Introduction
General
This document provides a description for the installation of a DIRAC server.
The DIRAC system is composed of a server-side software, called “DIRAC server”, and several SENC1 boards that are operated in FOX61x network elements.
The DIRAC server is a centralized key management system and is responsible for the generation and distribution of the Master Keys used by the SENC1 Crypto Engines. The random numbers required for the Master Keys are generated by a Quantis USB device, attached to the DIRAC server.
The DIRAC server provides the following hardware and software components:
• The Quantis USB device, delivering the quantum random numbers required for the Master Keys. This device is a third party product manufactured by ID QUANTIQUE (IDQ).
• The Master Key Manager, distributing the Master Keys generated by the Quantis USB device to the Crypto Engines which are used as MPLS tunnel endpoints for a bidirectional label switched path (LSP).
• The MPLS manager, maintaining a database with all deployed SENC1 Crypto Engines and MPLS tunnel endpoints.
• The DNMS manager, maintaining a database with all deployed SENC1 Functional Units with their identifier and IP address. The DNMS database is populated by the DIRAC user.
• The DNMS agent, providing the DIRAC server fault management and the logging of DIRAC server events.