Professional Documents
Culture Documents
TS-SRAN-SW-0160 End of TLS Protocol Version 1 0 and 1 1 Support
TS-SRAN-SW-0160 End of TLS Protocol Version 1 0 and 1 1 Support
TS-SRAN-SW-0160 End of TLS Protocol Version 1 0 and 1 1 Support
TS-SRAN-SW-0160
Issue 3.0 APPROVED
Approved on 2023-08-25
© 2023 Nokia. Nokia Condential Information. Use subject to agreed restrictions on disclosure and use.
No further reproduction or networking is permitted. Distributed by Nokia.
Copyrighted material licensed to muhammad-adil.murad@450connect.de on 17-10-2023.
Nokia is committed to diversity and inclusion. We are continuously reviewing our customer
documentation and consulting with standards bodies to ensure that terminology is inclusive
and aligned with the industry. Our future customer documentation will be updated
accordingly.
This document includes Nokia proprietary and condential information, which may not be
distributed or disclosed to any third parties without the prior written consent of Nokia. This
document is intended for use by Nokia’s customers (“You”/”Your”) in connection with a
product purchased or licensed from any company within Nokia Group of Companies. Use this
document as agreed. You agree to notify Nokia of any errors you may nd in this document;
however, should you elect to use this document for any purpose(s) for which it is not
intended, You understand and warrant that any determinations You may make or actions
You may take will be based upon Your independent judgment and analysis of the content of
this document.
Nokia reserves the right to make changes to this document without notice. At all times, the
controlling version is the one available on Nokia’s site.
NO WARRANTY OF ANY KIND, EITHER EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO
ANY WARRANTY OF AVAILABILITY, ACCURACY, RELIABILITY, TITLE, NON-INFRINGEMENT,
MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE, IS MADE IN RELATION TO THE
CONTENT OF THIS DOCUMENT. IN NO EVENT WILL NOKIA BE LIABLE FOR ANY DAMAGES,
INCLUDING BUT NOT LIMITED TO SPECIAL, DIRECT, INDIRECT, INCIDENTAL OR
CONSEQUENTIAL OR ANY LOSSES, SUCH AS BUT NOT LIMITED TO LOSS OF PROFIT,
REVENUE, BUSINESS INTERRUPTION, BUSINESS OPPORTUNITY OR DATA THAT MAY ARISE
FROM THE USE OF THIS DOCUMENT OR THE INFORMATION IN IT, EVEN IN THE CASE OF
ERRORS IN OR OMISSIONS FROM THIS DOCUMENT OR ITS CONTENT.
© 2023 Nokia.
Contact ........................................................................................................................................... 7
2 Purpose .......................................................................................................................................... 8
3 Validity ............................................................................................................................................ 9
3.1 Impacted technology ........................................................................................................ 9
3.2 Impacted system and SW releases ................................................................................. 9
3.3 Impacted products ......................................................................................................... 10
3.4 Related parameters ........................................................................................................ 10
3.5 Related features ............................................................................................................. 10
4 Keywords ..................................................................................................................................... 12
TS-SRAN-SW-0160
Radio Network
Informative
Preventive X
Corrective
Additional categorization
Urgent
Security X
Release Upgrade X
SW Update
Parametrization X
Information is classified as
Internal
5
X
Customer Specific
All Customers
No further reproduction or networking is permitted. Distributed by Nokia.
Copyrighted material licensed to muhammad-adil.murad@450connect.de on 17-10-2023.
Summary of changes
7
© 2023 Nokia. Nokia confidential
Contact your local Nokia support.
Contact
No further reproduction or networking is permitted. Distributed by Nokia.
Copyrighted material licensed to muhammad-adil.murad@450connect.de on 17-10-2023.
2. Purpose
This document contains generic information about products. These can be instructions that
explain problem situations in the field, instructions on how to prevent or how to recover from
problem situations, announcements about changes or preliminary information as requirements
for new features or releases.
Technology Impact
GSM/EDGE
WCDMA
Small Cells
Single RAN X
Nokia Core
5G
Wi-Fi
Factory Delivery SW
Tip:
The presented validity information includes the currently active software. The section is re-
assessed prior to every new System Release availability.
Product
11
LTE OAM Transport Layer Security (TLS)
Support
Feature ID
LTE150
Copyrighted material licensed to muhammad-adil.murad@450connect.de on 17-10-2023.
No further reproduction or networking is permitted. Distributed by Nokia.
12
No further reproduction or networking is permitted. Distributed by Nokia.
Copyrighted material licensed to muhammad-adil.murad@450connect.de on 17-10-2023.
5. Executive summary
For Single RAN base stations the TLS 1.0/1.1 protocol and the associated ciphers will be removed
starting from Single RAN program 23R4-SR.
In case the operator makes use of own syslog servers or own Trace Collection Entity (TCE) servers
not provided by Nokia then the TLS secured communication with these servers will fail if the
servers only support TLS 1.0/1.1.
For Single RAN base stations, the TLS 1.0/1.1 protocol and the associated ciphers will be
deactivated starting from SRAN 23R4-SR.
The Internet Engineering Task Force has formally deprecated the TLS 1.0 and TLS 1.1
cryptographic protocols on the grounds of security after several attacks were discovered over
the past years that put encrypted internet communications relying on the two protocols at
risk.
The Transport Layer Security (TLS) 1.0 and 1.1 protocols are deprecated by 3GPP Rel 16 TS
33.210.
Before Single RAN 23R4-SR a Single RAN BTS supports TLS 1.2 and TLS 1.3 but TLS 1.0/1.1 can
be activated only on demand to overcome backward compatibility issues in case the operator
makes use of own syslog servers or own Trace Collection Entity (TCE) servers not provided by
Nokia and these servers are only supporting TLS 1.0/1.1.
Note:
There is no fallback to TLS 1.0/1.1 supported starting from 23R4.
To effectively end support of TLS 1.0/1.1 in Single RAN 23R4-SR and upcoming SRAN releases the
feature LTE150: LTE OAM Transport Layer Security (TLS) Support will be deactivated by
executing actions described below: