over the channelized optical STM-1/OC-3 ports based on IP protocols, equivalent to 252 E1s or 336 T1s. zSupports IP over E1/T1 over SDH/SONET. zExtracts clock signals and sends the signals to the GCUa or GCGa board. UOIa zProvides four channels over the unchannelized STM-1/OC-3c optical ports. zSupports ATM/IP over SDH/SONET. zExtracts clock signals and sends the signals to the GCUa or GCGa board. UOIc zProvides eight channels over the unchannelized STM-1/OC-3c optical ports. zSupports ATM over SDH/SONET. zExtracts clock signals and sends the signals to the GCUa or GCGa board. Supported Interfaces and Usage OMUa The following list shows a collection of interfaces which might be used during this evaluation for all models. FG2c The interfaces boards are used for incoming and outgoing network traffic, which support VLAN, IP_based ACL, anti-DDoS attack characteristics.