Tuesday, May 29, 2012

The Wi-Fi Creed

Vendors have a tendency to bash one another. But despite their differences, they share many beliefs in common. I would like to invite all Wi-Fi vendors to set aside their differences and gather together in professing a common love for this wonderful technology that changes our lives.

I’ll take the first step, and throw out some competitor love. After all, many of us in this industry recognize the innovation of others. I’ll do this by attempting to define a common set of goals that every Wi-Fi vendor should strive to meet. But I will do so by using product marketing catchphrases that various Wi-Fi vendors use. I think it gives it a little twist and creates an inclusive attitude. I call this “The Wi-Fi Creed”.

The Wi-Fi Creed

We BELIEVE in the power of RF, because layer 1 is where we flex our beams, showing the true power of wireless;

We commit to MOVE the industry forward, through the power of standards development and the industry might of our market leaders;

We provide SEAMLESS mobility through the world around us, which enables new applications and improves service delivery for our customers;

We enforce strong security, providing a CLEAR PASS to users and devices only when they meet the defined policy;

We must be ADAPTIVE and flexible, embracing change and moving in new directions when the market demands;

We pledge to translate customer business needs into a MULTI-SERVICE technology solution, capable of delivering robust features;

We aim to SIMPLI-FI enterprise networks, so customers and partners can effectively design, deploy and support mission-critical networks;

We keep PULSE on technologies that change our lives, society, and culture and identify ways to enhance their usefulness;

We strive to meet the demand brought by a dizzying ARRAY of new mobile devices and their explosive growth;

We resolve to shout out from every ROOFNET, evangelizing the power of Wi-Fi!

Won’t you join me?

Andrew vonNagy

P.S. – For brownie points, can you match each statement to the Wi-Fi vendor J

Monday, May 21, 2012

Are Apple iPhones Misbehaving on Wi-Fi

The latest generation of mobile devices, including the Apple iPhone 4S, may be causing performance degradation on your Wi-Fi network, which could be reported as a Denial of Service (DoS) attack by WIPS (wireless intrusion prevention systems).

One of my blog readers contacted me about a disturbing finding he had and asked for my opinion (thanks Thanh). The finding in question was that the Apple iPhone, iPad, and other mobile devices based on the latest Broadcom chipsets are setting really long Duration values in the range of 10-14ms within Wi-Fi control frames (e.g. RTS/CTS-to-self). This essentially reserves the medium for the device to transmit without a collision. The problem is that this is an excessively long period of time for an 802.11n capable device, and through my packet analysis I have found that no large frame transmission is subsequently occurring. This indicates that a performance problem may exist with the devices, and may be reported as an NAV DoS attack on the network by WIPS systems.

I've also heard anecdotal reports of this being observed on HTC Google Nexus One, Apple iPad 2, iPhone 4, some RIM Blackberrys, and even on a Broadcom evaluation board. So, there is a distinct possibility that this issue lies in the Broadcom chipset used in these devices and is not isolated to Apple devices. However, I have only tested this on my personal iPhone 4S and cannot directly verify those observations. So this post only details what I have actual been able to test and observe directly.

I had a hard time believing this could be true, so I investigated myself. Sure enough, I found the behavior when I tested.

Apple iPhone 4S Large Duration Value

What you see in the figure above is that the iPhone transmits CTS-to-Self frames at regular intervals, around once every second, with an excessively large Duration value. This causes all other Wi-Fi clients to set the NAV (virtual carrier sense) to the specified Duration value and defer transmission. Essentially, my iPhone was causing a blockage of all traffic on my wireless network for 11ms at regular intervals. Definitely not good for performance.

Possible valid explanations for this behavior could be:

1) Frame aggregation with 802.11n. I did see the iPhone using frame aggregation in other instances and using an appropriate Duration value around 4ms in those cases. But I did not see frame aggregation being used after the 11ms Duration control frames.

2) The use of a Transmit Opportunity (TXOP) on a QoS enabled WLAN in order to transmit a burst of packets within a specific QoS traffic class. I double-checked the TXOP values advertised by my access point and they are using the 802.11 default values of 0ms (single frame only) for best effort and background queues, 3.008ms for the video queue, and 1.504ms for the voice queue, which are much lower than the 11ms observed value.

3) A really large frame transmitted at a really low data rate. This is possible if the iPhone needed to transmit a 1,384 byte or larger frame at 1 Mbps to get such a Duration value. But I have all 802.11b rates disabled on my AP and verified in the packet trace that the iPhone was using 24 - 65 Mbps almost all the time, with only a few frames at my lowest available data rate of 6 Mbps.

After analyzing my packet trace I can find no evidence of my iPhone transmitting any data frames immediately after the control frame containing the high Duration value. This essentially rules out all three possible explanations.

Other possible explanations would be a poor client roaming algorithm that wants to halt traffic while it goes off-channel to scan for other APs to which it could roam, or a poorly designed battery saving technique for mobile devices. However, I captured on all three non-overlapping 2.4GHz channels and found no evidence of my iPhone probing on other channels during that 11ms time period. And using this as a battery saving technique doesn't even make a whole lot of sense because clients can already notify the AP of it's power save mode and the AP will buffer traffic until it wakes up, or at worst case send broadcast traffic at the configured DTIM interval, which is usually 102ms which allows for a much longer  sleep period anyways. Regardless, the iPhone indicated that it was staying awake (in active mode) in the control frames, so it appears to have not been putting the radio to sleep.

Frankly, I have no answer to explain this behavior. I don't exactly know what is going on.

The effect on a home network is likely to be small, since 11ms out of every 1 second is only about 1% of available airtime. However, in a corporate environment where mobile devices are being introduced into the environment at a staggering rate, the compound effect could be a serious reduction in Wi-Fi network performance and capacity! Think of having 30 students in a single classroom all connected with their mobile devices, 200 in a university lecture hall, or 500 at a trade show or conference. This is increasingly likely as smartphone and mobile device penetration is over 50% in the U.S. and other countries already, and consumers are typically carrying 2-3 Wi-Fi enabled devices with them at all time. The worst-case result in these environments would be so much reserved airtime that almost no network capacity would be left for actual user traffic. Just what we need trying to support tons of mobile devices on enterprise networks, huh.

If I uncover more details, I will update this post accordingly.

Andrew vonNagy

Sunday, May 20, 2012

Wi-Fi Alliance Rebrands Hotspot 2.0 as Wi-Fi Certified Passpoint

In case you didn't seen the press release back on May 8th, the Wi-Fi Alliance announced official branding for the Hotspot 2.0 program as Wi-Fi Certified Passpoint (TM).

The initial focus remains on service provider and carrier integration for easier authentication and better security on Wi-Fi hotspots. However, there are provisions for other identification and authentication methods to the network that could enable other web identities to be used, such as common social media usernames and passwords. These other methods will be critical for consumer adoption on non-cellular devices, such as Wi-Fi only tablets and laptops, which are heavily favored today over cellular models due to lack of bundled pricing by carriers and higher expense of data plans.

You can register on the Wi-Fi Alliance's website to download this free whitepaper on the Passpoint program.