Data Over Cable Service Interface Specification (DOCSIS) is an international telecommunications standard that permits the addition of high-bandwidth data transfer to an existing
cable television
Cable television is a system of delivering television programming to consumers via radio frequency (RF) signals transmitted through coaxial cables, or in more recent systems, light pulses through fibre-optic cables. This contrasts with broa ...
(CATV) system. It is used by many cable television operators to provide
cable Internet access
In telecommunications, cable Internet access, shortened to cable Internet, is a form of broadband Internet access which uses the same infrastructure as a cable television. Like digital subscriber line and fiber to the premises services, cable Inte ...
over their existing
hybrid fiber-coaxial
Hybrid fiber-coaxial (HFC) is a telecommunications industry term for a broadband network that combines optical fiber and coaxial cable. It has been commonly employed globally by cable television operators since the early 1990s.
In a hybrid fib ...
(HFC) infrastructure.
History
DOCSIS was originally developed by
CableLabs
Cable Television Laboratories, Inc. (CableLabs) is a nonprofit corporation promoting innovation as a research and development lab founded in 1988 by American cable operators. System operators from around the world are eligible to be members.
Th ...
and contributing companies, including
Arris
In architecture, an arris is the sharp edge formed by the intersection of two surfaces, such as the corner of a masonry unit; the edge of a timber in timber framing; the junction between two planes of plaster or any intersection of divergent a ...
,
BigBand Networks
BigBand Networks was a corporation headquartered in Redwood City, California, that opened in 1999 and specialized in selling multimedia technologies to cable television multi-system operators. It had its IPO on the Nasdaq in 2007, which was me ...
,
Broadcom
Broadcom Inc. is an American designer, developer, manufacturer and global supplier of a wide range of semiconductor and infrastructure software products. Broadcom's product offerings serve the data center, networking, software, broadband, wirel ...
,
Cisco
Cisco Systems, Inc., commonly known as Cisco, is an American-based multinational digital communications technology conglomerate corporation headquartered in San Jose, California. Cisco develops, manufactures, and sells networking hardware, ...
,
Comcast
Comcast Corporation (formerly known as American Cable Systems and Comcast Holdings),Before the AT&T merger in 2001, the parent company was Comcast Holdings Corporation. Comcast Holdings Corporation now refers to a subsidiary of Comcast Corpora ...
,
Conexant
Conexant Systems, Inc. was an American-based software developer and fabless semiconductor company that developed technology for voice and audio processing, imaging and modems. The company began as a division of Rockwell International, before ...
, Correlant,
Cox
Cox may refer to:
* Cox (surname), including people with the name
Companies
* Cox Enterprises, a media and communications company
** Cox Communications, cable provider
** Cox Media Group, a company that owns television and radio stations
** ...
,
Harmonic
A harmonic is a wave with a frequency that is a positive integer multiple of the ''fundamental frequency'', the frequency of the original periodic signal, such as a sinusoidal wave. The original signal is also called the ''1st harmonic'', the ...
,
Intel
Intel Corporation is an American multinational corporation and technology company headquartered in Santa Clara, California. It is the world's largest semiconductor chip manufacturer by revenue, and is one of the developers of the x86 seri ...
,
Motorola
Motorola, Inc. () was an American Multinational corporation, multinational telecommunications company based in Schaumburg, Illinois, United States. After having lost $4.3 billion from 2007 to 2009, the company split into two independent p ...
,
Netgear,
Terayon
Terayon Communication Systems, Inc. was a company that vended equipment to broadband service providers for delivering broadband voice, video and data services to residential and business subscribers.
History
Terayon was founded by Israeli brother ...
,
Time Warner Cable
Time Warner Cable, Inc. (TWC) was an American cable television company. Before it was acquired by Charter Communications on May 18, 2016, it was ranked the second largest cable company in the United States by revenue behind only Comcast, operat ...
, and
Texas Instruments
Texas Instruments Incorporated (TI) is an American technology company headquartered in Dallas, Texas, that designs and manufactures semiconductors and various integrated circuits, which it sells to electronics designers and manufacturers globall ...
.
Versions
;
: Released in March 1997, DOCSIS 1.0 included functional elements from preceding proprietary
cable modem
A cable modem is a type of network bridge that provides bi-directional data communication via radio frequency channels on a hybrid fibre-coaxial (HFC), radio frequency over glass (RFoG) and coaxial cable infrastructure. Cable modems are primaril ...
s.
;
: Released in April 1999, DOCSIS 1.1 standardized
quality of service
Quality of service (QoS) is the description or measurement of the overall performance of a service, such as a telephony or computer network, or a cloud computing service, particularly the performance seen by the users of the network. To quantitat ...
(QoS) mechanisms that were outlined in DOCSIS 1.0.
; (abbreviated D2)
: Released in December 2001, DOCSIS 2.0 enhanced upstream data rates in response to increased demand for symmetric services such as IP telephony.
; (abbreviated D3)
: Released in August 2006, DOCSIS 3.0 significantly increased data rates (both upstream and downstream) and introduced support for
Internet Protocol version 6
Internet Protocol version 6 (IPv6) is the most recent version of the Internet Protocol (IP), the communications protocol that provides an identification and location system for computers on networks and routes traffic across the Internet. IPv ...
(IPv6).
;
: First released in October 2013, and subsequently updated several times, the DOCSIS 3.1 suite of specifications support capacities of up to 10 Gbit/s downstream and 1 Gbit/s upstream using 4096
QAM
Quadrature amplitude modulation (QAM) is the name of a family of digital modulation methods and a related family of analog modulation methods widely used in modern telecommunications to transmit information. It conveys two analog message signa ...
. The new specifications eliminated 6 MHz and 8 MHz wide
channel spacing Channel spacing, also known as bandwidth, is a term used in radio frequency planning. It describes the frequency difference between adjacent allocations in a frequency plan. Channels for mediumwave
Medium wave (MW) is the part of the medium f ...
and instead use narrower (25 kHz or 50 kHz wide)
orthogonal frequency-division multiplexing (OFDM)
subcarrier
A subcarrier is a sideband of a radio frequency carrier wave, which is modulated to send additional information. Examples include the provision of colour in a black and white television system or the provision of stereo in a monophonic radio broa ...
s; these can be
bonded inside a block spectrum that could end up being about 200 MHz wide. DOCSIS 3.1 technology also includes
power-management features that will enable the cable industry to reduce its energy usage, and the DOCSIS-PIE algorithm to reduce
bufferbloat
Bufferbloat is a cause of high latency and jitter in packet-switched networks caused by excess buffering of packets. Bufferbloat can also cause packet delay variation (also known as jitter), as well as reduce the overall network throughput. ...
. In the
United States
The United States of America (U.S.A. or USA), commonly known as the United States (U.S. or US) or America, is a country primarily located in North America. It consists of 50 states, a federal district, five major unincorporated territorie ...
, broadband provider Comcast announced in February 2016 that several cities within its footprint will have DOCSIS 3.1 availability before the end of the year. At the end of 2016,
Mediacom
Mediacom Communications Corporation is the United States' fifth largest cable television provider based on the number of video subscribers, and among the leading cable operators focused on serving smaller cities and towns. The company has a s ...
announced it would become the first major U.S. cable company to fully transition to the DOCSIS 3.1 platform.
;
: Improves DOCSIS 3.1 to use the full spectrum of the cable plant (0 MHz to ~1.8 GHz) at the same time in both upstream and downstream directions. This technology enables multi-gigabit symmetrical services while retaining
backward compatibility
Backward compatibility (sometimes known as backwards compatibility) is a property of an operating system, product, or technology that allows for interoperability with an older legacy system, or with input designed for such a system, especially i ...
with DOCSIS 3.1. CableLabs released the full specification in October 2017. Previously branded as DOCSIS 3.1 Full Duplex, these technologies have been rebranded as part of DOCSIS 4.0.
Comparison
In 1994,
802.14 was chartered to develop a
media access control
In IEEE 802 LAN/MAN standards, the medium access control (MAC, also called media access control) sublayer is the layer that controls the hardware responsible for interaction with the wired, optical or wireless transmission medium. The MAC sublay ...
over an HFC. In 1995, Multimedia Cable Network System (MCNS) was formed. The original partners were
TCI,
Time Warner Cable
Time Warner Cable, Inc. (TWC) was an American cable television company. Before it was acquired by Charter Communications on May 18, 2016, it was ranked the second largest cable company in the United States by revenue behind only Comcast, operat ...
,
Comcast
Comcast Corporation (formerly known as American Cable Systems and Comcast Holdings),Before the AT&T merger in 2001, the parent company was Comcast Holdings Corporation. Comcast Holdings Corporation now refers to a subsidiary of Comcast Corpora ...
, and
Cox
Cox may refer to:
* Cox (surname), including people with the name
Companies
* Cox Enterprises, a media and communications company
** Cox Communications, cable provider
** Cox Media Group, a company that owns television and radio stations
** ...
. Later,
Continental Cable and
Rogers Rogers may refer to:
Places
Canada
*Rogers Pass (British Columbia)
* Rogers Island (Nunavut)
United States
* Rogers, Arkansas, a city
* Rogers, alternate name of Muroc, California, a former settlement
* Rogers, Indiana, an unincorporated communit ...
joined the group. In June 1996,
SCTE formed the Data Standards Subcommittee to begin work on establishing national standards for high-speed data over cable plant. July 1997: SCTE DSS voted in the affirmative on document DSS 97-2. This standard is based on the well-know
DOCSISspecification. The standard was also submitted to International Telecommunication Union Telecommunications Standardization Sector (ITU-T) and has been adopted as ITU-T J.112 Annex B.
European alternative
As frequency allocation bandwidth plans differ between United States and European
CATV
Cable television is a system of delivering television programming to consumers via radio frequency (RF) signals transmitted through coaxial cables, or in more recent systems, light pulses through fibre-optic cables. This contrasts with broadc ...
systems, DOCSIS standards earlier than 3.1 have been modified for use in Europe. These modifications were published under the name EuroDOCSIS. The differences between the bandwidths exist because European cable TV conforms to
PAL
Phase Alternating Line (PAL) is a colour encoding system for analogue television. It was one of three major analogue colour television standards, the others being NTSC and SECAM. In most countries it was broadcast at 625 lines, 50 fields (25 ...
/
DVB-C standards of 8 MHz RF channel bandwidth and North American cable TV conforms to
NTSC
The first American standard for analog television broadcast was developed by National Television System Committee (NTSC)National Television System Committee (1951–1953), Report and Reports of Panel No. 11, 11-A, 12–19, with Some supplement ...
/
ATSC
Advanced Television Systems Committee (ATSC) standards are an American set of standards for digital television transmission over terrestrial, cable and satellite networks. It is largely a replacement for the analog NTSC standard and, like that ...
standards which specify 6 MHz per channel. The wider channel bandwidth in EuroDOCSIS architectures permits more bandwidth to be allocated to the downstream data path (toward the user). EuroDOCSIS certification testing is executed by Belgian company Excentis (formerly known as tComLabs), while DOCSIS certification testing is executed by CableLabs. Typically,
customer premises equipment
In telecommunications, a customer-premises equipment or customer-provided equipment (CPE) is any terminal and associated equipment located at a subscriber's premises and connected with a carrier's telecommunication circuit at the demarcation po ...
receives "certification", while CMTS equipment receives "qualification".
International standards
The
ITU Telecommunication Standardization Sector
The ITU Telecommunication Standardization Sector (ITU-T) is one of the three sectors (divisions or units) of the International Telecommunication Union (ITU). It is responsible for coordinating standards for telecommunications and Information Comm ...
(ITU-T) has approved the various versions of DOCSIS as international standards. DOCSIS 1.0 was ratified as ITU-T Recommendation J.112 Annex B (1998), but it was superseded by DOCSIS 1.1 which was ratified as ITU-T Recommendatio
J.112Annex B (2001). Subsequently, DOCSIS 2.0 was ratified as ITU-T Recommendatio
J.122 Most recently, DOCSIS 3.0 was ratified as ITU-T Recommendation J.222
J.222.0J.222.1J.222.2J.222.3.
Note: While ITU-T Recommendation J.112 Annex B corresponds to DOCSIS/EuroDOCSIS 1.1, Annex A describes an earlier European cable modem system ("
DVB
Digital Video Broadcasting (DVB) is a set of international open standards for digital television. DVB standards are maintained by the DVB Project, an international industry consortium, and are published by a Joint Technical Committee (JTC) o ...
EuroModem") based on ATM transmission standards. Annex C describes a variant of DOCSIS 1.1 that is designed to operate in Japanese cable systems. The ITU-T Recommendation J.122 main body corresponds to DOCSIS 2.0, J.122 Annex F corresponds to EuroDOCSIS 2.0, and J.122 Annex J describes the Japanese variant of DOCSIS 2.0 (analogous to Annex C of J.112).
Features
DOCSIS provides great variety in options available at
Open Systems Interconnection
The Open Systems Interconnection model (OSI model) is a conceptual model that 'provides a common basis for the coordination of SOstandards development for the purpose of systems interconnection'. In the OSI reference model, the communicatio ...
(OSI) layers 1 and 2, the
physical
Physical may refer to:
*Physical examination
In a physical examination, medical examination, or clinical examination, a medical practitioner examines a patient for any possible medical signs or symptoms of a medical condition. It generally co ...
and
data link
A data link is the means of connecting one location to another for the purpose of transmitting and receiving digital information (data communication). It can also refer to a set of electronics assemblies, consisting of a transmitter and a recei ...
layers.
Physical layer
* Channel width:
** Downstream: All versions of DOCSIS earlier than 3.1 use either 6 MHz channels (e.g. North America) or 8 MHz channels ("EuroDOCSIS"). DOCSIS 3.1 uses channel bandwidths of up to 192 MHz in the downstream.
** Upstream: DOCSIS 1.0/1.1 specifies channel widths between 200 kHz and 3.2 MHz. DOCSIS 2.0 & 3.0 specify 6.4 MHz, but can use the earlier, narrower channel widths for backward compatibility. DOCSIS 3.1 uses channel bandwidths of up to 96 MHz in the upstream.
* Modulation:
** Downstream: All versions of DOCSIS prior to 3.1 specify that 64-level or 256-level
QAM
Quadrature amplitude modulation (QAM) is the name of a family of digital modulation methods and a related family of analog modulation methods widely used in modern telecommunications to transmit information. It conveys two analog message signa ...
(64-QAM or 256-QAM) be used for modulation of downstream data, using the
ITU-T
The ITU Telecommunication Standardization Sector (ITU-T) is one of the three sectors (divisions or units) of the International Telecommunication Union (ITU). It is responsible for coordinating standards for telecommunications and Information Commu ...
J.83-Annex B standard for 6 MHz channel operation, and the
DVB-C modulation standard for 8 MHz (EuroDOCSIS) operation. DOCSIS 3.1 adds 16-QAM, 128-QAM, 512-QAM, 1024-QAM, 2048-QAM and 4096-QAM, with optional support of 8192-QAM/16384-QAM.
** Upstream: Upstream data uses
QPSK
Phase-shift keying (PSK) is a digital modulation process which conveys data by changing (modulating) the phase of a constant frequency reference signal (the carrier wave). The modulation is accomplished by varying the sine and cosine inputs at ...
or 16-level QAM (16-QAM) for DOCSIS 1.x, while QPSK, 8-QAM, 16-QAM, 32-QAM, and 64-QAM are used for DOCSIS 2.0 & 3.0. DOCSIS 2.0 & 3.0 also support 128-QAM with
trellis coded modulation
In telecommunication, trellis modulation (also known as trellis coded modulation, or simply TCM) is a modulation scheme that transmits information with high efficiency over band-limited channels such as telephone lines. Gottfried Ungerboeck inven ...
in
S-CDMA mode (with an effective
spectral efficiency
Spectral efficiency, spectrum efficiency or bandwidth efficiency refers to the information rate that can be transmitted over a given bandwidth in a specific communication system. It is a measure of how efficiently a limited frequency spectrum is ut ...
equivalent to that of 64-QAM). DOCSIS 3.1 supports data modulations from QPSK up to 1024-QAM, with optional support for 2048-QAM and 4096-QAM.
Data link layer
* DOCSIS employs a mixture of deterministic access methods for upstream transmissions, specifically
TDMA for DOCSIS 1.0/1.1 and both TDMA and
S-CDMA for DOCSIS 2.0 and 3.0, with a limited use of contention for bandwidth requests. Because of this, DOCSIS systems experience relatively few collisions, in contrast to the pure contention-based MAC
CSMA/CD
Carrier-sense multiple access with collision detection (CSMA/CD) is a medium access control (MAC) method used most notably in early Ethernet technology for local area networking. It uses carrier-sensing to defer transmissions until no other statio ...
employed in older
Ethernet
Ethernet () is a family of wired computer networking technologies commonly used in local area networks (LAN), metropolitan area networks (MAN) and wide area networks (WAN). It was commercially introduced in 1980 and first standardized in 198 ...
systems (of course, there is no contention in
switched Ethernet
A network switch (also called switching hub, bridging hub, and, by the IEEE, MAC bridge) is networking hardware that connects devices on a computer network by using packet switching to receive and forward data to the destination device.
A netw ...
).
* For DOCSIS 1.1 and above, the data layer also includes extensive
quality-of-service
Quality of service (QoS) is the description or measurement of the overall performance of a service, such as a telephony or computer network, or a cloud computing service, particularly the performance seen by the users of the network. To quantitat ...
(QoS) features that help to efficiently support applications that have specific traffic requirements such as low latency, e.g.
voice over IP
Voice over Internet Protocol (VoIP), also called IP telephony, is a method and group of technologies for the delivery of speech, voice communications and multimedia sessions over Internet Protocol (IP) networks, such as the Internet. The terms In ...
.
* DOCSIS 3.0 features
channel bonding
In computer networking, link aggregation is the combining ( aggregating) of multiple network connections in parallel by any of several methods, in order to increase throughput beyond what a single connection could sustain, to provide redundan ...
, which enables multiple downstream and upstream channels to be used together at the same time by a single subscriber.
Throughput
The first three versions of the DOCSIS standard support a downstream throughput with 256-QAM of up to 42.88 Mbit/s per 6 MHz channel (approximately 38 Mbit/s after overhead), or 55.62 Mbit/s per 8 MHz channel for EuroDOCSIS (approximately 50 Mbit/s after overhead). The upstream throughput possible is 30.72 Mbit/s per 6.4 MHz channel (approximately 27 Mbit/s after overhead), or 10.24 Mbit/s per 3.2 MHz channel (approximately 9 Mbit/s after overhead).
DOCSIS 3.1 supports a downstream throughput with 4096-QAM and 25 kHz subcarrier spacing of up to 1.89 Gbit/s per 192 MHz OFDM channel. The upstream throughput possible is 0.94 Gbit/s per 96 MHz
OFDMA
Orthogonal frequency-division multiple access (OFDMA) is a multi-user version of the popular orthogonal frequency-division multiplexing (OFDM) digital modulation scheme. Multiple access is achieved in OFDMA by assigning subsets of subcarriers to ...
channel.
Network layer
* DOCSIS modems are managed via an
Internet Protocol
The Internet Protocol (IP) is the network layer communications protocol in the Internet protocol suite for relaying datagrams across network boundaries. Its routing function enables internetworking, and essentially establishes the Internet.
IP h ...
(IP) address.
* The 'DOCSIS 2.0 + IPv6' specification allowed support for IPv6 on DOCSIS 2.0 modems via a firmware upgrade.
* DOCSIS 3.0 added management over
IPv6
Internet Protocol version 6 (IPv6) is the most recent version of the Internet Protocol (IP), the communication protocol, communications protocol that provides an identification and location system for computers on networks and routes traffic ...
.
Throughput
Maximum raw throughput including overhead, (maximum
payload
Payload is the object or the entity which is being carried by an aircraft or launch vehicle. Sometimes payload also refers to the carrying capacity of an aircraft or launch vehicle, usually measured in terms of weight. Depending on the nature of ...
throughput after overhead). Tables assume 256-QAM modulation for downstream and 64-QAM for upstream on DOCSIS 3.0, and 4096-QAM modulation for OFDM/OFDMA (first downstream/upstream methods) on DOCSIS 3.1, although real-world data rates may be lower due to variable modulation depending on SNR. Higher data rates are possible but require higher order QAM schemes which require higher downstream
modulation error ratio The modulation error ratio or MER is a measure used to quantify the performance of a digital radio (or digital TV) transmitter or receiver in a communications system using digital modulation (such as QAM). A signal sent by an ideal transmitter or r ...
(MER). DOCSIS 3.1 was designed to support up to 8192-QAM/16,384-QAM, but only support of up through 4096-QAM is mandatory to meet the minimum DOCSIS 3.1 standards.
For DOCSIS 3.0, the theoretical maximum throughput for the number of bonded channels are listed in the table below.
Note that the number of channels a cable system can support is dependent on how the cable system is set up. For example, the amount of available bandwidth in each direction, the width of the channels selected in the upstream direction, and hardware constraints limit the maximum amount of channels in each direction.
Note that the maximum downstream bandwidth on all versions of DOCSIS depends on the version of DOCSIS used and the number of upstream channels used if DOCSIS 3.0 is used, but the upstream channel widths are independent of whether DOCSIS or EuroDOCSIS is used.
Upstream
Traditional DOCSIS upstream in North America uses the 5–42 MHz frequency range. The 5–65 MHz range is used by EuroDOCSIS. This is known as a "low-split" or "sub-split" design, capable of a total shared capacity of ~108 Mbps upstream (assuming 4 SC-QAM upstream channels).
In recent years, cable operators have begun to increase the amount of bandwidth dedicated to the upstream. The two most popular options for this include a "mid-split" or "high-split".
A mid-split increases the upstream frequency range to 5–85 MHz, supporting a total shared upstream capacity of ~450 Mbps (assuming 4 SC-QAM + OFDMA channels).
A high-split increases the upstream frequency range to 5–204 MHz, supporting a total shared upstream capacity of ~1.5 Gbps (assuming 4 SC-QAM + OFDMA channels).
DOCSIS 4.0 in both full-duplex (FDX) and extended spectrum DOCSIS (ESD) configurations will support upstream speeds surpassing 5 Gbps.
Equipment
A DOCSIS architecture includes two primary components: a cable modem located at the customer premises, and a
cable modem termination system
A cable modem termination system (CMTS) is a piece of equipment, typically located in a cable company's headend or hubsite, which is used to provide high speed data services, such as cable Internet or Voice over Internet Protocol, to cable subsc ...
(CMTS) located at the CATV headend. Cable systems supporting on-demand programming use a
hybrid fiber-coaxial system. Fiber optic lines bring digital signals to
nodes
In general, a node is a localized swelling (a "knot") or a point of intersection (a Vertex (graph theory), vertex).
Node may refer to:
In mathematics
*Vertex (graph theory), a vertex in a mathematical graph
*Vertex (geometry), a point where two ...
in the system where they are converted into RF channels and modem signals on coaxial trunk lines.
The customer PC and associated peripherals are termed
customer-premises equipment
In telecommunications, a customer-premises equipment or customer-provided equipment (CPE) is any terminal and associated equipment located at a subscriber's premises and connected with a carrier's telecommunication circuit at the demarcation poi ...
(CPE). The CPE are connected to the cable modem, which is in turn connected through the HFC network to the CMTS. The CMTS then routes traffic between the HFC and the Internet. Using the CMTS, the cable operator (or Multiple Service Operators — MSO) exercises full control over the cable modem's configuration; the CM configuration is changed to adjust for varying line conditions and customer service requirements.
DOCSIS 2.0 is also used over microwave frequencies (10 GHz) in Ireland by
Digiweb
Digiweb is a telecommunications company in Ireland, supplying business and consumer broadband and web hosting.
Digiweb is 100% Irish-owned and run, and is headquartered in Dundalk, County Louth, with its technical, installation and sales offic ...
, using dedicated wireless links rather than HFC network. At each subscriber premises the ordinary CM is connected to an antenna box which converts to/from microwave frequencies and transmits/receives on 10 GHz. Each customer has a dedicated link but the transmitter mast must be in line of sight (most sites are hilltop).
The DOCSIS architecture is also used for fixed wireless with equipment using the 2.5–2.7 GHz
Multichannel Multipoint Distribution Service (MMDS) microwave band in the U.S.
Security
DOCSIS includes
media access control
In IEEE 802 LAN/MAN standards, the medium access control (MAC, also called media access control) sublayer is the layer that controls the hardware responsible for interaction with the wired, optical or wireless transmission medium. The MAC sublay ...
(MAC) layer security services in its Baseline Privacy Interface specifications. DOCSIS 1.0 used the initial Baseline Privacy Interface (BPI) specification. BPI was later improved with the release of the Baseline Privacy Interface Plus (BPI+) specification used by DOCSIS 1.1 and 2.0. Most recently, a number of enhancements to the Baseline Privacy Interface were added as part of DOCSIS 3.0, and the specification was renamed "Security" (SEC).
The intent of the BPI/SEC specifications is to describe MAC layer security services for DOCSIS CMTS to cable modem communications. BPI/SEC security goals are twofold:
* Provide cable modem users with
data privacy
Information privacy is the relationship between the collection and dissemination of data, technology, the public expectation of privacy, contextual information norms, and the legal and political issues surrounding them. It is also known as data pr ...
across the cable network
* Provide cable service operators with service protection (i.e. prevent unauthorized modems and users from gaining access to the network's RF MAC services)
BPI/SEC is intended to prevent cable users from listening to each other. It does this by
encrypting
In cryptography, encryption is the process of Code, encoding information. This process converts the original representation of the information, known as plaintext, into an alternative form known as ciphertext. Ideally, only authorized parties can ...
data flows between the CMTS and the cable modem. BPI and BPI+ use 56-bit
Data Encryption Standard
The Data Encryption Standard (DES ) is a symmetric-key algorithm for the encryption of digital data. Although its short key length of 56 bits makes it too insecure for modern applications, it has been highly influential in the advancement of cry ...
(DES) encryption, while SEC adds support for 128-bit
Advanced Encryption Standard
The Advanced Encryption Standard (AES), also known by its original name Rijndael (), is a specification for the encryption of electronic data established by the U.S. National Institute of Standards and Technology (NIST) in 2001.
AES is a variant ...
(AES). The AES key, however, is protected only by a 1024-bit RSA key.
CM-SP-SECv3.0-I15-130808
p. 87.
BPI/SEC is intended to allow cable service operators to refuse service to uncertified cable modems and unauthorized users. BPI+ strengthened service protection by adding digital certificate
In cryptography, a public key certificate, also known as a digital certificate or identity certificate, is an electronic document used to prove the validity of a Key authentication, public key. The certificate includes information about the key, i ...
based authentication to its key exchange
Key exchange (also key establishment) is a method in cryptography by which cryptographic keys are exchanged between two parties, allowing use of a cryptographic algorithm.
If the sender and receiver wish to exchange encrypted messages, each ...
protocol, using a public key infrastructure
A public key infrastructure (PKI) is a set of roles, policies, hardware, software and procedures needed to create, manage, distribute, use, store and revoke digital certificates and manage public-key encryption. The purpose of a PKI is to facilit ...
(PKI), based on digital certificate authorities (CAs) of the certification testers, currently Excentis (formerly known as tComLabs) for EuroDOCSIS and CableLabs for DOCSIS. Typically, the cable service operator manually adds the cable modem's MAC address
A media access control address (MAC address) is a unique identifier assigned to a network interface controller (NIC) for use as a network address in communications within a network segment. This use is common in most IEEE 802 networking techno ...
to a customer's account with the cable service operator; and the network allows access only to a cable modem that can attest to that MAC address using a valid certificate issued via the PKI. The earlier BPI specification (ANSI/SCTE 22-2) had limited service protection because the underlying key management
Key management refers to management of cryptographic keys in a cryptosystem. This includes dealing with the generation, exchange, storage, use, crypto-shredding (destruction) and replacement of keys. It includes cryptographic protocol design, ...
protocol did not authenticate
Authentication (from ''authentikos'', "real, genuine", from αὐθέντης ''authentes'', "author") is the act of proving an assertion, such as the identity of a computer system user. In contrast with identification, the act of indicatin ...
the user's cable modem.
Security in the DOCSIS network is vastly improved when only business critical communications are permitted, and end user communication to the network infrastructure is denied. Successful attacks often occur when the CMTS is configured for backward compatibility with early pre-standard DOCSIS 1.1 modems. These modems were "software upgradeable in the field", but did not include valid DOCSIS or EuroDOCSIS root certificates.
See also
* Data cable
A data cable is any media that allows baseband transmissions (binary 1s and 0s) from a transmitter to a receiver.
Examples Are:
*Networking Media
**Ethernet Cables ( Cat5, Cat5e, Cat6, Cat6a)
**Token Ring Cables ( Cat4)
** Coaxial cable is some ...
* DOCSIS Set-top Gateway
DOCSIS Set-top Gateway (or DSG) is a specification describing how out-of-band data is delivered to a cable set-top box. Cable set-top boxes need a reliable source of out of band data for information such as program guides, channel lineups, and up ...
* Ethernet over coax
Ethernet over Coax (EoC) is a family of technologies that supports the transmission of Ethernet frames over coaxial cable.
History
The first Ethernet standard, known as 10BASE5 (ThickNet) in the family of IEEE 802.3, specified baseband oper ...
* List of device bandwidths
This is a list of interface bit rates, is a measure of information transfer rates, or digital bandwidth capacity, at which digital interfaces in a computer or network can communicate over various kinds of buses and channels. The distinction can ...
* Multimedia over Coax Alliance
The Multimedia over Coax Alliance (MoCA) is an international standards consortium that publishes specifications for networking over coaxial cable. The technology was originally developed to distribute IP television in homes using existing cabl ...
References
{{Reflist
External links
DOCSIS 3.1
This Rohde & Schwarz application note discusses the fundamental technological advances of DOCSIS 3.1.
DOCSIS Tutorial
(2009) at Volpe Firm
Specifications
DOCSIS 1.0 specifications
DOCSIS 1.1 specifications
DOCSIS 2.0 specifications
DOCSIS 3.0 specifications
DOCSIS 3.1 specifications
DOCSIS 4.0 specifications
Cable television technology
Digital cable
ITU-T recommendations
Link protocols
Telecommunications-related introductions in 1997