Quality Of Service Control; Security; System Components - Avaya 3600 Series Installation Instructions Manual

1.1 Quality of Service Control

In an installation with just one or two wireless IP phones, it is possible that adequate call quality occurs without any QoS
control. However, as further devices are added, call quality is very likely to diminish rapidly. Therefore, to maintain call
quality, some mechanism for QoS control must be implemented.
For 3600 Series phones, the QoS mechanism can be either the use of an Avaya supplied AVPP (which uses SVP) or the
use wireless access points configured for WMM or CCXv4. In all cases only one of the three methods should be used, the
methods cannot be mixed in the same installation.
For installations that include any older 3600 Series telephones, the 3616, 3620 and 3626, only the use of the AVPP is
supported. For installations that only include newer 3600 Series telephones, the 3641 and 3645, the use of either an
AVPP or WMM or CCXv4 is supported.
In all scenarios, the wireless access points must also be
· SpectraLink Voice Priority (SVP)
SpectraLink Voice Priority is a proprietary method of WLAN QoS, developed by Polycom, to ensure
enterprise-grade voice quality, battery life and call capacity for SpectraLink Wireless IP Telephones. SVP requires
the Avaya Voice Priority Processor (AVPP) Server, which is an Ethernet LAN device that works in conjunction with
Wi-Fi access points to ensure QoS over the WLAN. Voice packets to and from the Wireless IP Telephones are
forwarded through the AVPP Server to ensure voice prioritization as they are routed between the handset and an
IP telephony server.
· Wi-Fi Standard QoS (Wi-Fi Multimedia - WMM)
WMM, WMM Power Save and WMM Admission Control are Wireless Multimedia Extensions (WME) from the Wi-Fi
Alliance based on IEEE 802.11e. The combination of these three standards provides enterprise-class QoS in terms
of voice quality, battery life and call capacity. The access points must support and enable each of these QoS
mechanisms in order to ensure they are utilized. These options are only supported for 3641 and 3645 handsets.
· Cisco Compatible eXtension (CCXv4)
The CCX program allows WLAN client devices operating on Cisco access points to take advantage of Cisco-specific
features. When the CCXv4 operating mode is selected on the handset, it operates using the required set of
Cisco-specific and industry standard QoS mechanisms. This option is only supported for 3641 and 3645 handsets.

1.2 Security

The following security methods are supported by the handsets:
· WEP
The handset supports Wired Equivalent Privacy (WEP) with both 40-bit and 128-bit encryption.
· Cisco Fast Secure Roaming (Cisco FSR)
Cisco's Fast Secure Roaming (FSR) mechanism uses a combination of standards based and proprietary security
components including Cisco Client Key Management (CCKM), LEAP authentication, Michael message integrity check
(MIC) and Temporal Key Integrity Protocol (TKIP). FSR provides strong security measures for authentication, privacy
and data integrity on Cisco access points.
· WPA and WPA2 Personal (WPA_PSK/WPA-PSK2)
The handset supports WPA and WPA2 Personal, as defined by the Wi-Fi Alliance. WPA2, which is based on the 802.11i
standard, provides government-grade security by implementing the Advanced Encryption Standard (AES) algorithm.
WPA, which is based on a draft version of the 802.11i standard before it was ratified, uses Temporal Key Integrity
Protocol (TKIP) encryption. The Personal version uses an authentication technique called Pre-Shared Key (PSK) that
allows the use of manually entered keys to initiate security.
· WPA2 Enterprise
The 3641 and 3645 phones supports WPA2 Enterprise, as defined by the Wi-Fi Alliance. WPA2, which is based on the
802.11i standard, provides government-grade security by implementing the Advanced Encryption Standard (AES)
algorithm. The Enterprise version of WPA2 uses 802.1X authentication, which is a port-based network access control
mechanism using dynamic encryption keys to protect data privacy. Two 802.1X authentication methods are supported
on the Wireless IP Telephone, EAPFAST and PEAPv0/MSCHAPv2. Both of these methods require a RADIUS
authentication server to be available on the network and accessible to the phone.
· Normal 802.1X authentication requires the client to renegotiate its key with the authentication server on every
access point handoff, which is a time-consuming process that negatively affects time-sensitive applications
such as voice. Fast access point handoff methods allow for the part of the key derived from the server to be
cached in the wireless network, thereby shortening the time to renegotiate a secure handoff. The 3600 Series
phones support two fast AP handoff techniques: Cisco Client Key Management (CCKM) for Cisco access points
and Opportunistic Key Caching (OKC). One of these methods must be configured for support on the WLAN to
ensure proper performance of the handset.

1.3 System Components

The installation may require or include the following components:
3600 Series Phone Installation
IP Office
Voice Interoperability for Enterprise Wireless (VIEW)
15-601082 Issue 06a (21 February 2014)
compliant.
Page 10