Docsis 1.0 Feature Support - Cisco 7246VXR - uBR Router Software Configuration Manual

Chapter 1 Overview of Cisco uBR7200 Series Software
•

DOCSIS 1.0 Feature Support

The Cisco uBR7200 series and associated Cisco IOS software support multiple DOCSIS 1.0
enhancements, extensions, and features.
•
•
•
•
•
•
•
•
DOCSIS 1.0 Baseline Privacy
DOCSIS baseline privacy interface (BPI) gives subscribers data privacy across the RF network, encrypting
traffic flows between the CMTS and cable modem. BPI ensures that a cable modem, uniquely identified by
its Media Access Control (MAC) address, can obtain keying material for services only it is authorized to
access.
To enable BPI, choose software at both the CMTS and cable modem that support the mode of operation.
For the Cisco uBR7200 series software, choose an image with "k1" in its file name or BPI in the feature
set description.
The cable modem must also support BPI. CMs must have factory-installed RSA private/public key pairs
to support internal algorithms to generate key pairs prior to first BPI establishment. BPI must be enabled
using the DOCSIS configuration file.
DOCSIS 1.0 Baseline Privacy Interface Encryption and Encrypted Key Exchange
The Cisco uBR7200 series supports full DOCSIS 1.0 BPI specifications. The BPI for DOCSIS 1.0 protects
user data privacy across the shared-medium cable network and prevents unauthorized access to
DOCSIS-based data transport services across the cable network. BPI encrypts traffic across the RF interface
between the cable modem and CMTS, and includes authentication, authorization, and accounting (AAA)
features.
The level of data privacy is roughly equivalent to that provided by dedicated line network access services
such as analog modems or digital subscriber lines (DSL). BPI provides basic protection of service,
ensuring that a cable modem, uniquely identified by its MAC address, can obtain keying material for
services only when it is authorized to access.
Encryption and decryption are subject to export licensing controls.
Note
OL-2239-05
CABLE SECURITY, Cable Source-Verify and IP Address Security, White Paper
http://www.cisco.com/en/US/tech/tk86/tk803/technologies_tech_note09186a00800a7828.shtml
DOCSIS 1.0 Baseline Privacy, page 1-49
DOCSIS 1.0 Baseline Privacy Interface Encryption and Encrypted Key Exchange, page 1-49
DOCSIS 1.0 Concatenation Override Featurette, page 1-50
DOCSIS 1.0 Extensions, page 1-51
DOCSIS 1.0 Quality of Service, page 1-51
DOCSIS Quality of Service Enhancements Prior to DOCSIS 1.1, page 1-52
DOCSIS Customer Premises Equipment Configurator, page 1-53
Enhanced Rate Bandwidth Allocation (ERBA) Support for DOCSIS 1.0 Cable Modems, page 1-54
Note RSA stands for Rivest, Shamir, and Adelman, inventors of a public-key cryptographic
system.
Cisco uBR7200 Series Universal Broadband Router Software Configuration Guide
Supported Software Features for the Cisco uBR7200 Series
1-49