sign in sign up
<<
Home , Bluetooth, WiMAX

WI-FI TM , TM , ZIGBEE TM AND WIMAX TM WI-FITM,BLUETOOTH TM, ZIGBEE TM

AND WIMAXTM

by

H. LABIOD ENST, Paris, France

H. AFIFI INT, Evry, France

C. DE SANTIS INT, Evry, France A C.I.P. Catalogue record for this book is available from the Library of Congress.

ISBN 978-1-4020-5396-2 (HB) ISBN 978-1-4020-5397-9 (e-book)

Published by Springer, P.O. Box 17, 3300 AA Dordrecht, The Netherlands. www.springer.com

Printed on acid-free paper

All Rights Reserved © 2007 Springer No part of this work may be reproduced, stored in a retrieval system, or transmitted in any form or by any means, electronic, mechanical, photocopying, microfilming, recording or otherwise, without written permission from the Publisher, with the exception of any material supplied specifically for the purpose of being entered and executed on a computer system, for exclusive use by the purchaser of the work. I dedicate this book to my husband, my parents and my sister and brothers Houda Laboid Contents

Dedication v Preface xiii Foreword xv 1 Introduction 1 2 Wi-FiTM: Architecture and Functions 5 1. WLAN Roadmap via IEEE 802.11 Family Evolution 5 1.1 Panorama of Standards 6 1.2 Features of the Different WLAN Generations 10 1.3 WLAN Markets 12 2. IEEE 802.11 Architecture 15 2.1 Three Basic Operational Modes 15 2.2 Possible Configurations 19 2.3 Basic Services 27 2.4 Description of Sublayers’ Structures 27 3. Different Physical Layers 29 3.1 Frequency Hopping -based 30 3.2 Direct Sequence Spread Spectrum-based Physical Layer 32 3.3 Transmission 35 3.4 IEEE 802.11b Standard high Rate Direct Sequence Spread Spectrum-based Physical Layer 36 3.5 The OFDM Technique of the IEEE 802.11a/g Standards 36 3.6 The IEEE 802.11n Physical Layer 38 3.7 Frame Formats 40 4. Data 41 5. Layer 41 5.1 Medium Access Mechanisms 41 5.2 Basic Access Technique CSMA/CA 42 5.3 Virtual Carrier Sense CSMA/CA Mechanism with Short Messages RTS and CTS 48 5.4 PCF and HCF 50 5.5 Frames Formats 51 6. Functions 56 6.1 Addressing 56 6.2 Association, Reassociation and Disassociation 57

vii viii Contents

6.3 Fragmentation and Reassembling 59 6.4 Roaming 60 6.5 Synchronization 62 6.6 Energy Conserving 62 6.7 Management Frames Format 63 7. Mobility 64 8. Security 64 9. IEEE 802.11 Family and its Derivative Standards 65 9.1 IEEE 802.11g 65 9.2 IEEE 802.11e 66 9.3 IEEE 802.11d 66 9.4 IEEE 802.11F 67 9.5 IEEE 802.11h 67 9.6 IEEE 802.11i and IEEE 802.1X 67 9.7 IEEE 802.11k 67 9.8 IEEE 802.11j 68 9.9 IEEE 802.11p 69 9.10 IEEE 802.11u 70 9.11 IEEE 802.11v 70 9.12 IEEE 802.11r (Fast Roaming/Fast BSS Transition) 70 9.13 IEEE 802.11s 72 9.14 IEEE 802.11w 73 10. Wi-Fi and Other Technologies, Concurrency or Complementarity? 73 3 BluetoothTM: Architecture and Functions 75 1. Introduction 75 1.1 SIG 75 1.2 Bluetooth Does it Relate to Teeth by Any Sense? 76 1.3 Applications 76 2. Architecture and Throughputs 77 2.1 Architecture 77 2.2 Throughputs and Versions 78 3. Physical Layer and Physical Channels 79 3.1 Frequency Bands and RF Channels 81 4. Baseband Layer 82 4.1 Physical Characteristics 82 4.2 Addressing 84 4.3 Bluetooth Packets 85 4.4 Error Control 92 5. Link Manager Protocol 93 5.1 LMP Sniff Req, LMP Unsniff Req 96 5.2 LMP Host Connection Req, LMP Setup Complete 96 5.3 LMP AU RAND, LMP SRES 98 6. and Adaptation Protocol 99 6.1 L2CAP Connection Establishment Procedures 101 6.2 Some L2CAP Functions 103 Contents ix

7. RFCOMM Protocol 104 8. Service Discovery Protocol 104 9. Profiles 105 10. Host Control Interface 106 11. Bluetooth Network Encapsulation Protocol 107 12. Conclusion 108 4 IEEE 802.15.4 and ZigBeeTM 109 1. General Architecture 109 2. Physical Layer 112 2.1 2450 MHz Physical Layer 112 2.2 868/915 MHz Physical Layer 113 2.3 PDU Packet Format 113 3. MAC Layer 114 3.1 Channel Access 114 3.2 Energy Detection 115 3.3 Active and Passive Scan 116 3.4 Association Procedure 116 3.5 Guaranteed Time Slot 116 4. Security 117 5. Frame Structures 117 5.1 Frame 119 5.2 Data Frame 120 6. ZigBee 120 7. Conclusion 122 5 WiMAXTM and IEEE 802.16 123 1. Introduction 123 1.1 Backhaul Solutions 124 1.2 Mobile Solutions 124 1.3 Business Model 125 1.4 Evolution of the IEEE 802.16 Group Activities 126 1.5 Equipment Category and Frequency Bands 126 1.6 Layers and Architecture 126 2. MAC Layer 127 2.1 128 2.2 and QoS 129 2.3 Contention Resolution in IEEE 802.16 131 2.4 Adaptive Antenna System 132 2.5 Joining an IEEE 802.16 Network and Initialization 132 2.6 PDUs 133 2.7 PDU Organization 139 3. Physical Layer 139 3.1 IEEE 802.16 SC (Single Carrier) 140 3.2 The Single Carrier in Lower Bands 143 3.3 OFDM Physical Layer 146 3.4 OFDMA Physical Layer 148 x Contents

6 Security in WLAN, WPAN, WSN and WMAN through Wi-FiTM, 153 BluetoothTM,ZigBeeTM and WiMAXTM 1. Security in Wi-Fi Systems 155 1.1 Security in Wi-Fi Networks 155 1.2 Security Flaws 161 1.3 Taxonomy of Attacks 171 1.4 Diverse Solutions 174 1.5 WPA/WPA2: IEEE 802.1X and TKIP/AES 193 1.6 Synthesis 194 2. Security in Bluetooth Systems 195 2.1 Security Architecture 195 2.2 Main Procedures 200 2.3 Security Flaws 207 2.4 Synthesis 209 3. ZigBee Security 210 3.1 ZigBee Security Architecture 211 3.2 Mechanisms 211 3.3 Trust Centre Concept 212 4. WiMAX and IEEE 802.16 Security 213 4.1 IEEE 802.16 MAC Security Sublayer 213 4.2 PKM Protocol 214 4.3 Traffic 217 4.4 Security Enhancement for Mobile Communications 217 5. Conclusion 219 7 Practising 221 1. Mastering the TinyOS Platform 221 1.1 Brief Historical Notes and State-of-the-art in TinyOS 222 1.2 Basic Concepts of TinyOS and neSC 224 1.3 Case Study: Crossbow Motes 227 1.4 Experimentation and Measurements 235 2. Practising WiMAX Equipment 255 2.1 General Objectives and Action Plan 258 2.2 Case Study: Redline WiMAX Equipment 259 2.3 Lab Experiments 264

Appendix A: Structure of IEEE 802.11 Packets at Various Physical Layers 281 1. Packet Format of Frequency Hopping Spread-spectrum Physical Layer (FHSS PHY) 281 1.1 Preamble 281 1.2 Physical Layer Convergence Protocol Header 281 2. Packet Format of Direct-Sequence Spread Spectrum Physical Layer (DSSS PHY) 282 2.1 Preamble 282 2.2 PLCP Header 282 3. Packet Format of IEEE 802.11b HR/DSSS PHY 283 Contents xi

4. Packet Format of Infrared Physical Layer (IR PHY) 284 4.1 Preamble 284 4.2 Physical Layer Convergence Protocol header 284 5. Packet Format of OFDM PHY (Physical Layer of IEEE 802.11a) 284 5.1 Preamble 285 5.2 PLCP Header 286 Appendix B: IEEE 802.11 MAC Frames Structure 287 1. Different Types of MAC Frames 287 2. Management Frames 287 3. Beacon Frames 288 4. Association Frames 288 5. Reassociation 288 6. Disassociation Frames 289 7. Probe Request Frames 289 8. Frames 289 9. Deauthentication Frames 289 10. Traffic Indication Map Structure 290 11. Status Codes 291 Glossary 293

References 311 Preface

The advent of ubiquitous computing and the proliferation of portable com- puting devices have raised the importance of mobile and networking. Recently, there has been a tremendous interest in wireless access systems, including wireless local area networks (WLANs), broadband wireless access, and wireless personal area networks (WPANs). This domain is a subject of huge research and many standardization activities are undertaken throughout the world. Based on the most recent developments in the field of wireless technolo- gies related to WLAN, WPAN, wireless sensor networks (WSN) and wireless metropolitan area network (WMAN), this book gives a detailed description of the widespread or recently used standards like Wi-Fi, Bluetooth, ZigBee, and WiMAX. Our book aims at regrouping in a single volume up-to-date infor- mation related to these different technologies, which can be used separately or combined to provide specific applications. The emergence of these very promising systems is mainly due to great technological progress in the field of wireless communication protocols; they will also make it possible to offer a broad range of new applications in both civilian and military domains. The inherent characteristics of these systems imply new challenges. Our book deals with several relevant topics related to the evolution of these spontaneous, self- organized, or cellular-based networks. Through its seven chapters, we tackle critical problems such as the design of medium access control (MAC) and rout- ing protocols, the support of the , the security mechanisms, the mobility/roaming aspects, etc. We preferred to follow an analysis-oriented approach which aims at drawing up complete states of the art on both techno- logy and standards. We also present some practical aspects and highlight some trends as a stake for future standards. This book is intended for readers with knowledge of networking and protocols. The audience includes network engi- neers, designers, implementers, undergraduate/graduate/postgraduate students, and information systems managers. The standards that we present are definitely based strongly on the knowl- edge of and coding though we try, in this book, to pass over this domain which is widely tackled in many specialized books. Hence, we try to

xiii xiv Preface attract readers who are new to these technologies and make them aware of the challenges in the different layers. As standards are made by those who have the interest and patience to participate, discuss, and reach consensus, we also hope to create a new interest in participation so as to open and improve the technical levels of our future standards. Wireless technology remains the most exciting area in and networking, thanks to its continuous and very fast evolution. The book thus invites the reader for an exploring travel in order to understand the genesis of the most important and interesting systems, which will certainly change the landscape of future communications.

Houda Labiod Hossam Afifi Costantino De Santis Foreword

It is a great honour for me to write the foreword for this book. The develop- ment of wireless communication applications and services has been incredibly boosted to the point that the ubiquitous communication concept has found many concrete expressions. The networks available in all offices since the 1980s allowed a com- fortable computer resources usage thanks to their high . But soon the became the principal office equipment, and the Ethernet suffered from the necessity to connect physically, impeding employee mobility and the frequent need to move from offices to meeting rooms. While on the move, employees could not modify or consult data bases, email, etc. Ten years ago “Allways on” (always online) was an essential request of users. Mobile communica- tion networks such as GPRS, CDMA, and UMTS offered insufficient bandwidth for comfortable usage. The arrival of the wireless local area networks (WLANs) has made “Allways on” a reality in companies, public places, streets, hotels, supermarkets, and private residences. Korea pioneered in the venture, and at the end of 2003, 16,000 WLANs were available for public use. Korean customers could pay a fixed price for subscrip- tion to high-speed network access, which included access to their residence by Ethernet or ADSL and connectivity through WLAN to the whole territory when on the move. In Europe hotel chains, airports, museums, metros, etc., equipped themselves to offer this service to their customers. High bandwidth access anywhere anytime is perceived today as a natural convenience associated with many service benefits (e.g. housing, travel, lecture, tourism). The development of PDAs, game consoles, smart phones, household appliances, and cars with digital services additionally creates the need for local communication between these objects in order to allow them to cooper- ate. A good example is ADSL home gateways that integrate wireless access (Wi-Fi, Bluetooth, etc.) to provide easily installable triple-play services (tele- phony, Internet, and television) in the home. Furthermore, an accepted phone call on your mobile can pause the program on the nearest , use its loudspeakers, and perhaps use the television screen for a video call or a video clip received in an MMS.

xv xvi Foreword

Most of these objects will have access to several interfaces of communi- cations (GPRS, Wi-Fi, Bluetooth) in order to be able to combine the services offered on every domain. The next step is the “always best connected” concept, assuming that a single object could discover the most favourable network and use it transparently for the service required at any time and in any location. This is also becoming a commercially available service in Korea and France. For instance, the telecom operator Orange has recently put on the market its “Unik” facility, which allows users Wi-Fi access without service disruption whenever available, with associated low fares, instead of UMTS or GSM used outdoors. Future services that will be available are body area networks (BANs), in which sensors and actuators need to communicate to send their information and to adapt their behaviour to the physical environment. Context-specific ap- plications, such as handicapped persons’ services, for instance, require new LANs that use energy sparingly, and can efficiently discover and communi- cate with transient neighbours such as RFID, biosensors, and biochips. New, currently designed services will need such properties. Billions of such sensors, captors, and activators will surround us and our personal assistants should be able to get the information across in time to provide us with useful enhanced services. Many of those tiny objects will have at their disposal very low energy capacity, and the choice for the optimal system design is still an open issue. This book provides a comprehensive description of IEEE802.11, also called Wi-Fi, Bluetooth, WiMAX, or ZigBee. In-depth descriptions of the protocols are provided. The authors possess a solid practical experience of these networks that appears clearly in the explanations and numerous outlines in the text. Security, service discovery, and operating system integration are critical issues discussed in this book. The authors have developed the important points of wireless networks des- cribing the profits and technical elements of each approach, and explaining the integration of the WLAN in the context of the Internet. Professors Hossam Afifi and Houda Labiod should be congratulated for their synthetic and very complete work.

Pierre Rolin Dean of Telecom INT Evry, France