User's Guide Part 1
System management Chapter 1 Product description
phn-0896_009v003
1-48
UNDER DEVELOPMENT
Feb 2010
AES license
PTP 600 provides optional encryption using the Advanced Encryption Standard (AES).
Encryption is not available in the standard PTP 600 system.
AES upgrades are supplied as an access key purchased from your Motorola Point-to-
Point distributor or solutions provider. The access key authorizes AES operation for
one ODU. Two access keys are needed to operate AES on a link. The upgrade is
applied by entering an access key together with the MAC address of the target ODU
into the PTP License Key Generator web page, which may be accessed from
http://www.motorola.com/ptp/support
.
The License Key Generator creates a new license key that is delivered by email. The
license key must be installed on the ODU. When the license key is installed, the ODU
must be rebooted before AES can be enabled. Once applied, the AES upgrade is bound
to a single ODU and is not transferrable.
AES encryption may be used in the following ways:
• At the wireless port to encrypt data transmitted over the wireless link.
• At the SNMP management interface in the SNMPv3 mode.
• At the HTTP management interface in the TLS mode.
Two levels of encryption are available to purchase:
• 128-bit: This allows an operator to encrypt all traffic sent over the wireless link
using 128-bit encryption.
• 256-bit: This allows an operator to encrypt traffic using either 128-bit or 256-bit
encryption.
Encryption must be configured with the same size key in each direction.
AES encryption at the PTP 600 wireless port is based on pre-shared keys. An identical
key must be entered at each end of the link.
AES encryption for SNMPv3 or TLS is always based on a 128-bit key, regardless of
level enabled in the PTP 600 license key.
For more information, see:
• Upgrading the PTP 600 on
page 6-77.
• Enabling AES encryption at the wireless interface on
page 6-96.