Embed Size (px)
Citation preview
AGI IT 15/16 ASSIGNMENT HANDOUTFinal ProjectRe-imagining an Airport IT Infrastructure Due Date: January 6, 2016
InstructionsRecommended Work Methodology
• Start by reading/analyzing the recommended documents on the subject that you can find in(www.alcatel-lucent.com):
1. Re-imagining the airport network for 2020 and beyond2. Aviation Diagram
• Make a research on the technologies, products and solutions related with the IT infrastruc-tures applicable in the context of airports.
• Develop a suitable set of Requirements and sketch the IT infrastructure diagrams.
• Elaborate and describe the technologies/solutions you would recommend as suitable.
• Try to create a demonstration in the Lab environment of the usage of such technologies orproducts in a simple configuration.
Writing your Report: Use the LATEX template “IST-PROJECT-REPORT” that will be available atwww.overleaf.com to write your Report. The correct URL of the template is announced in coursewebsite.
Submission of your work: Please follow the instructions in the course website.
1 Introduction
Airports are like a condensed “smart city” housing. Hundreds or even thousands ofenterprises are tenants of these infrastructures, such as:
• Airlines,
• Shops,
• Restaurants,
• Service companies,
• Government agencies (Air Traffic Control, Customs and Border Control),
• Public safety organizations (Police, Firefighters, etc).
Millions of passengers pass through Airports each year, and up to tens of thousandsof employees work there. Additionally, Airports are unusually demanding environmentsfor technology. Tenants are constantly moving from one location to the next.
1
AGI IT 15/16 ASSIGNMENT HANDOUTFinal ProjectRe-imagining an Airport IT Infrastructure Due Date: January 6, 2016
8
Airport LayoutThe general layout of an airport consists of three areas, generally referred to as airside, landside and terminal, which have their ownspecial requirements. Though there are other important areas in theairport infrastructure (i.e. all-cargo area, general aviation, etc.) theyare not detailed in this section.The airside of an airport is where the operations of the aircrafts takeplace. Typically, the airside is beyond the screening checkpoints andrestricting perimeters (fencing, walls) and includes runways, taxiways, aprons, aircraft parking and most facilities which serviceand maintain aircraft. Airside security relies on physical barriers, identification and access control systems, surveillance or detection equipment, the implementation of security procedures, and efficient use of resources. These security measures prevent risks of unauthorizedaccess to, attacks on, or the introduction of dangerous devicesaboard, passenger aircraft.
>>
The landside of an airport is the area where there is no specific restriction of access. Typically, the landside facilities include publicparking areas, public access roadways, rental car facilities, taxi andground transportation staging areas, and any on-airport hotel facilities. Some critical assets, clear areas and communication requirementsneeds particular security measures implemented in the landside,such as an airside fence, aircraft approach glide slopes, communications and navigational equipment locations and non-interference areas, and heightened security in some buildings. Landside monitoring areas should include terminal curbside areas,parking garages, public transportation areas, loading docks and service tunnels. Life safety measures could include duress alarms,emergency phones and medical equipment.An airport terminal is designed to accommodate the enplaning anddeplaning activities of passengers. The terminal is typically the areaof the airport with the most security, safety and operational requirements.
Figure 1: Airport Layout
1.1 Airport Layout
The general layout of an airport (Fig. 1) consists of three areas, generally referred to asAirside, Landside and Terminal, which have their own special requirements.
The Airside of an airport is where the operations of the aircrafts take place. Typically,the Airside is beyond the screening checkpoints and restricting perimeters (fencing,walls) and includes runways, taxiways, aprons, aircraft parking and most facilities whichservice and maintain aircraft.
The Landside of an airport is the area where there is no specific restriction of ac-cess. Typically, the Landside facilities include public parking areas, public access road-ways, rental car facilities, taxi and ground transportation staging areas, and any on-airport hotel facilities.
An airport Terminal is designed to accommodate the enplaning and deplaning ac-tivities of passengers. The Terminal is typically the area of the airport with the mostsecurity, safety and operational requirements.
1.2 IT Infrastructures
IT infrastructures (namely, communication networks) are vital to the operation of anyairport. They support business and life-dependent operational systems, while also pro-viding timely management data to support decision-making. In recent years, the numberof network applications specific to the air travel industry has grown dramatically, far be-yond traditional data and voice.
2
AGI IT 15/16 ASSIGNMENT HANDOUTFinal ProjectRe-imagining an Airport IT Infrastructure Due Date: January 6, 2016
For more information, visit commscope.com 3
datacenter
HVAC, energy,lightingcontrols
card access
baggagehandling
airlineback office
businesslounge with Internet
air traffic controlsystems
hangarsystems,includingaccess, FAA, data
card access
cctv
intelligent runway lighting
card access
Wi-Fihotspots
cctv
GIDSdata/voice
baggagehandling
courtesyannouncementsystem
FLS
retail shop point-of-sale
x-rayhandlingsystems
securitysystems
biometrics
digital signage
immigration
courtesy announcement system
TIDS FIDS
BIDS
baggagehandling
customs/excise
customerreservationsystem
data/voice
electronic check-in points
FIDS FIDS FIDS
Figure 2: Airport areas
3
AGI IT 15/16 ASSIGNMENT HANDOUTFinal ProjectRe-imagining an Airport IT Infrastructure Due Date: January 6, 2016
Some applications are driven by trends, like electronic check-in points, intelligentrunway lighting and biometric security / immigration control (Fig. 2). Others supportor enhance the functionality of the contemporary airport environment, from booking totakeoff, from retail stores to baggage carousels.
Customer Interfacing
• Data
• Voice
• Point-of-sale devices
• Check-in desks
• Customer reservation systems
Environment
• Wi-Fi hotspots
• Business lounges: Internet access
• Energy management systems (HVAC)
• Lighting control systems
• Retail shops
Directional Aids
• Digital signage
• Passenger information systems
• Flight information display systems (FIDS)
• Baggage information display systems (BIDS)
• Travel information display systems (TIDS)
• Gate information display systems (GIDS)
• Courtesy announcement systems
• Vehicle ow monitoring and control
Flight Support
• Baggage handling systems
4
AGI IT 15/16 ASSIGNMENT HANDOUTFinal ProjectRe-imagining an Airport IT Infrastructure Due Date: January 6, 2016
• Air traffic control systems
• Airlines back-office systems
• Airline cargo systems
• Airlines hangar systems
• Flight plan ling systems
• Weather forecasting and informational systems
Security
• Security systems
• X-ray systems
• Immigration access systems
• Customs and excise related systems
• Fire-Life-Safety (FLS) systems
• Access controls systems (CCTV, card access)
• Vehicle flow monitoring and control
• Police, Fire and Medical dispatching
To accommodate today’s broad communication needs, Airport operators have typi-cally deployed multiple separate networks:
• a communications network for air traffic management,
• a communications network for CCTV video protection,
• a communications network for private mobile radio/land mobile radio (PMR/LMR)and emergency communications,
• a communications network for LAN/Wi-Fi.
The result is a plethora of infrastructures and networks built with different technolo-gies and managed by disparate managers.
The challenge for the future is clear: To prepare the airport infrastructure for growthtoward 2020 and beyond, a transformation to a converged infrastructure is a must. Thattransformation will enable airport IT infrastructure operators to tackle the projected in-crease in air traffic, adopt next-generation, bandwidth-intensive applications, includinghigh-resolution video, in addition to facilitating collaboration in order to achieve higherefficiency. Figure 3 represens an airport network transformation blueprint.
5
AGI IT 15/16 ASSIGNMENT HANDOUTFinal ProjectRe-imagining an Airport IT Infrastructure Due Date: January 6, 2016
Additionally, to meet future application needs, the communications network mustscale in capacity, control plane, and link bandwidth, with strong resiliency for high sur-vivability, as any airport network outage entails operations disruption and economic lossthat can even impact airport and flight safety.
2Re-imagining the airport network for 2020 and beyond Alcatel-Lucent Strategic White Paper
Figure 1. Transforming multiple networks into a converged network
From: Disparate single service networks To: Converged service network
Transformation
Modernizing networks for growthThe transformation to a converged network enables operators to tackle the projected increase in air traffic, adopt next-generation, bandwidth-intensive applications, including high-resolution video—in addition to facilitating collaboration in order to achieve higher efficiency. A service-aware, converged IP/MPLS network integrated with a transport layer, such as packet microwave and dense wavelength division multiplexing (DWDM), permits flexible deployment while also assuring sufficient bandwidth for future growth in demand. Figure 2 represents an airport network transformation blueprint. The blueprint depicts a service-aware, IP/MPLS network layered on state-of-the-art packet microwave and DWDM optics technology. A service-aware capability is particularly crucial for a converged network that carries mission-critical operational and IT traffic. At the same time, airport operators need to implement this blueprint without compromising the performance of mission-critical applications, such as air traffic control (ATC), anti-collision systems, emergency communications, CCTV and SCADA.
Figure 2. Airport network transformation blueprint
IP/MPLS TDM/PDH/SDH IP/Eth
Internet Extranet
Control and data centers
Core Aggregation Aggregation Access Access
7750 SR
7705 SAR
7705 SAR
7210 SAS
Signage
Airline ticketing
Security check
1830 PSS 1830 PSS
7750 SR
SDN
7750 SR
7705 SAR
7705 SAR
7705 SAR-H
7705 SAR-Hc Environmentmonitoring
PMR 9500 MPR
7705 SAR
CDN M2M
Servers
7210 T
CCTV
LAN
Wi-Fi
LTE
Voice
VHF
Radar 5620 SAM
7750 SR
Figure 3: Airport network transformation
Airport operators need to implement this transformation without compromising theperformance of mission-critical applications, such as air traffic control (ATC), anti-collisionsystems, emergency communications or CCTV. A virtual private network (VPN) serviceis necessary to allow multiple tenants to share the same infrastructure and assure trafficisolation and protection from external attempts to penetrate the network.
To help operators operate, monitor, and troubleshoot the IT Infrastructure, Opera-tions, Administration, and Management (OAM) tools are crucial.
The traditional boundaries of element, network, and service management have madethe tasks of service provisioning, network configuration, performance monitoring andtroubleshooting complicated, cumbersome, and error prone. An effective cross-layer,service-aware manager can simplify the complexities.
A multi-layer OAM suite provides operators with a wide range of capabilities to mon-itor and operate the infrastructure. In addition to the traditional OAM tools at the trans-port, link, and network layers, service layer OAM measurement allows operators to con-tinuously monitor delivery performance.
IT departments of individual agencies and tenants may want to view the performanceand status of their services, as well as provision and modify service parameters. Toaddress this challenge, airport operators can make available to each client a service
6
AGI IT 15/16 ASSIGNMENT HANDOUTFinal ProjectRe-imagining an Airport IT Infrastructure Due Date: January 6, 2016
portal (Fig. 4) with a tailored span of network and scope-of-command control. With thisportal, clients can have instant access to their own portion of the network and performtasks within the scope-of-control policy.
8Re-imagining the airport network for 2020 and beyond Alcatel-Lucent Strategic White Paper
Following the ITU-T X.805 security framework based on the Alcatel-Lucent Bell Labs security model to fortify a network perimeter, security considerations need to be given to the infrastructure, as well as the network and services layers. For the infrastructure layer, it is necessary to protect management, control, and data planes with comprehensive authentication and logging, packet filtering, and IP Security (IPSec). For the services layer, features such as service-aware network group encryption (NGE), which encrypts at the MPLS layer, stateful firewall and network resource partitioning, are pivotal to defend service integrity.9 Encryption at the optical and microwave layers is also available to protect the data.10
7. Dynamic management
The traditional boundaries of element, network, and service management have made the tasks of service provisioning, network configuration, performance monitoring and troubleshooting complicated, cumbersome, and error prone. An effective cross-layer, service-aware manager can simplify the complexities. The Alcatel-Lucent 5620 SAM helps operators achieve significant efficiencies with an easy-to-use GUI, service templates and scripting, a scalable collection of network and OAM statistics—in addition to powerful cross-layer fault correlation.11
Airports operate in multi-tenant settings and serve a broad variety of clients. These can include government agencies, such as customs and transportation security, large enterprise such as airlines, and small- and medium-size enterprises, such as shops and restaurants. Moreover, each of these tenants employ different applications—from mission-critical radar systems, to CCTV video, to simple but business-critical point-of-sale terminals. As a result, airport operators must be able to handle very different communications requirements—for connectivity both in and outside the airport to the Internet and headquarters.
On top of that, IT departments of individual agencies and tenants may want to view the performance and status of their services, as well as provision and modify service parameters. To address this challenge, airport operators can make available to each client a service portal with a tailored span of network and scope-of-command control. With this portal, clients can have instant access to their own portion of the network and perform tasks within the scope-of-control policy (Figure 8). Furthermore, this helps airport operators to offer better service to their customers while reducing operations costs.
Figure 8. Service portal allows users to manage their own span of network
Shop Y
Shop Y
Airline X
Public safety
Air traffic control
Serviceportal
Airline X
ConvergedIP/MPLSnetwork
Publicsafety
Air trafficcontrol
Networkmanager
9 For a more detailed discussion of network security, please read “7705 Service Aggregation Router: Security overview for mission-critical networks” (http://resources.alcatel-lucent.com/asset/174129) and “Seamless Encryption for Mission-Critical Network (http://resources.alcatel-lucent.com/asset/187584).10 For transmission layer encryption at optics and microwave layer, please read footnote 12 below and “Security for Microwave Links: Risks and Mitigations for Point-to-
Point Microwave” (http://resources.alcatel-lucent.com/asset/157676), respectively.11 To learn more about how the Alcatel-Lucent 5620 SAM helps operators manage networks effectively, please visit https://www.youtube.com/playlist?list=PLmVg5WsL
auWCqDuee0oVcPCKV0lgq1bJv
Figure 4: Airport Network Services Portal
The traditional mode of operation (still) is to first use off-line tools to compute asuitable path to fulfill a service requirement; it then gets provisioned by means of thenetwork manager. If users need a new application, they will have to wait for networkoperators to provision a new service, corresponding to a delay of days or even weeks.
The Software-Defined Network (SDN) paradigm, as considered for the network trans-formation (Fig. 3) provides a dynamic and more efficient way to define, provision, andactivate services in order to respond rapidly to changing needs.
With SDN network slicing, the shared network can be modeled as multiple, virtual,separate network infrastructures – one for each user or tenant. Each network slicecan have distinct network characteristics, such as low latency. With a service abstrac-tion methodology, service provisioning and parameter changes can even be automatedwithout operator intervention.
1.3 A current example: Heathrow Terminal 2
Heathrow is spending more than $200m on IT and network infrastructure, designed tospeed passengers through the airport as quickly and comfortably as possible. The ter-minal will (eventually) feature automatic baggage drops and check-ins, boarding passesdelivered to passengers’ mobile phones, free Wi-Fi for passengers, and CCTV systemsthat will automatically scan for queues. Heathrow is installing more than 2,000km ofnetwork cable, 30km of radio cable (longitudinal “antenna”), 12,000 CCTV cameras, 59large communications rooms (Data Centers) holding servers and networking equipment,and 30,000 network points.
7
AGI IT 15/16 ASSIGNMENT HANDOUTFinal ProjectRe-imagining an Airport IT Infrastructure Due Date: January 6, 2016
2 The Project Assignment: Technologies for the IT In-frastructure of an Airport
For this assignment you are considered as a Team of Experts in IT Support Servicesdesigned specifically for airports. In that role, you will provide consultancy servicesfor a new Airport Terminal to be built, in terms of IT technologies, tools/solutions foradministration and management, and also procurement.
The main tasks of the Project are the following:
1. A synthesis of the key Requirements for the IT Infrastructure
2. A Sketch (high-level diagrams) of the IT infrastructure for an Airport considering:
• The different types of Networks (from Access to Core)
• The necessary Data Centers/Computer Rooms
• The architecture foundation for the Data Centers (topological, physical), in-cluding Computing, Storage and Networking building blocks.
3. Describe, justifying, the recommended technologies/solutions for the Core andAggregation networks (from cabling to active equipment)
4. Describe, justifying, the recommended technologies/solutions for Data Center Ser-vices (Security, Virtualisation, Application Resiliency)
5. Describe the recommended technologies/solutions for User Services and Applica-tions (from Customer Interfacing to Directional Aids and Security)
6. Describe, justifying, the key Tools you would prescribe for managing the infrastruc-ture in terms of:
• Application/Systems Automation,
• Monitoring of Performance
• Faults and Problem Handling
• Configuration Management
• Data Center Infrastructure Management
7. Procurement information:
• Key Market Players for the recommended technologies
• The Standards, Frameworks and methodologies to be followed, including arecommendation of Best practices for IT Services Management
8. Demonstration of usage of one of the prescribed Tool/Product or Technology.
8
