1.3.2.2 User Initiated SDM Session - Manual PDN Name ChangeVZ REQ LTEOTADM 7662 16 1.3.2.2.1 InstructionsVZ REQ LTEOTADM 7663..... 16 1.4 OTA-DM SPECIFICATIONS VZ REQ LTEOTADM 2407..... 16 1.4.1 COMMON REQUIREMENTS FOR OTADM - STANDARDS COMPLIANCE
This document provides initial information related to Verizon Wireless Long Term Evolution (LTE) LTE 3GPP. OTADM requirement document.
Verizon Wireless Requirement Plan Requirement Plan Plan Name: Reqs-LTE_OTADM Plan Id: LTEOTADM Version Number: 30 Release Date: June 2020 Target Release Date: June 2020 This document provides initial information related to Verizon Wireless Long Term Evolution (LTE) LTE 3GPP OTADM requirement document. All information herein is subject to change without notice. The information provided was considered technically accurate at the time the documents were developed, but Verizon Wireless disclaims and makes no guaranty or warranty, express or implied, as to the accuracy or completeness of any information contained or referenced herein. VERIZON WIRELESS DISCLAIMS ANY IMPLIED WARRANTY OF MERCHANTABILITY OR FITNESS FOR ANY PARTICULAR PURPOSE. Verizon Wireless is not providing any license necessary to access or utilize any source materials referenced herein. It shall be the responsibility of the developer to obtain any such licenses, if necessary. The developer of any device, service or product for use on the Verizon Wireless network assumes all risks related to the development of such device, service or product. Verizon Wireless does not guarantee or warrant the availability of its network or the compatibility of its network with any device, service or product. Verizon Wireless disclaims liability for any damages or losses of any nature whatsoever whether direct, indirect, special or consequential resulting from the use of or reliance on any information contained or referenced herein. Page 1 of 48 Verizon Wireless ReqsLTE_OTADM 1 LTE OTA DM VZ_REQ_LTEOTADM 65 ........................................................................................... 6 1.1 INTRODUCTION VZ_REQ_LTEOTADM_2395 .................................................................... 11 1.1.1 APPLICABILITY VZ_REQ_LTEOTADM_2396 ........................................................ 11 1.1.2 3GPP Specifications VZ_REQ_LTEOTADM_7654 ................................................. 12 1.1.3 GLOSSARY/DEFINITIONS/ACRONYMS VZ_REQ_LTEOTADM_2398 ................ 12 1.1.4 REQUIREMENTS LANGUAGE VZ_REQ_LTEOTADM_2399 ................................ 13 1.1.5 DEPLOYMENT PLANSVZ_REQ_LTEOTADM_2400 ............................................. 13 1.2 HARDWARE SPECIFICATIONSVZ_REQ_LTEOTADM_2401 ............................................. 13 1.2.1 MECHANICALVZ_REQ_LTEOTADM_2402............................................................ 13 1.2.2 ELECTRICALVZ_REQ_LTEOTADM_2403 ............................................................. 14 1.3 USER EXPERIENCE AND INTERACTIONS VZ_REQ_LTEOTADM_2404 ......................... 14 1.3.1 User Experience (Device)VZ_REQ_LTEOTADM_7655 .......................................... 14 1.3.1.1 INTERRUPTIONS DURING APN MANAGEMENT ACTIVITYVZ_REQ_LTEOTADM_2405 ......................................................................................... 14 1.3.1.1.1 LTE Network (Bearer) AvailableVZ_REQ_LTEOTADM_7656....... 14 1.3.1.1.2 Client-Server Connection Failure During The SDM SessionVZ_REQ_LTEOTADM_7657 ............................................................. 15 1.3.1.1.3 DM Fatal ErrorVZ_REQ_LTEOTADM_22978................................ 15 1.3.1.1.4 Accessory Interaction (Applicable on to Handset form Factor Devices)VZ_REQ_LTEOTADM_7658 ............................................................ 15 1.3.1.2 Subscriber Device ManagementVZ_REQ_LTEOTADM_7659 .................................... 15 1.3.1.3 Network Initiated SDM SessionsVZ_REQ_LTEOTADM_7660 .................................... 15 1.3.2 USER INTERFACE (DEVICE)VZ_REQ_LTEOTADM_2406 ................................... 15 1.3.2.1 Network Initiated SDM SessionVZ_REQ_LTEOTADM_7661...................................... 16 1.3.2.2 User Initiated SDM Session - Manual PDN Name ChangeVZ_REQ_LTEOTADM_7662 16 1.3.2.2.1 InstructionsVZ_REQ_LTEOTADM_7663....................................... 16 1.4 OTA-DM SPECIFICATIONS VZ_REQ_LTEOTADM_2407................................................... 16 1.4.1 COMMON REQUIREMENTS FOR OTADM - STANDARDS COMPLIANCE VZ_REQ_LTEOTADM_2408 ................................................................................................. 16 1.4.1.1 COMPLIANCE WITH VZW REQUIREMENTS VZ_REQ_LTEOTADM_22979 ........... 17 1.4.1.1.1 OTHER INDUSTRY STANDARDS VZ_REQ_LTEOTADM_22980 17 1.4.1.1.2 OMA Standards Compliance VZ_REQ_LTEOTADM_7664........... 17 1.4.1.2 OTADM CLIENT VZ_REQ_LTEOTADM_22981.......................................................... 19 1.4.1.2.1 OTADM CLIENT PROVISIONING VZ_REQ_LTEOTADM_22982 19 1.4.1.2.1.1 Factory Bootstrapping VZ_REQ_LTEOTADM_7699............... 19 1.4.1.2.1.2 PDN Provisioning for OTADM Device Management Traffic VZ_REQ_LTEOTADM_7701....................................................................... 19 1.4.1.2.2 OTA-DM (Emergency Mode) VZ_REQ_LTEOTADM_5965111..... 19 1.4.1.2.3 OTADM Client Change Alerts VZ_REQ_LTEOTADM_4105999311947508 .................................................. 20 1.4.1.2.3.1 OTADM Client Change Disabled Alert VZ_REQ_LTEOTADM_4105999311947509............................................... 20 Page 2 of 48 Verizon Wireless ReqsLTE_OTADM 1.4.1.2.3.2 OTADM Client Change Enabled Alert VZ_REQ_LTEOTADM_4105999311947510............................................... 21 1.4.1.3 OTADM TRANSPORT SECURITY REQUIREMENTS VZ_REQ_LTEOTADM_22983 22 1.4.1.3.1 Confidentiality (Data Encryption) VZ_REQ_LTEOTADM_7703..... 23 1.4.1.3.1.1 Root Certificate requirements VZ_REQ_LTEOTADM_36249 . 23 1.4.1.3.2 AUTHENTICATION VZ_REQ_LTEOTADM_22984....................... 24 1.4.1.3.2.1 Package 0 Authentication (Notification Initiation Session Message) VZ_REQ_LTEOTADM_7705 ...................................................... 24 1.4.1.3.2.2 Mutual Authentication VZ_REQ_LTEOTADM_7707 ............... 24 1.4.1.3.2.3 Failed Authentication Attempt Handling VZ_REQ_LTEOTADM_7665....................................................................... 25 1.4.1.3.2.4 Authentication Key VZ_REQ_LTEOTADM_7666.................... 25 1.4.1.3.3 Integrity VZ_REQ_LTEOTADM_7667 ........................................... 25 1.4.1.3.4 OTA Device Management Tree Support VZ_REQ_LTEOTADM_7668 .......................................................................... 25 1.4.1.3.4.1 Commands VZ_REQ_LTEOTADM_7669 ............................... 25 1.4.1.3.4.2 Correlator ID VZ_REQ_LTEOTADM_38690 ........................... 26 1.4.1.3.5 ACCESS CONTROL LIST (ACL) VZ_REQ_LTEOTADM_22985 .. 26 1.4.1.3.6 Verizon Wireless Defined Base DM Tree VZ_REQ_LTEOTADM_7670 .......................................................................... 26 1.4.1.3.7 DMAcc Subtree VZ_REQ_LTEOTADM_7671 ............................... 27 1.4.1.3.8 DevInfo Subtree VZ_REQ_LTEOTADM_7672 .............................. 28 1.4.1.3.9 DevDetail Subtree VZ_REQ_LTEOTADM_7673 ........................... 28 1.4.1.3.10 NAI VZ_REQ_LTEOTADM_5965085 .......................................... 29 1.4.1.4 DM CONNECTIVITY REQUIREMENTS VZ_REQ_LTEOTADM_22986 ..................... 29 1.4.1.4.1 NETWORK INITIATED DM SESSIONS VZ_REQ_LTEOTADM_22988 ........................................................................ 29 1.4.1.4.1.1 DM Notification via SMS message (Trigger) VZ_REQ_LTEOTADM_7708....................................................................... 29 1.4.1.4.1.2 LTE Service RequiredVZ_REQ_LTEOTADM_7674................ 30 1.4.1.4.1.3 Network Initiated (NI) Retry VZ_REQ_LTEOTADM_7675 ...... 30 1.4.1.4.2 USER INITIATED DM SESSIONS VZ_REQ_LTEOTADM_22989 30 1.4.1.4.2.1 Manual PDN ChangeVZ_REQ_LTEOTADM_7676................. 30 1.4.1.4.2.2 LTE Service RequiredVZ_REQ_LTEOTADM_7677................ 30 1.4.1.4.2.3 XML ELEMENTSVZ_REQ_LTEOTADM_22990 ..................... 30 1.4.1.4.2.4 VZ_REQ_LTEOTADM_7678 .................................................. 31 1.4.1.4.2.5 Elements and Formatting VZ_REQ_LTEOTADM_7679.......... 31 1.4.1.4.3 SUPPORT FOR IPV6 CONNECTIVITY VZ_REQ_LTEOTADM_31775 ........................................................................ 31 1.4.1.4.3.1 IPv6 Connection VZ_REQ_LTEOTADM_31776 ..................... 31 1.4.1.4.3.2 Connection Setup Failure VZ_REQ_LTEOTADM_31777 ....... 31 1.4.1.4.3.3 Connection Failure During a DM SessionVZ_REQ_LTEOTADM_31778 ........................................................ 32 1.4.1.5 OMA-DM TREE AND STANDARD COMMANDS VZ_REQ_LTEOTADM_22992....... 32 1.4.1.5.1 APN MANAGEMENT VZ_REQ_LTEOTADM_22993 .................... 32 Page 3 of 48 Verizon Wireless ReqsLTE_OTADM 1.4.1.5.1.1 MOBILE AUTOMATIC DEVICE DETECTION (ADD): BACKGROUND AND DESCRIPTION VZ_REQ_LTEOTADM_22994 ........ 33 1.4.1.5.1.2 ADD Flow Requirements VZ_REQ_LTEOTADM_7683 .......... 33 1.4.1.5.1.3 APN SERVICE AVAILABILITYVZ_REQ_LTEOTADM_22995 33 1.4.1.5.1.4 INFORMATIONAL BACKGROUND VZ_REQ_LTEOTADM_22996..................................................................... 34 1.4.1.5.1.5 Service Availability for APN Parameter ChangesVZ_REQ_LTEOTADM_7688 ........................................................ 34 1.4.1.5.1.6 ADD FLOW DIAGRAM VZ_REQ_LTEOTADM_22998 ........... 34 1.4.1.5.1.7 APN Management after SIM change VZ_REQ_LTEOTADM_8312636................................................................. 36 1.4.1.5.2 Connectivity Management VZ_REQ_LTEOTADM_7684............... 36 1.4.1.5.2.1 ConnMO Replace Command - Values not case sensitive VZ_REQ_LTEOTADM_7685....................................................................... 39 1.4.1.5.3 Functionality For Device Connectivity Management VZ_REQ_LTEOTADM_7686 .......................................................................... 39 1.4.1.5.3.1 APN Name Format VZ_REQ_LTEOTADM_7702 ................... 40 1.4.1.5.3.2 APN ID VZ_REQ_LTEOTADM_7687...................................... 40 1.4.1.5.3.3 APN Name VZ_REQ_LTEOTADM_7689................................ 40 1.4.1.5.3.4 IP VZ_REQ_LTEOTADM_7690 .............................................. 40 1.4.1.5.3.5 Enabled VZ_REQ_LTEOTADM_7691 .................................... 40 1.4.1.5.3.6 IMS Domain VZ_REQ_LTEOTADM_7692 .............................. 41 1.4.1.5.3.7 SIP T1 TimerVZ_REQ_LTEOTADM_7693 ............................. 41 1.4.1.5.3.8 SIP TF TimerVZ_REQ_LTEOTADM_7694 ............................. 41 1.4.1.5.3.9 SIP T2 TimerVZ_REQ_LTEOTADM_7695 ............................. 41 1.4.1.5.3.10 SMS FormatVZ_REQ_LTEOTADM_7696 ............................ 41 1.4.1.5.3.11 Enable VZ_REQ_LTEOTADM_7697 .................................... 41 1.4.1.5.3.12 Disable VZ_REQ_LTEOTADM_7698.................................... 42 1.4.1.5.3.13 Disable TestingVZ_REQ_LTEOTADM_7715 ........................ 42 1.4.1.5.3.14 IP Indication for SMS VZ_REQ_LTEOTADM_23000 ............ 42 1.4.1.5.3.15 Factory Rest & Default APN values: Class 2 DisableVZ_REQ_LTEOTADM_7709........................................................... 42 1.4.1.5.3.16 Functionality for Data Retry Connectivity Management ObjectsVZ_REQ_LTEOTADM_26496 ........................................................ 42 1.4.1.5.3.17 MAX_CONN_TVZ_REQ_LTEOTADM_26500 ...................... 43 1.4.1.5.3.18 MAX_CONNVZ_REQ_LTEOTADM_26502 .......................... 43 1.4.1.5.3.19 WAIT_TIMEVZ_REQ_LTEOTADM_26505 ........................... 43 1.4.1.5.3.20 Factory Reset & Default APN values: Class 3 VZ_REQ_LTEOTADM_38539..................................................................... 43 1.4.1.6 Configuration Update VZ_REQ_LTEOTADM_7332288 .............................................. 43 1.4.2 SDM REQUIREMENTSVZ_REQ_LTEOTADM_2409 ............................................. 44 1.4.3 Firmware Over The Air (FOTA) VZ_REQ_LTEOTADM_37788............................... 44 1.4.4 SUPPORT FOR INDUSTRY STANDARDS AND VERIZON WIRELESS REQUIREMENTS VZ_REQ_LTEOTADM_22991 ................................................................. 44 1.4.4.1 OMA Defined Managed ObjectsVZ_REQ_LTEOTADM_7680..................................... 44 1.4.4.1.1 Update Result Reporting VZ_REQ_LTEOTADM_7681 ................. 44 Page 4 of 48 Verizon Wireless ReqsLTE_OTADM 1.4.4.1.2 Update - Fatal Error VZ_REQ_LTEOTADM_7682 ........................ 44 1.5 DEVINFO SUBTREE EXTENSION VZ_REQ_MMOTADM_3103......................................... 44 1.5.1 ICCID Extended Node Support VZ_REQ_MMOTADM_8081 ................................. 45 1.5.1.1.1.1 ./DevInfo/Ext/ICCID ................................................................. 45 1.5.2 Device Functionality VZ_REQ_MMOTADM_8083................................................... 45 1.6 INFORMATION AND USE CASESVZ_REQ_LTEOTADM_2410.......................................... 46 1.6.1 APN CLASS USAGE - INFORMATIONALVZ_REQ_LTEOTADM_2411 ................ 46 1.6.1.1 1.6.1.2 1.6.1.3 1.6.1.4 CLASS 1 (APN 1)VZ_REQ_LTEOTADM_23001 ......................................................... 46 CLASS 2 (APN 2)VZ_REQ_LTEOTADM_23002 ......................................................... 46 CLASS 3 (APN 3)VZ_REQ_LTEOTADM_23003 ......................................................... 46 CLASS 4 (APN 4)VZ_REQ_LTEOTADM_23004 ......................................................... 47 1.7 REFERENCES VZ_REQ_LTEOTADM_2412 ....................................................................... 47 Page 5 of 48 Verizon Wireless ReqsLTE_OTADM 1 LTE OTA DM VZ_REQ_LTEOTADM 65 Revision History Author Description of Changes Verizon Wireless Version 1.0: Initial version Verizon Wireless Version 2.0: 1.) Section 4.1.3.2.2 Information on Certificates added. Version 3.0: Date 11/12/2009 12/17/2009 Verizon Wireless 1. Added requirements for handset form factor devices. 2. Added user initiated device management requirements. 3. Updates to section 4.3. 02/11/2010 Version 4.0: Verizon Wireless 1. Added IMS node. 2. Modified References 3. High Severity changed to Mandatory and Low to Optional 03/25/2010 Version 5.0: Verizon Wireless 1. Changed server password in DMAcc Subtree. 2. Changed APN inactivity timer from infinity to130min. 1. Changes server domain for LTE devices 2. Minor clarifications 06/25/2010 Version 6.0: 1. Updated to Release 9 (1.2) Verizon Wireless changed SMS format from optional to mandatory (4.1.1.2), 2. Updated RSSI nodes on DiagMon (4.3.2.2), 12/17/2010 3. Added APN operation nodes for ConnMO (4..3.2.3), 4. Clarifications on auth key (4.1.3.3.2), Page 6 of 48 Verizon Wireless Verizon Wireless Verizon Wireless Verizon Wireless ReqsLTE_OTADM 5. Added XML Element for LocURI (4.1.5.2.5), 6. Changed "paired mode" to "discovery mode" (4.3.2.1) Version 7.0: 1. Added DM Commands Functionality (4.3.2), 2. Point APNs Factory Provisioning requirements (4.1.3.1); 3. Added a column of value type in all DM tree nodes (4.3.2), 4. Clarified device password (4.1.3.3.2), 5. Added IMEI definitions to glossary (1.3), 02/2011 6. Removed some LAWMO nodes not currently required (4.3.2.7); 7. Added references (Chapter 5), 8. Removed timer for optional download (3.1.1.1) 9. Duplicated /operation nodes for all APNs, added "secs" to some timer nodes (4.2.3.5) 10. Added connMO nodes replace command requirement (4.3.2.5.1). Version 8.0: 1. Clarified APN Inactivity Timer unit. (4.3.2.6) 2. Added APN status node (4.3.2.5, 4.3.2.6) 03/2011 3. Added GPS nodes for Android OS devices (4.3.2.1) and their associated function descriptions (4.3.2.2.2.1). Version 9.0: 1. Changed DevID to DevId (4.1.4.5), 2. Changed home domain name to vzims.com (4.2.2.2) 06/2011 3. Added root certification information (4.1.3.2.2 ) 4. Updated DevDetail node (4.1.4.6) Page 7 of 48 Verizon Wireless Verizon Wireless Verizon Wireless Verizon Wireless Verizon Wireless ReqsLTE_OTADM 8. Added notes to domain name format (4.1.3.1) 9. Added ADD feature and flow chart ( 4.3.2.7) 10. Removed glossary terms : DMA, DiagMon, DCMO, FOTC 11. Removed User Experience sections, except interruption Requirements (3.1) 12. Removed Add/Copy/Delete command types (4.1.4.1) 13. Removed "multiple DMAcc are required (4.1.4.4) 14. Removed managed applications (4.1.4.8) 15. Removed DCMO, LAWMO, DiagMon, FOTA throughout the document 16. Added software version note (4.1.4.6) 17. Removed non-factory bootstrapping (4.1.3.1) 18. Added APN management requirements (4.2.2.1) Version 10.0: 1. General cleanups on inconsistencies and ambiguities, 2. Clarify AAuth name format (4.1.4.4 ) 3. Added Chapter 5 Information and Use Cases, 09/2011 4. Removed APN Inactivity Timer (4.1.5, 4.2) 5. APN Id command changed to read only (4.2.2.2) 6. Added deployment plan section Version 11.0: Added requirements to have capabilities/tools available to restore Enable a Class 1 or Class 2 APN once Disabled, for OTADM IOT testing purposes Version 12.0: Removed requirements for Digital Signature Version 13.0: Clarification on SMS over IMS 12/2011 4/2012 6/2012 Page 8 of 48 Verizon Wireless Verizon Wireless Verizon Wireless Verizon Wireless Verizon Wireless Verizon Wireless Verizon Wireless Verizon Wireless ReqsLTE_OTADM Version 14.0: 1. 2. Removed Removed Package 0 references SMS message requirements to Client Initiated Sessions 10/8/2012 3. Updated SIP Session Timer values Version 15.0: Added IPv6 connectivity support requirements Added APN Data Retry parameter nodes Corrected SIP Timer format from int to float 02/2014 Class1 APN should be replaceable IP Support for APN shall report IPv4 and IPv6 if both technologies are supported Version 16.0: Added ICCID Extension node requirements Replaced * with explicit values of 1 through 4 for each Class of APN in ConnMo tree 06/2014 Updated Root SSL Certificate requirements Version 17.0: Server and Client password information removed. Can be obtained from VZW OTADM IOT team. 10/2014 Updated: Client-Server Connection Failure During The SDM Session Version 18.0: Added support for TLS transport layer security protocol Added requirements around Over The Air update capability Version 19.0: Added support for SHA-256 certificate Version 20.0: 2/2015 6/2015 Remove requirements for dara retry parameters 2/2016 Remove requirements for SIP timers Page 9 of 48 Verizon Wireless Verizon Wireless Verizon Wireless Verizon Wireless Verizon Wireless Verizon Wireless Verizon Wireless Verizon Wireless ReqsLTE_OTADM Version 21.0 Updated requirements with new URL support for SHA-2 6/2016 certificates Version 22.0 Specified commands for all Nodes 10/2016 Version 23.0 Updated VZWIMS APN name to "IMS" 06/2017 Updated dual stack IP support for 4g2.vzwdm.com Version 24.0 Retired few requirements Removed ability to disable APN1 and APN2 in ConnMo tree October 2017 Misc. updates Version 25.0 Updated VZ_REQ_LTEOTADM_7672 to add a note for Mod to be the device model number instead of the February commercial name of the device. 2018 Added VZ_REQ_LTEOTADM_7332288 to define Configuration Update Version 26.0 Retired the following requirements: 1. Disable Testing VZ_REQ_LTEOTADM_7715 Added or Updated following requirements: 1. Updated -- Root Certificate requirements June 2018 VZ_REQ_LTEOTADM_36249 2. Added new requirement -- APN Management after SIM change VZ_REQ_LTEOTADM_8312636 3. Updated VZ_REQ_LTEOTADM_36249 to remove reference to Symantec and also added list of recommended Root Certificates Version 27.0 Added Cipher Suite information to requirements VZ_REQ_LTEOTADM_36249 Page 10 of 48 October 2018 Verizon Wireless ReqsLTE_OTADM Verizon WirelessRaj Damle Version 28.0 Removed the Digicert Global Root G3 certificate from requirement VZ_REQ_LTEOTADM_36249 February 2019 Verizon Version 29.0 WirelessJames Paxton Removed VeriSign Universal Root CA certificate requirement VZ_REQ_LTEOTADM_36249 from February 2020 Version 30.0 1.4.1.2.3 Added Requirements to support device initiated check-in upon VZWOTADM Client Disablement and Enablement 1.4.1.3.1.1 Removed Symantec link in Root Certificate Verizon Wireless Requirements 1.4.1.3.9.1 Specified Nodes that should be supported June 2020 under DevDetail Subtree for devices and embedded modules Updated VZ_REQ_LTEOTADM_37788 to apply to OD devices only 1.1 INTRODUCTION VZ_REQ_LTEOTADM_2395 Verizon Wireless has launched LTE network service in the 3GPP Band 13 frequency band (700 MHz C Block). This document includes an Over-The-Air (OTA) device management solution for devices on this network. This publication is part of Verizon Wireless compliance with the FCCs rules for 700 MHz C Block (47 C.F.R. § 27.16), as explained in the FCCs Second Report and Order in WT Docket No. 06-150, "Service Rules for the 698-746, 747-762 and 777-792 MHz Bands" released on August 10, 2007. In this document, the terms LTE (Long Term Evolution) and E-UTRA (Evolved Universal Terrestrial Radio Access) are considered equivalent. 1.1.1 APPLICABILITY VZ_REQ_LTEOTADM_2396 These requirements apply to all devices designed to operate on the Verizon Wireless LTE 3GPP Band 13 network. 3GPP Band 13 is per 3GPP TS 36.101: Evolved Universal Terrestrial Radio Access (E-UTRA); User Equipment (UE) radio transmission and reception. Page 11 of 48 Verizon Wireless ReqsLTE_OTADM This document covers APN management, a part of SDM technology. Specifically, this document doesnt include any Firmware Updating mechanism. Please see Section on "APN Management". For any questions related to this document, please contact Verizon Wireless through the Verizon Wireless Open Development website. 1.1.2 3GPP Specifications VZ_REQ_LTEOTADM_7654 Refer to the 3GPP Specifications section of the Verizon Wireless LTE 3GPP Band 13 Network Access Requirements. 1.1.3 GLOSSARY/DEFINITIONS/ACRONYMS VZ_REQ_LTEOTADM_2398 This section defines acronyms and terms used throughout the document. Acronym/ Term ADD APN ConnMO DDF DTD Definition Automatic Device Detection Access Point Name Connectivity Management Object Device Description Framework Document Type Definition HMAC Hash-based Mutual Authentication Code IMEI IMEI SV OMA OMA-DM OTA International Mobile Equipment Identity, a 14 digit value plus 1 digit checksum value computed as per the 3GPP requirements. The International Mobile Equipment Identity and Software Version Number, a 14 digit value plus 2 digits software version number. Open Mobile Alliance Open Mobile Alliance Device Management Over-the-Air Page 12 of 48 OTADM PST SDM UI UE WAP VZW Verizon Wireless ReqsLTE_OTADM Over the Air Device Management Product Support Tool Subscriber Device Management- in this document, SDM refers to APN Management and Device "profiling" User Interface User Equipment Wireless Application Protocol Verizon Wireless 1.1.4 REQUIREMENTS LANGUAGE VZ_REQ_LTEOTADM_2399 This document uses the following verbal forms in conjunction with requirements: "Shall" or "Shall not" indicates the requirement is mandatory "Should" indicates the requirement is recommended but not mandatory "May" indicates the requirement is optional 1.1.5 DEPLOYMENT PLANSVZ_REQ_LTEOTADM_2400 1.2 HARDWARE SPECIFICATIONSVZ_REQ_LTEOTADM_2401 1.2.1 MECHANICALVZ_REQ_LTEOTADM_2402 Page 13 of 48 Verizon Wireless ReqsLTE_OTADM 1.2.2 ELECTRICALVZ_REQ_LTEOTADM_2403 1.3 USER EXPERIENCE AND INTERACTIONS VZ_REQ_LTEOTADM_2404 Devices shall implement a mechanism so the end-user can alter or set the Class 3 APN name (only the name, and no other APN parameter) manually. In this case, the enduser can manually change that APN name on the device. The APN Management Requirements of this document shall apply in this manual PDN change case. Please refer to Verizon Wireless Devcie Requirements for LTE 3GPP Band 13 network Access for more details on APN parameters alteration rules. 1.3.1 User Experience (Device)VZ_REQ_LTEOTADM_7655 1.3.1.1 INTERRUPTIONS DURING ACTIVITYVZ_REQ_LTEOTADM_2405 APN MANAGEMENT 1.3.1.1.1 LTE Network (Bearer) AvailableVZ_REQ_LTEOTADM_7656 Page 14 of 48 Verizon Wireless ReqsLTE_OTADM 1.3.1.1.2 Client-Server Connection Failure During The SDM SessionVZ_REQ_LTEOTADM_7657 1.3.1.1.3 DM Fatal ErrorVZ_REQ_LTEOTADM_22978 1.3.1.1.4 Accessory Interaction (Applicable on to Handset form Factor Devices)VZ_REQ_LTEOTADM_7658 1.3.1.2Subscriber Device ManagementVZ_REQ_LTEOTADM_7659 1.3.1.3Network Initiated SDM SessionsVZ_REQ_LTEOTADM_7660 1.3.2 USER INTERFACE (DEVICE)VZ_REQ_LTEOTADM_2406 Page 15 of 48 Verizon Wireless ReqsLTE_OTADM 1.3.2.1Network Initiated SDM SessionVZ_REQ_LTEOTADM_7661 1.3.2.2User Initiated SDM Session - Manual PDN Name ChangeVZ_REQ_LTEOTADM_7662 1.3.2.2.1 InstructionsVZ_REQ_LTEOTADM_7663 1.4 OTA-DM SPECIFICATIONS VZ_REQ_LTEOTADM_2407 1.4.1 COMMON REQUIREMENTS FOR OTADM - STANDARDS COMPLIANCE VZ_REQ_LTEOTADM_2408 This informational section will have references to Industry Standards and Requirements as well as VZW-defined Requirements available to Open Access/ODI manufacturers. The device shall comply with the following Industry Requirements, as well as any VZW Requirements stated herein. If a conflict exists between this document and an Industry Standard, this document takes precedence. However, please contact VZW if there are additional questions. The requirements stated in this section will have information needed for implementation. However, in each of the requirements stated throughout this document, the specific references will not be repeated. All references needed are in this section of this document. Page 16 of 48 Verizon Wireless ReqsLTE_OTADM In order for devices to have compatibility with Verizon Wireless LTE 3GPP Band 13 network for Device Management and support SDM, the following OMA DM requirements must be met. Refer to "LTE 3GPP Band 13 Network Access" and "LTE SMS" requirements for details. 1.4.1.1COMPLIANCE WITH VZW REQUIREMENTS VZ_REQ_LTEOTADM_22979 1. LTE 3GPP Band 13 Network Access 2. LTE SMS Requirements 1.4.1.1.1 OTHER INDUSTRY STANDARDS VZ_REQ_LTEOTADM_22980 1. WAP Push OTA Specification (for notification using SMS*) 2. HTTP V1.1 3. WAP-230-WSP Specification (Package 0 SMS* header detail) 4. WAP-259-WDP Specification (Package 0 SMS* header detail) 5. The device shall support the 3GPP2 SMS format as defined in 3GPP2 C.S0015-A v1.0 "Short Message Service (SMS) for Wideband Spread Spectrum Systems". The support for the 3GPP format, as defined in TS 23.040 "Technical realization of the Short Message Service (SMS)" shall be supported. 6. APN domain names shall employ domain formats as specified in RFC 3986 1.4.1.1.2 OMA Standards Compliance VZ_REQ_LTEOTADM_7664 LTEOTADM116 The device shallsupport the OMA-DM standard and the sections as outlined in the followingdocuments: Document Reference Section OMA Device Management Bootstrap, Version 5.1.2.1 Customized Bootstrap 1.2. 5.1.2.2 Server-Initiated Bootstrap OMA DM Device Description Framework DTD, N/A Version 1.2. OMA Device Management Notification Initiated 5 Session, Version 1.2. 6 Server Alerted Management Session Structure of General Notification Initiated Session Alert 7.1 Package #0 delivered using WAP Push Page 17 of 48 Verizon Wireless ReqsLTE_OTADM OMA Device Management Protocol, Version 1.2. OMA Device Management Requirements Document, Version 1.2. OMA Device Management Representation Protocol, Version 1.2. 6.2 Multiple Messages In Package Requirements 8.1.2 Session Abort Requirement 8.2 Package 0: Management Initiation Alert from server to client 8.3 Package 1: Initialization from client to server 8.4 Package 2: Initialization from server to client 8.5 Package 3: Client response sent to server 8.6 Package 4: Further server management operations 8.7 Generic Alert 9 Authentication (9.1, 9.2) 6.1.1 Security 6.4 Usability 6.3.1 System Elements Device 5.1 MIME Usage 6 Mark-Up Language Description OMA Device Management Security, Version 1.2. OMA Device Management Standardized Objects, Version 1.2. OMA Device Management Tree and Description, Version 1.2. OMA Device Management Tree and Description Serialization, Version 1.2. 5.1 Credentials 5.3 Authentication 5.4 Integrity 5.5 Confidentiality 5.6 Notification Initiated Session 5 Standardized Objects 5 The Management Tree 6 Nodes 7 Properties of nodes 8 Device Management Tree Exchange 9 Device Description Framework* 5 TND Serialization Definition 6 TNDS Syntax WAP-230-WSP Specification WAP-259-WDP Specification 8.2.4 Push and Confirmed Push Facilities 6.5 Mapping WDP to CDMA SMS Page 18 of 48 Verizon Wireless ReqsLTE_OTADM 1.4.1.2OTADM CLIENT VZ_REQ_LTEOTADM_22981 The device shall support an OTADM client that supports OMA-DM protocols defined in this document. The client shall correctly interpret OMA-DM commands, execute commands sent by the server administrator and send back relevant responses to the issuing management server as defined in the OMA DM standards referenced above. 1.4.1.2.1 OTADM CLIENT PROVISIONING VZ_REQ_LTEOTADM_22982 1.4.1.2.1.1 Factory Bootstrapping VZ_REQ_LTEOTADM_7699 Devices shall implement Customized (Factory) Bootstrapping in accordance with "OMA Device Management Bootstrap, Vs 1.2" requirements Additionally, all devices shall be Factorybootstrapped with DM parameters prior to coming on the LTE network. The FactoryBootstrap parameters shall be pre-populated with the settings. See requirements traceability. " Devices using VZW OTADM solution shall not support OTA Bootstrap (Network Initiated Bootstrap). " Devices using VZW OTADM solution shall not support OMA-CP (OMA Client Provisioning). 1.4.1.2.1.2 PDN Provisioning for OTADM Device Management Traffic VZ_REQ_LTEOTADM_7701 Devices shall use the Admin PDN dedicated to DM related traffic. The VZW IMS PDN shall be used for SMS push. For APNs factory provisioning requirements, refer to the latest version of VZW Device Requirements - LTE 3GPP Band13 Network Access. 1.4.1.2.2 OTA-DM (Emergency Mode) VZ_REQ_LTEOTADM_5965111 Page 19 of 48 Verizon Wireless ReqsLTE_OTADM The device and/or OMA-DM client shall ensure that the device is in idle mode prior to starting a PPP session for the purposes of DM. Devices shall not attempt to initiate a DM data session until the emergency procedure is complete and they return to idle. Network Initiated: Valid DM Notification messages (via SMS) shall be ignored when the device is in the Emergency mode. Client-initiated: Refer to VZW Feature Definitions/Requirements document for emergency calling procedures. User-initiated: For feature phones, refer to VZW Feature Definitions/Requirements document for emergency calling procedures. See UI requirements for additional details. For converged devices, refer to Converged Device Requirements document for emergency calling procedures. 1.4.1.2.3 OTADM Client Change Alerts VZ_REQ_LTEOTADM_4105999311947508 Devices that initially support the VZW OTADM solution for DM and FOTA shall abide by the following Alert Requirements to notify the DM Server when the VZW OTADM Client has changed to an alternate DM client (i.e. Knox). 1.4.1.2.3.1 OTADM Client Change Disabled Alert VZ_REQ_LTEOTADM_4105999311947509 Every time the DUT disables the DM client pointed to Verizon for FOTA services and moves to an alternative DM solution(i.e. Knox), it shall setup a Client-initiated Check-in with the server. The DUT shall follow all the Client-Initiated Check-in requirements specified in this document. The DUT shall use the alert type org.openmobilealliance.dm.firmwareupdate.devicerequest for device initiated DM sessions. When the DUT initiates a device initiated session on boot up, in the Data element that is followed by the Alert Type element of org.openmobilealliance.dm.firmwareupdate.devicerequest, the device shall include a result code of 212. Note that 212 = Verizon pointed DM client disabled, and a new DM client in use. (i.e. Knox) The following is an example of the Alert message structure. Page 20 of 48 Verizon Wireless ReqsLTE_OTADM <!-- some text --> is a comment. <Alert> <CmdID><!--Command ID goes here--></CmdID> <Data>1226</Data> <Item> <Source> <LocURI><!--LocURI goes here--></LocURI> </Source> <Meta> <Format xmlns="syncml:metinf">b64</Format> <Type xmlns="syncml:metinf">org.openmobilealliance.dm.firmwareupdate.devicerequest </Type> </Meta> <Data> 212</Data > </Item> </Alert> 1.4.1.2.3.2 OTADM Client Change Enabled Alert VZ_REQ_LTEOTADM_4105999311947510 Every time the DUT enables the DM client pointed to Verizon for FOTA services and disables an alternative DM solution(i.e. Knox), it shall setup a Client-initiated Check-in with the server. The DUT shall follow all the Client-Initiated Check-in requirements specified in this document. The DUT shall use the alert type org.openmobilealliance.dm.firmwareupdate.devicerequest for device initiated DM sessions. Page 21 of 48 Verizon Wireless ReqsLTE_OTADM When the DUT initiates a device initiated session on boot up, in the Data element that is followed by the Alert Type element of org.openmobilealliance.dm.firmwareupdate.devicerequest, the device shall include a result code of 213. Note that 213 = Verizon pointed DM Client enabled, and third party DM client no longer in use. The following is an example of the Alert message structure. <!-- some text --> is a comment. <Alert> <CmdID><!--Command ID goes here--></CmdID> <Data>1226</Data> <Item> <Source> <LocURI><!--LocURI goes here--></LocURI> </Source> <Meta> <Format xmlns="syncml:metinf">b64</Format> <Type xmlns="syncml:metinf">org.openmobilealliance.dm.firmwareupdate.devicerequest </Type> </Meta> <Data> 213</Data > </Item> </Alert> 1.4.1.3OTADM TRANSPORT VZ_REQ_LTEOTADM_22983 SECURITY REQUIREMENTS Due to recent security vulnerability with SSL transport layer protocols, the device must only support TLS transport layer protocol (version 1.2 & higher). It is recommended that Page 22 of 48 Verizon Wireless ReqsLTE_OTADM device vendors provide the ability to install additional root certificates over the air if a need arise. Device vendors must support SHA-256 SSL server certificates. Device vendor must use below URL for their new devices and SUs which supports SHA-256 SSL server certificates. ./DMAcc/AppAddr/Addr ./DMAcc/AppAddr/AddrType ./DMAcc/AppAddr/Port https://4g2.vzwdm.com URI 443 1.4.1.3.1 Confidentiality (Data Encryption) VZ_REQ_LTEOTADM_7703 All Device Management interaction between the device and the OTADM Server shall be performed using HTTPS transport protocol to ensure proper protection of OMA DM messages. 1.4.1.3.1.1 Root Certificate requirements VZ_REQ_LTEOTADM_36249 The device vendor shall pre-install the following root certificates required to support the SSL server certificate and its certificate chain installed on the OTADM server. DigiCert Global Root CA (Serial #: 08:3B:E0:56:90:42:46:B1:A1:75:6A:C9:59:91:C7:4A) DigiCert Global Root G2 (Serial #: 03:3A:F1:E6:A7:11:A9:A0:BB:28:64:B1:1D:09:FA:E5) DigiCert Trusted Root G4 (Serial #: 05:9B:1B:57:9E:8E:21:32:E2:39:07:BD:A7:77:75:5C) The device vendor shall also support required signature algorithm, key size and cypher suites of the SSL server certificate. The device vendor shall also verify that a server certificate currently installed on the OTADM server is chained to the root certificates pre-installed on the device. The device vendor may use the openssl tool or the following links to check the SSL server certificate and its certificate chain on the OTADM server: Page 23 of 48 Verizon Wireless ReqsLTE_OTADM https://www.digicert.com/help/ https://cryptoreport.websecurity.symantec.com/checker/ The Root Certificates can be downloaded from the following links: DigiCert root certs: https://www.digicert.com/digicert-root-certificates.htm It is recommended that the device pre-installs prevalent root certificates to support other certificate authorities such as DigiCert, Comodo, GoDaddy, and Entrust. Along with the root certificates the device shall support all of the following Cipher Suites: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 (0xC027) TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (0xC028) TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F) TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xC030) 1.4.1.3.2 AUTHENTICATION VZ_REQ_LTEOTADM_22984 1.4.1.3.2.1 Package 0 Authentication (Notification Initiation Session Message) VZ_REQ_LTEOTADM_7705 The device shall support Package 0 authentication for bootstrap messages, including 'stale nonce' retry. For details, please refer to "OMA Device Management Security", Version 1.2 Devices shall confirm the source of the DM Notification message by validation of the digest sent as part of the message payload. 1.4.1.3.2.2 Mutual Authentication VZ_REQ_LTEOTADM_7707 Page 24 of 48 Verizon Wireless ReqsLTE_OTADM Devices shall support mutual authentication at the DM layer.Digest authentication shall be used for all Device Management-related authentication sessions,Digest authentication shall be implemented for all messages (i.e. Notification Messages) between the OTADM Server and Device, Authentication and its challenge shall follow the specifications as defined in "OMA Device Management Security, Version 1.2, "OMA Device Management Protocol V1.2, and "OMA Device Management Initiation Session V1.2". 1.4.1.3.2.3 Failed Authentication Attempt Handling VZ_REQ_LTEOTADM_7665 For details, please refer to "OMA Device Management Security Protocol V1.2, and"OMA Device Management Notification Initiation Session V1.2" documents. 1.4.1.3.2.4 Authentication Key VZ_REQ_LTEOTADM_7666 Instructions on how to generate Server and Client password will be provided by VZW when vendor submits a request to gain access to VZW OTADM IOT self-test environment (IOT Handshake tool). Reference: OMA Device Management Security V1.2: Section 5.3.3 Authentication/Password and Nonce Usage 1.4.1.3.3 Integrity VZ_REQ_LTEOTADM_7667 The device shall utilize HMAC for integrity protection of Device Management messages, as specified in"OMA Device Management Security V1.2", and"OMA Device Management Protocol V1.2" : Section 9 Authentication, OMA Device Management Security V1.2: Section 5.4 Integrity. 1.4.1.3.4 OTA Device Management Tree Support VZ_REQ_LTEOTADM_7668 The OMA DM Tree shall conform to the OMA-DM standard. URI and node names in a Device Management tree shall be treated as case sensitive as per OMA DM Tree and Description specs (OMA-TS-DM_TND-V1_2_1-20080617-A). 1.4.1.3.4.1 Commands VZ_REQ_LTEOTADM_7669 Page 25 of 48 Verizon Wireless ReqsLTE_OTADM LTEOTADM129Nodes in the DM Tree shall support the followingstandard commands as definedbelow: - Exec - Get - Replace For details on the commands,please refer to OMA Device Management Protocol V1. 1.4.1.3.4.2 Correlator ID VZ_REQ_LTEOTADM_38690 The device may support Correlator ID in asynchronous response to an asynchronous Exec command from the DM server. In the asynchronous response, the device shall include the same Correlator ID that it has received in an Exec command. The device shall omit Correlator ID in all other instances. The Correlator ID is an optional field and device must not fail if the field is not present from the server. For details on the commands, please refer to OMA Device Management Protocol V1.x. 1.4.1.3.5 ACCESS CONTROL LIST (ACL) VZ_REQ_LTEOTADM_22985 For details on ACL support, please refer to OMA Device Management Tree and Description V1.2 1.4.1.3.6 Verizon Wireless Defined Base DM Tree VZ_REQ_LTEOTADM_7670 LTEOTADM131The device shall support the following basenode and sub-tree nodes for DM operations. * DDF provided by the DeviceOEMs contains all information needed for the OMA-DM nodes. OMA-DM Node . ./DMAcc ./DevInfo ./DevDetail Description Base Node Root Node for all DM Account items Root Node for all Device Information items Root Node for all Device Detail items Page 26 of 48 ./ManagedObjects Verizon Wireless ReqsLTE_OTADM Root Node for all Managed Object items 1.4.1.3.7 DMAcc Subtree VZ_REQ_LTEOTADM_7671 The device shall support the following DMAcc nodes for DM operations. DMAcc Subtree DMAcc Subtree ./DMAcc/AppID ./DMAcc/ServerID ./DMAcc/Name ./DMAcc/AppAddr ./DMAcc/AppAddr/Addr Value W7 Value Type Char com.vzwdmserver VZW DM Server Node Char Char Char https://4g2.vzwdm.com*** Char ./DMAcc/AppAddr/AddrType URI Char ./DMAcc/AppAddr/Port 443 ./DMAcc/AAuthPref syncml:auth-md5 ./DMAcc/AppAuth Node ./DMAcc/AppAuth/Client Node ./DMAcc/AppAuth/Client/AAuthLevel CLCRED ./DMAcc/AppAuth/Client/AAuthType Digest ./DMAcc/AppAuth/Client/AAuthName IMEI (see note) ./DMAcc/AppAuth/Client/AAuthSecret <VZW Defined>* ./DMAcc/AppAuth/Client/AAuthData See note below** ./DMAcc/AppAuth/Server Node ./DMAcc/AppAuth/Server/AAuthLevel SRVCRED ./DMAcc/AppAuth/Server/AAuthType Digest ./DMAcc/AppAuth/Server/AAuthName com.vzwdmserver ./DMAcc/AppAuth/Server/AAuthSecret See note below** ./DMAcc/AppAuth/Server/AAuthData See note below** Char Char Char Char Char Char Char Char Char Char Char Char Commands Get Get Get Get Get, Replace Get, Replace Get, Replace Get Get Get Get Get Get No Get No Get Get Get Get Get No Get No Get * See requirements traceability to set value as defined Page 27 of 48 Verizon Wireless ReqsLTE_OTADM ** The initial values for these nodes will be provided by VZW OTADM IOT team when vendor submits a request to gain access to VZW OTADM IOT self-test environment (IOT Handshake tool). ***All new devices and all SUs must support this new URL with SHA-2 cert support. Reference: OMA Device Management Standardized Objects V1.2 Note: AAuthName shall be in the format of characters without any prefix or postfix, for example, "123456789012345", and not "IMEI:123456789012345". 1.4.1.3.8 DevInfo Subtree VZ_REQ_LTEOTADM_7672 The DevInfo subtree shall be as defined in theOMA Device Management Standardized Objects V1.2.The Device shall implement the following node values: DevInfo Nodes ./DevInfo/DevId ./DevInfo/DmV ./DevInfo/Lang ./DevInfo/Man ./DevInfo/Mod ./DevInfo/Ext Value IMEI (see Note) 1.2 English <Manufacturer Name> <Model Number> (see Note) Node Value Type Char Char Char Char Char Command Get Get Get Get Get Get Note: DevId format shall be "IMEI:x", with x being the value of the IMEI (without quotes). Mod shall be the Model Number of the device instead of the commercial name of the device 1.4.1.3.9 DevDetail Subtree VZ_REQ_LTEOTADM_7673 LTEOTADM134The DevDetail subtree shall be as defined in theOMA Device Management Standardized Objects V1.2.The Device shall implement the following node values of the DevDetail subtree: DevDetail Nodes ./DevDetail/URI ./DevDetail/URI/MaxDepth ./DevDetail/URI/MaxSegLen Value Node 12 32 Value type Char Char Char Page 28 of 48 Command Get Get Get Verizon Wireless ReqsLTE_OTADM ./DevDetail/URI/MaxTotLen 127 Char Get ./DevDetail/DevTyp <value> Char Get ./DevDetail/FwV <value> (See Note) Char Get ./DevDetail/HwV <value> Char Get ./DevDetail/LrgObj True, False Char Get ./DevDetail/OEM <value> Char Get ./DevDetail/SwV <value> Char Get Note: APN Management and ADD flowrequires that ./DevDetail/FwV be an implemented and populated leaf node. 1.4.1.3.10 NAI VZ_REQ_LTEOTADM_5965085 Devices the support 3G CDMA technologies shall use the current data NAI <MDN>@vzw3g.com 1.4.1.4DM CONNECTIVITY REQUIREMENTS VZ_REQ_LTEOTADM_22986 1.4.1.4.1 NETWORK INITIATED DM SESSIONS VZ_REQ_LTEOTADM_22988 1.4.1.4.1.1 DM Notification via SMS message (Trigger) VZ_REQ_LTEOTADM_7708 OTADM compliant devices shall receive and process Device Management notifications delivered to the device via an SMS message. NOTE: SMS messages are configured and sent by the OTADM Server over the IMS PDN. Network-Initiated functionality is triggered by these SMS. Page 29 of 48 Verizon Wireless ReqsLTE_OTADM 1.4.1.4.1.2 LTE Service RequiredVZ_REQ_LTEOTADM_7674 1.4.1.4.1.3 Network Initiated (NI) Retry VZ_REQ_LTEOTADM_7675 If the device is in adequate LTE coverage area, but the network-initiated DM session fails to connect to the server for any reason, the device shall fail the session and not retry. 1.4.1.4.2 USER INITIATED DM SESSIONS VZ_REQ_LTEOTADM_22989 1.4.1.4.2.1 Manual PDN ChangeVZ_REQ_LTEOTADM_7676 1.4.1.4.2.2 LTE Service RequiredVZ_REQ_LTEOTADM_7677 1.4.1.4.2.3 XML ELEMENTSVZ_REQ_LTEOTADM_22990 Page 30 of 48 Verizon Wireless ReqsLTE_OTADM 1.4.1.4.2.4 VZ_REQ_LTEOTADM_7678 1.4.1.4.2.5 Elements and Formatting VZ_REQ_LTEOTADM_7679 Data Elements shall only contain the formatted characters of that element. For example, if the Format of a Data Element is int (integer), and the Data element represents a timer in seconds, then the data element shall only include integer characters, e.g. 0-9., and not include the unit (sec) within its field. Thus, for a timer value of 25 seconds, the required data element would be <data> 25 </data> and not <data> 25 sec </data>. 1.4.1.4.3 SUPPORT FOR IPV6 CONNECTIVITY VZ_REQ_LTEOTADM_31775 1.4.1.4.3.1 IPv6 Connection VZ_REQ_LTEOTADM_31776 The DM Client on the device shall support IPv6 connectivity with the OMADM server over Class 2 APN's PDN Connection. This functionality is in addition to the IPv4 support that exists today on each client. If an IPv6 address is returned by the DNS server for an AAAA (quad-A) query, then the device will prefer IPv6 mode connectivity versus IPv4 mode connectivity with the DM Server over the Class 2 APN's PDN Connection. If an IPv6 address is not returned by the DNS server, then the device shall use IPv4 address received from the "A" DNS query result to connect to the DM server (over the Class 2 APN's PDN Connection). As such, IPv6 connection shall be supported for all aspects of OMADM communication (over an IP network) as described in this requirements document. 1.4.1.4.3.2 Connection Setup Failure VZ_REQ_LTEOTADM_31777 Page 31 of 48 Verizon Wireless ReqsLTE_OTADM If the device is not in adequate LTE coverage where a Class 2 PDN connection cannot be established, then the requirements outlined in this document (See requirements traceability) shall be followed. If the device is in adequate LTE coverage with Class 2 PDN connection established and if the DM Client is unable to connect to the DM server over an IPv6 connection through the Class 2 APN's PDN connection for any reason; then the device shall not disconnect the PDN connection. Instead the device shall fall back to the available IPv4 connection and attempt to connect to the DM server at most once. If the communication still cannot be established, then the device shall follow Retry requirements outlined in this document (See requirements traceability) 1.4.1.4.3.3 Connection Failure During a DM SessionVZ_REQ_LTEOTADM_31778 1.4.1.5OMA-DM TREE AND STANDARD COMMANDS VZ_REQ_LTEOTADM_22992 1.4.1.5.1 APN MANAGEMENT VZ_REQ_LTEOTADM_22993 By APN management, VZW means a mechanism for changing the current APNs defined in this document. There are three cases where changing the APN occurs in this document. One case is when the device has its APN changed manually, e.g. Class 3 APN is changed by the enduser. The second case is where the APN change is directed by the OTADM Server during Network provisioning or insertion of a new SIM card. The third case is when the OTADM Server directs the device to modify an APN for additional end-user services. APN management can occur in two distinct ways: through an SDM session initiated specifically to change a targeted APN value, or through a Mobile Automatic Device Detection (ADD) session. APN management is enabled through the ConnMo tree (read and writing of the APN parameter values) and its manipulation. Page 32 of 48 Verizon Wireless ReqsLTE_OTADM 1.4.1.5.1.1 MOBILE AUTOMATIC DEVICE DETECTION (ADD): BACKGROUND AND DESCRIPTION VZ_REQ_LTEOTADM_22994 Mobile Automatic Device Detection is an APN Management server process which happens when a new UICC card is associated with a device from out-of-box condition, or existing UICC card (activated on another Device) and then inserted into current mobile device. Both situations, the out of the box or the current device, having the SIM newly inserted and powered on, triggers a UICC card activation, results the SIMOTA server to send ADD (Automatic Device Detection) message to the SDM server; the SDM server, upon receiving the ADD message, will associate the device IMEI to the current activated MDN, and send a Package 0 (SMS) to initiate the following tasks: 1. Read LTE APN parameters, including APN Id, name, and IP, for all 4 APN classes, from the device, and replace these parameters with network required values, Read functionality is performed via OMA specification as a "Get" command. Write functionality is performed via OMA specification as "Replace" command. After the "Replace" command is sent to the device, the Server will send an Execute command to the device, as per OMA specifications, which triggers the device to enable the APN changes. 2. Upon successful read and replacement of APN values, there is a check performed by the OTADM server to determine if there is a firmware-update package available for the device. a. If the device supports a Proprietary Firmware, the ADD process will still determine if the device requires a firmware update by checking the "FwV" field in the Device Detail tree. In the Proprietary Firmware support case, the VZW OTADM Server will not initiate a firmware update. b. All devices, whether utilizing VZW-FOTA or Proprietary FOTA, shall populate the FwV leaf node. 1.4.1.5.1.2 ADD Flow Requirements VZ_REQ_LTEOTADM_7683 VZW does not specify the number, type, or sequence of APNs that may be read or written during an ADD session, as per OMA Specifications. The device shall be prepared to respond to any request made by the server for reading and writing the APN parameters during that ADD session. 1.4.1.5.1.3 APN SERVICE AVAILABILITYVZ_REQ_LTEOTADM_22995 Page 33 of 48 Verizon Wireless ReqsLTE_OTADM 1.4.1.5.1.4 INFORMATIONAL BACKGROUND VZ_REQ_LTEOTADM_22996 APN Service Availability refers to the ability of the device to connect to a newly modified APN without noticeable delay. To illustrate, suppose the current Class 3 APN name is www.changeme.com and the user manually changes the Class 3 Internet APN to www.vzw.com. The user expects to be able to initiate a session with the network through invoking the browser and have the device attach to the www.vzw.com without noticeable delay (of service/connectivity to the Internet) or requiring the device to reboot. The browser launch and connection to the APN, e.g. www.vzw.com, is expected to be less than 10 seconds in good RF conditions. However, quantification of this requirement is nearly impossible. Thus, in the time it takes for a user to attempt to connect to the changed APN, the device should have the new APN enabled. In other words, when the device is next requested to utilize the new APN, the APN must be enabled. This concept defines "APN service availability" 1.4.1.5.1.5 Service Availability for APN Parameter ChangesVZ_REQ_LTEOTADM_7688 1.4.1.5.1.6 ADD FLOW DIAGRAM VZ_REQ_LTEOTADM_22998 The following diagram shows the ADD flow that is utilized by VZW. This is for information only. Page 34 of 48 Verizon Wireless ReqsLTE_OTADM Page 35 of 48 Verizon Wireless ReqsLTE_OTADM 1.4.1.5.1.7 APN Management after SIM change VZ_REQ_LTEOTADM_8312636 When the Device is initiating a DM session with the server due to a SIM change detection, the device shall perform the following activities:. " Device (DM client) detects SIM change and starts a timer for 5 minutes " If WAP PUSH from server is received before 5 minutes, the timer is cancelled and device sets up the session with the server " If WAP PUSH is not received within 5 minutes (use case of ADD miss, two SIMs and 1 device scenario, etc&) and the timer expires, then the device shall initiate the session with the server after the expiry 1.4.1.5.2 Connectivity Management VZ_REQ_LTEOTADM_7684 The device shall support the following Connectivity Subtree and operations: Connectivity Node Descriptio n Value ./ManagedObjects/ConnMO/LTE Internal Node node ./ManagedObjects/ConnMO/LTE/APN/1 Internal Node node ./ManagedObjects/ConnMO/LTE/APN/1/Setting Internal Node node ./ManagedObjects/ConnMO/LTE/APN/1/Setting/Id APN Id 1 ./ManagedObjects/ConnMO/LTE/APN/1/Setting/Na me APN Name IMS IP Version. ./ManagedObjects/ConnMO/LTE/APN/1/Setting/IP Defined by Standards but not used by Verizon IPv4 or Ipv6 or Ipv4 and Ipv6 Wireless Return APN /1/s ./ManagedObjects/ConnMO/LTE/APN/1/Setting/En status of abled Enabled True (True), or Disabled Page 36 of 48 Val ue Comma Typ nds e Get Get Get int Get cha Get, r Replace cha Get, r Replace Boo l Get Verizon Wireless ReqsLTE_OTADM (False) ./ManagedObjects/ConnMO/LTE/APN/1/Setting/Op Internal erations Node Null Get ./ManagedObjects/ConnMO/LTE/APN/2/Setting/Id APN Id 2 int Get, ./ManagedObjects/ConnMO/LTE/APN/2/Setting/Na me APN Name VZWADMI N cha r Get, Replace IP Version. ./ManagedObjects/ConnMO/LTE/APN/2/Setting/IP Defined by Standards but not used by Verizon Ipv4 or Ipv6 or Ipv4 and Ipv6 cha Get, r Replace Wireless Return APN /2/s ./ManagedObjects/ConnMO/LTE/APN/2/Setting/En abled status of Enabled (True), or True Boo l Get Disabled (False) ./ManagedObjects/ConnMO/LTE/APN/2/Setting/Op Internal erations Node Null Get ./ManagedObjects/ConnMO/LTE/APN/3/Setting/Id APN Id 3 int Get, ./ManagedObjects/ConnMO/LTE/APN/3/Setting/Na me APN Name VZWINTE RNET cha Get, r Replace IP Version. ./ManagedObjects/ConnMO/LTE/APN/3/Setting/IP Defined by Standards but not used by Verizon Ipv4 or Ipv6 or Ipv4 and Ipv6 cha Get, r Replace Wireless Return APN /3/s ./ManagedObjects/ConnMO/LTE/APN/3/Setting/En abled status of Enabled (True), or True, False Boo l Get Disabled (False) ./ManagedObjects/ConnMO/LTE/APN/3/Setting/Op Internal erations Node Null Get ./ManagedObjects/ConnMO/LTE/APN/3/Setting/Op Enable erations/Enable APN Null Exec ./ManagedObjects/ConnMO/LTE/APN/3/Setting/Op Disable erations/Disable APN Null Exec Page 37 of 48 Verizon Wireless ReqsLTE_OTADM ./ManagedObjects/ConnMO/LTE/APN/4/Setting/Id APN Id 4 int Get, ./ManagedObjects/ConnMO/LTE/APN/4/Setting/Na me APN Name VZWAPP cha Get, r Replace IP Version. ./ManagedObjects/ConnMO/LTE/APN/4/Setting/IP Defined by Standards but not used by Verizon Ipv4 or Ipv6 or Ipv4 and Ipv6 cha Get, r Replace Wireless Return APN /4/s ./ManagedObjects/ConnMO/LTE/APN/4/Setting/En abled status of Enabled (True), or True, False Boo l Get Disabled (False) ./ManagedObjects/ConnMO/LTE/APN/4/Setting/Op Internal erations Node Null Get ./ManagedObjects/ConnMO/LTE/APN/4/Setting/Op Enable erations/Enable APN Null Exec ./ManagedObjects/ConnMO/LTE/APN/4/Setting/Op Disable erations/Disable APN Null Exec ./ManagedObjects/ConnMO/IMS Interior Node Node Get ./ManagedObjects/ConnMO/IMS/Setting Interior Node Node Get Home Domain Name for ./ManagedObjects/ConnMO/IMS/Setting/Domain the device to populate the request vzims.com cha r Get URI for REGISTRA TION Device Outgoing ./ManagedObjects/ConnMO/IMS/Setting/smsforma t SMS based on either 3GPP or 3GPP or 3GPP2 cha Get, r Replace 3GPP2 standards ./ManagedObjects/ConnMO/IMS/Setting/sms_over _IP_network_indication Turns IMS ON/OFF on True bool Get, Replace Page 38 of 48 Verizon Wireless ReqsLTE_OTADM the device 1.4.1.5.2.1 ConnMO Replace Command - Values not case sensitive VZ_REQ_LTEOTADM_7685 All writeable node values shall not be case sensitive, ie, device shall be able to write/replace the node values either in lower cases or upper cases. 1.4.1.5.3 Functionality For Device Connectivity Management VZ_REQ_LTEOTADM_7686 Note: All Timer values in the above table have units associated, e.g. seconds or minutes; and the values shall be integer type; It is imperative that the server and the device interpret the value in the same units. If the units are specified in the above table as, e.g. seconds, then the device shall interpret any value received by the network as the same units (e.g. seconds). Similarly, if the device is going to populate a value in the tree, it shall assume the value the network will receive is the units in the above table. Device shall allow the remote capture of connectivity settings and attributes based on OMA DM commands sent from the VZW DM server system. The following node commands shall result in the listed functionality: Page 39 of 48 Verizon Wireless ReqsLTE_OTADM 1.4.1.5.3.1 APN Name Format VZ_REQ_LTEOTADM_7702 Devices shall support the APN domain names which shall employ the domain formats as specified in RFC 3986 1.4.1.5.3.2 APN ID VZ_REQ_LTEOTADM_7687 APN Id get command on this node returns the Network Identifier of the associated Access Point Name (APN), for IMS APN, Id = 1; for Admin APN, Id = 2; for Internet APN, Id = 3; for VZW Applications APN, Id =4; replace command changes the value; 1.4.1.5.3.3 APN Name VZ_REQ_LTEOTADM_7689 APN Name get command on this node returns the associated APN name, for IMS, the APN name = IMS; for Admin, the APN name = VZWADMIN; for Internet, the APN name = VZWINTERNET; for VZW Application, the APN name = VZWAPP; replace command, where stated in the CONNMO tree, changes the value; 1.4.1.5.3.4 IP VZ_REQ_LTEOTADM_7690 IP get command on this node returns the associated APNs IP Type, which is one of: IPv4, IPv6, or IPv4 and IPv6; replace command changes the value. 1.4.1.5.3.5 Enabled VZ_REQ_LTEOTADM_7691 Enabled get command on this node returns the APN enabled (True) or disabled (False) status for all APNs; Page 40 of 48 Verizon Wireless ReqsLTE_OTADM 1.4.1.5.3.6 IMS Domain VZ_REQ_LTEOTADM_7692 IMS Domain get command on this node returns the home domain name for the device to populate the request URI for registration; replace command changes the value; 1.4.1.5.3.7 SIP T1 TimerVZ_REQ_LTEOTADM_7693 1.4.1.5.3.8 SIP TF TimerVZ_REQ_LTEOTADM_7694 1.4.1.5.3.9 SIP T2 TimerVZ_REQ_LTEOTADM_7695 1.4.1.5.3.10 SMS FormatVZ_REQ_LTEOTADM_7696 1.4.1.5.3.11 Enable VZ_REQ_LTEOTADM_7697 Enable exec command on this node turns an APN on, applicable only to APN Id = 3 and 4. Enable is applicable to neither APN ID = 1 nor APN ID =2 is due to the required device behavior specified in LTE_3GPP_Band13_Network Access requirements. Page 41 of 48 1.4.1.5.3.12 Verizon Wireless ReqsLTE_OTADM Disable VZ_REQ_LTEOTADM_7698 Disable exec command on this node shall turn the specified APN off, applicable to all APNs except APN1 and APN2. 1.4.1.5.3.13 Disable TestingVZ_REQ_LTEOTADM_7715 1.4.1.5.3.14 IP Indication for SMS VZ_REQ_LTEOTADM_23000 The SMS IP indication is intended to control if the Mobile Originated (MO) SMS is performed over IMS. The value of "True" means the device shall perform Mobile Originated (MO) SMS on the VZW IMS Network. A value of "False" means the device shall not perform Mobile Originated (MO) SMS on the IMS Network. The default value shall be "True" Note: See "LTE SMS Device Requirements" for more information on SMS IP Indication. 1.4.1.5.3.15 Factory Rest & Default APN values: Class 2 DisableVZ_REQ_LTEOTADM_7709 1.4.1.5.3.16 Functionality for Data Retry Connectivity Management ObjectsVZ_REQ_LTEOTADM_26496 Page 42 of 48 Verizon Wireless ReqsLTE_OTADM 1.4.1.5.3.17 MAX_CONN_TVZ_REQ_LTEOTADM_26500 1.4.1.5.3.18 MAX_CONNVZ_REQ_LTEOTADM_26502 1.4.1.5.3.19 WAIT_TIMEVZ_REQ_LTEOTADM_26505 1.4.1.5.3.20 Factory Reset & Default APN values: Class 3 VZ_REQ_LTEOTADM_38539 Factory reset shall not change Class 3 settings to the default values. 1.4.1.6Configuration Update VZ_REQ_LTEOTADM_7332288 Whenever any of the OMA-DM tree parameters such as APN Management or Connectivity Management parameters are updated on the device, the device shall be considered to have received a Configuration Update. Whenever the device receives a Configuration Update and does not receive a software update, it shall store the date and time information when the Configuration was updated. Page 43 of 48 Verizon Wireless ReqsLTE_OTADM 1.4.2 SDM REQUIREMENTSVZ_REQ_LTEOTADM_2409 1.4.3 Firmware Over The Air (FOTA) VZ_REQ_LTEOTADM_37788 1.4.4 SUPPORT FOR INDUSTRY STANDARDS AND VERIZON WIRELESS REQUIREMENTS VZ_REQ_LTEOTADM_22991 1.4.4.1OMA Defined Managed ObjectsVZ_REQ_LTEOTADM_7680 1.4.4.1.1 Update Result Reporting VZ_REQ_LTEOTADM_7681 All devices shall send a final DM notification message to the server following the update in accordance with OMA DM standards and the following requirements. 1.4.4.1.2 Update - Fatal Error VZ_REQ_LTEOTADM_7682 If the update process experiences a fatal error (i.e. checksum of final image invalid), the device shall reset. 1.5 DEVINFO SUBTREE EXTENSION VZ_REQ_MMOTADM_3103 Page 44 of 48 Verizon Wireless ReqsLTE_OTADM 1.5.1 ICCID Extended Node Support VZ_REQ_MMOTADM_8081 In addition to the Dev Info nodethat is supported from the LTE OTADM and ReqsOTADM Requirements documents, thedevice shall support ICCID extension node as described below DevInfo Nodes Description Value 1.5.1.1.1.1 ./DevInf o/Ext/ICCI D UICCs NULL or <ICCID> (See ICCID Value description below) Value Type Commands Char Get ICCID Extension node is a Read Only node with Type Char.TheDevice shall not allow a Replace command from DM server on the ICCID Extensionnode.The Device shall be able to perform Read/Write operations on the ICCIDExtension Node. This node shall be of Length 20 and shall only allow thefollowing values: 1. NULL If UICC is not present in the Device or theDevice is unable to reach the UICC due to some fault in the OS 2. This node shall only populate ICCID value retrieved from theUICC present in the device and only allow the following characters (0, 1, 2, 3,4, 5, 6, 7, 8, or 9). Example: 8914812345678901234 1.5.2 Device Functionality VZ_REQ_MMOTADM_8083 The Device shall attempt to read the value of ICCID everytime the Device is powered on 1. If a UICC is present and an ICCID value is retrieved, then the device shall check the existing value in the ICCID Extension Node. If the value is different than what is retrieved, then theretrieved value should be written in place of the preexisting value 2. If a UICC is not present, then the device shall write a NULLin place of the ICCID Value. The Device shall make use of the available OS APIs to be able to listen for UICC Changes/Removalwhile device is powered on. If a UICC change/removal is detected, thenthe device shall use the following logic: 1. If UICC change is detected, then the Device shall retrieve the new ICCID valuefrom the UICC and overwrite the existing value in the ICCID Extension node withthe new Value 2. If a UICC removal is detected, then the Device shall overwrite the existing value with NULL Page 45 of 48 Verizon Wireless ReqsLTE_OTADM The device shall report the ICCID Extension Node value during a Device Management Package 1 session along with all the other DevInfo node values. The device shall follow the rules specified above for value of ICCID Extension Node (NULL or actual ICCID value of a UICC in the Device). The Device shall not send any value other than what is described in this sub section for the ICCID extension node The Device shall not allow a Replace command from DM server on the ICCID Extension node. 1.6 INFORMATION AND USE CASESVZ_REQ_LTEOTADM_2410 1.6.1 APN CLASS USAGE - INFORMATIONALVZ_REQ_LTEOTADM_2411 1.6.1.1CLASS 1 (APN 1)VZ_REQ_LTEOTADM_23001 1.6.1.2CLASS 2 (APN 2)VZ_REQ_LTEOTADM_23002 1.6.1.3CLASS 3 (APN 3)VZ_REQ_LTEOTADM_23003 Page 46 of 48 Verizon Wireless ReqsLTE_OTADM 1.6.1.4CLASS 4 (APN 4)VZ_REQ_LTEOTADM_23004 1.7 REFERENCES VZ_REQ_LTEOTADM_2412 <Industry Standards References> Change requests may cause modification to the specifications listed below. Please refer to www.3gpp.org for the latest version of the 3GPP specifications. Verizon Wireless LTE 3GPP Band 13 specifications are available at www.verizonwireless-opendevelopment.com. 1. Enabler Release Definition for OMA Device Management (based on SyncML DM), Version 1.1.2, December 9, 2003 2. IP Based Over-the-Air Device Management (IOTA-DM) for cdma2000 Systems, PN-30187, To be published as TIA-1059, January 14, 2005 3. The TLS Protocol Version 1.0, RFC 2246, January 1999 www.ietf.org/rfc/rfc2068.txt 4. Rivest, R., "The MD5 Message Digest Algorithm", RFC 1321, April 1992. www.faqs.org/rfcs/rfc1321.html 5. A. Frier, P. Karlton, and P. Kocher, "The SSL 3.0 Protocol", Netscape Communications Corp., Nov 18, 1996. 6. OMA Device Management Bootstrap, Version 1.2 dated June 15, 2005. http://www.openmobilealliance.org/technical/release_program/docs/copyrightclick.aspx? pck=DM&file=V1_2-20050628-C/OMA-TS-DM-Bootstrap-V1_2-20050615-C.pdf 7. OMA Device Management Notification Initiated Session, Version 1.2 dated June 7, 2005. http://www.openmobilealliance.org/technical/release_program/docs/copyrightclick.aspx? pck=DM&file=V1_2-20050607-C/OMA-TS-DM-Notification-V1_2-20050607-C.pdf 8. OMA Device Management Protocol, Version 1.2 dated August 26, 2005. http://www.openmobilealliance.org/technical/release_program/docs/copyrightclic k.aspx?pck=DM&file=V1_2-20050826-C/OMA-TS-DM-Protocol-V1_2-20050826-C.pdf 9. OMA Device Management Requirements Document, Version 1.2 dated June 7, 2005. http://www.openmobilealliance.org/technical/release_program/docs/copyrightclick .aspx?pck=DM&file=V1_2-20050607-C/OMA-RD-DM-V1_2-20050607-C.pdf 10. OMA Device Management Representation Protocol, Version 1.2 dated July 29, 2005. http://www.openmobilealliance.org/technical/release_program/docs/copyrightclick .aspx?pck=DM&file=V1_2-20050607-C/OMA-RD-DM-V1_2-20050607-C.pdf 11. OMA Device Management Security, Version 1.2 dated July 29, 2005. http://www.openmobilealliance.org/technical/release_program/docs/copyrightclic k.aspx?pck=DM&file=V1_2-20050729-C/OMA-TS-DM-Security-V1_2-20050729-C.pdf Page 47 of 48 Verizon Wireless ReqsLTE_OTADM 12. OMA Device Management Standardized Objects, Version 1.2 dated June 7, 2005. http://www.openmobilealliance.org/technical/release_program/docs/copyrightclick .aspx?pck=DM&file=V1_2-20050729-C/OMA-TS-DM-Security-V1_2-20050729-C.pdf 13. OMA Device Management Tree and Description, Version 1.2 dated June 15, 2005. http://www.openmobilealliance.org/technical/release_program/docs/copyrightclick .aspx?pck=DM&file=V1_2-20050729-C/OMA-TS-DM-Security-V1_2-20050729-C.pdf 14. OMA Device Management Tree and Description Serialization, Version 1.2 dated June 7, 2005. http://www.openmobilealliance.org/technical/release_program/docs/copyrightclick .aspx?pck=DM&file=V1_2-20050607-C/OMA-TS-DM-TNDS-V1_2-20050607-C.pdf 15. Verizon Wireless LTE 3GPP Band 13 Network Access Device Requirements 16. Verizon Wireless LTE SMS Device Requirements 17. Verizon Wireless LTE Data Retry Device Requirements 18. Verizon Wireless Compliance Test Plan LTE OTADM 19. The Hypertext Transfer Protocol Version 1.1, RFC 2068, June 1999 www.ietf.org/rfc/rfc2068.txt 20. WAP-230-WSP Specification http://www.openmobilealliance.org/tech/affiliates/LicenseAgreement.asp?DocName=/wap/w ap-230-wsp-20010705-a.pdf 21. WAP-259-WDP Specification http://www.openmobilealliance.org/tech/affiliates/LicenseAgreement.asp?DocName=/wap/w ap-259-wdp-20010614-a.pdf 22. Device Connectivity Management Object (DCMO) Specification http://member.openmobilealliance.org/ftp/Public_documents/DM/DCMO/Permanent_docum ents/OMA-TS-DCMO-V1_0-20090902-D.ZIP 23. 3GPP TS 23.003: Technical Specifications Group Core Network and Terminals: Numbering, addressing and identification V9.0.0 24. The Internet Assigned Number Authority (IANA)Header Field Parameter Registry for the Session Initiation Protocol (SIP), RFC 3986, http://www.ietf.org/rfc/rfc3968.txt Page 48 of 48Microsoft Word 2013 Microsoft Word 2013