Like most data communications, WiMAX relies on a process consisting of a session setup and authentication. The RLC manages and monitors the quality of the service flow. With WiMAX, this process is a series of exchanges (DLs and ULs) between the BS and SS. A complex process determines what FDD and TDD settings will be used for the service flow, FEC, sets encryption, bandwidth requests, burst profiles, and so on. The process starts with channel acquisition by the newly installed SS.
Channel Acquisition
The MAC protocol includes an initialization procedure designed to eliminate the need for manual configuration. In other words, the subscriber takes the SS out of the box, plugs in power and Ethernet, and connects almost immediately to the network. The following paragraphs describe how that is possible without laborious user setup or service provider truck roll.
Upon installation, the SS begins scanning its frequency list to find an operating channel. It may be preconfigured by the service provider to register with a specified BS. This feature is useful in dense deployments where the SS might hear a secondary BS due to spurious signals or when the SS picks up a sidelobe of a nearby BS antenna. Moreover, this feature will help service providers avoid expensive installations and subsequent truck rolls.
After selecting a channel or channel pair, the SS synchronizes to the DL transmission from the BS by detecting the periodic frame preambles. Once the PHY is synchronized, the SS will look for the periodically broadcasted DCD and UCD messages that enable the SS to determine the modulation and FEC schemes used on the BS's carrier.
Initial Ranging and Negotiation of SS Capabilities
Once the parameters for initial ranging transmissions are established, the SS will scan the UL-MAP messages present in every frame for ranging information. The SS uses a backoff algorithm to determine which initial ranging slot it will use to send a ranging request (RNG-REQ) message. The SS will then send its burst using the minimum power setting and will repeat with increasingly higher transmission power until it receives a ranging response.
Based on the arrival time of the initial RNG-REQ and the measured power of the signal, the BS adjusts the timing advance and power to the SS with the ranging response (RNG-RSP). The response provides the SS with the basic and primary management CIDs. Once the timing advance of the SS transmissions has been correctly determined, the ranging procedure for fine-tuning the power is done via a series of invited transmissions.
WiMAX transmissions are made using the most robust burst profile. To save bandwidth, the SS next reports its PHY capabilities, including which modulation and coding schemes it supports and whether, in an FDD system, it is half-duplex or full-duplex. The BS, in its response, can deny the use of any capability reported by the SS. See Figure 1 for an illustration of this process.
It should be noted here how complex this setup procedure is. The purpose thus far is to ensure a high quality connection between the SS and the BS.
SS Authentication and Registration
Wi-Fi has been dogged with a reputation for lax security. Perhaps the best "horror story" deals with a computer retailer who installed a wireless LAN. A customer purchased a Wi-Fi equipped laptop and, anxious to enjoy it, powered it up in the parking lot of the retailer. The new laptop owner was immediately able to tap into the retailer's Wi-Fi network and was able to capture some customer credit card information. Fortunately, the new laptop owner was a journalist, not a con artist. The story, much to the chagrin of the national retailer and the Wi-Fi industry, made the national news. The Wi-Fi industry has had to work hard to shake the reputation of having loose security measures. A similar story will not easily, if ever, occur with WiMAX.
Each SS contains both a manufacturer-issued factory-installed X.509 digital certificate and the certificate of the manufacturer. The SS in the Authorization Request and Authentication Information messages sends these certificates, which set up the link between the 48-bit MAC address of the SS and its public RSA key, to the BS. The network is able to verify the identity of the SS by checking the certificates and can subsequently check the level of authorization of the SS. If the SS is authorized to join the network, the BS will respond to its request with an authorization reply containing an authorization key (AK) encrypted with the SS's public key and used to secure further transactions.
Upon successful authorization, the SS will register with the network. This will establish the secondary management connection of the SS and determine capabilities related to connection setup and MAC operation. The version of IP used on the secondary management connection is also determined during registration.
IP Connectivity
After registration, the SS attains an IP address via DHCP and establishes the time of day via the Internet Time Protocol. The DHCP server also provides the address of the TFTP server from which the SS can request a configuration file. This file provides a standard interface for providing vendor-specific configuration information. Se Figure 2 for an illustration of this process.
Connection Setup
Now comes the connection setup, where data (the content) actually flows. WiMAX uses the concept of service flows to define one-way transport of packets on either the DL or the UL. Service flows are characterized by a set of QoS parameters, such as those for latency and jitter. To most efficiently utilize network resources, such as bandwidth and memory, WiMAX adopts a two-phase activation model in which resources assigned to a particular admitted service flow may not be actually committed until the service flow is activated. Each admitted or active service flow is mapped to a MAC connection with a unique CID. In general, service flows in WiMAX are preprovisioned, and the BS initiates the setup of the service flows during SS initialization.
In addition, the BS or the SS can dynamically establish service flows. The SS typically initiates service flows only if there is a dynamically signaled connection, such as a switched virtual connection (SVC) from an ATM network. The establishment of service flows is performed via a three-way handshaking protocol in which the request for service flow establishment is responded to and the response acknowledged.
In addition to supporting dynamic service establishment, WiMAX supports dynamic service changes in which service flow parameters are renegotiated. These service flow changes follow a three-way handshaking protocol similar to the one dynamic service flow establishment uses.