BICSI Brief Volume 46, Issue 2 | November 2025
Volume 46, Number 2 April/May/June 2025 HOW PART 20 CONSUMER REPEATERS CAN ACCELERATE ENTERPRISE 5G ADOPTION FOR SMALL BUSINESSES THE OFFICIAL TRADE JOURNAL OF BICSI ICT TODAY
PLUS: + Cyber-Informed Engineering: Safeguarding Intelligent Buildings + From Blueprint to Broadband: Ensuring Seamless Connectivity in Modern Buildings
contents
APRIL/MAY/JUNE 2025 Volume 46, Issue 2
Introducing
FROM THE BOARD PRESIDENT 05 The Critical Role of Best Practices in Intelligent Buildings and Wireless Design and Installation By David M. Richards, RCDD, NTS, OSP, TECH, CT COVER ARTICLE 06 How Part 20 Repeaters Can Accelerate Enterprise 5G Adoption for Small Businesses The growth of enterprise 5G deployments is one of the most pressing priorities for the wireless industry this year. This is not exclusive to large corporate campuses either—it extends to the “middleprise” and small businesses. It was evident during Mobile World Congress (MWC) Las Vegas 2024, one of the industry's premier annual wireless events, that major players are actively seeking ways to reduce costs and streamline installation to accelerate in-building cellular adoption. A show that used to be heavily carrier-focused has now balanced more evenly between enterprises, wireless operators, and original equipment manufacturers (OEMs). By Sun Kim 12 Cyber-Informed Engineering: Safeguarding Intelligent Buildings In an era where buildings are no longer just static structures but interconnected ecosystems, intelligent buildings have become a cornerstone of modern infrastructure. By Jim Walters 18 From Blueprint to Broadband: Ensuring Seamless Connectivity in Modern Buildings In-building connectivity options are increasing as spectrum is being deployed both in licensed bands and lightly licensed bands. Building owners, tenants, and the people driving their ICT requirements demand device connectivity throughout their
buildings and across campuses. Enterprises are using 4G and 5G licensed cellular spectrum to augment Wi-Fi systems as well as Citizens Broadband Radio Service (CBRS) to improve connectivity. By Tracy Ford 24 Configuring Enterprise Networks for Wireless Audiovisual Content Sharing Communication in today’s world is dominated by audiovisual (AV) media, conveyed electronically, whether it is a PowerPoint presentation or a full- motion video clip. Even ICT Today is published digitally and largely read on an electronic screen. At the center of it all are Ethernet LANs. But people are now accustomed, however, to having the world in their pocket. By Anthony Cortes 34 Leveraging Single-Pair Ethernet for Sustainable and Secure Smart Buildings Single-Pair Ethernet (SPE) is a transformative technology that is redefining the landscape of smart buildings by enabling efficient retrofitting of legacy systems, enhancing sustainability, and integrating information technology (IT) and operational technology (OT) networks. By Yuri Luskind 42 Active Evidence Collection: Redefining Survey and Assessment Activities in Smart Buildings How shifting from static surveys to continuous active evidence collection unlocks smarter, more efficient building management. By Dennis Mazaris
Charting Your Path to ICT Success!
Streamline your membership profile all in one place – with more tools coming soon!
Log into bicsi.org today to try it out!
SUBMISSION POLICY ICT TODAY is published quarterly by BICSI, Inc. and is sent in digital format to BICSI members and credential holders. ICT TODAY welcomes and encourages submissions and suggestions from its readers. Articles of a technical, vendor-neutral nature are gladly accepted for publication with approval from the Editorial Review Board. However, BICSI, Inc., reserves the right to edit and alter such material for space or other considerations and to publish or otherwise use such material. The articles, opinions, and ideas expressed herein are the sole responsibility of the contributing authors and do not necessarily reflect the opinion of BICSI, its members, or its staff. BICSI is not liable in any way, manner, or form for the articles’ opinions and ideas. Readers are urged to exercise professional caution in undertaking any of the recommendations or suggestions made by authors. No part of this publication may be reproduced in any form or by any means, electronic or mechanical, without permission from BICSI, Inc. ADVERTISING: Advertising rates and information are provided upon request. Contact BICSI for information at +1 813.769.1842 or cnalls@bicsi.org. Publication of advertising should not be deemed as endorsement by BICSI, Inc. BICSI reserves the right in its sole and absolute discretion to reject any advertisement at any time by any party. © Copyright BICSI, 2025. All rights reserved. BICSI and all other registered trademarks within are property of BICSI, Inc.
I
April/May/June 2025
3
THE OFFICIAL TRADE JOURNAL OF BICSI ICT TODAY
From BICSI’s Board President David M. Richards, RCDD, NTS, OSP, TECH, CT
THE CRITICAL ROLE OF BEST PRACTICES IN INTELLIGENT BUILDINGS AND WIRELESS DESIGN AND INSTALLATION
ADVERTISER’S INDEX Adrian Steel..............................................23 newera.adriansteel.com AFL.............................................Back Cover learn.aflglobal.com trueCABLE................................................. 18 truecable.com BICSI INFORMATION BICSI Navigator...........................................2 BICSI Beyond 2025....................................11 Applied Intelligent Building Design Course..........................................23 BICSI Winter Conference.........................47 BICSI ITSIMM 8th Edition...........................47
BICSI BOARD OF DIRECTORS Board President David M. Richards, RCDD, NTS, OSP, TECH, CT Board President-Elect William "Bill" Foy, RCDD, DCDC, ESS, NTS, OSP, WD Board Secretary Luke Clawson, RCDD, RTPM, GROL, MBA Board Treasurer Peter P. Charland III, RCDD, RTPM, DCDC, SMIEEE, CET, NTS, ESS, WD Board Director Ninad Desai, RCDD, NTS, OSP, TECH, CT Board Director William “Joe” Fallon, RCDD, ESS Board Director Daniel Hunter, RCDD Board Director Trevor Kleinert, RCDD, NTS, DCDC, TECH, CT Board Director Gilbert Romo Board Director Mark Tarrance, RCDD, RTPM Board Director Jay Thompson, RCDD Board Director James "Jim" Walters, RCDD, DCDC, OSP, RTPM, PMP, CISSP, GICSP Chief Executive Officer John H. Daniels, CNM, FACHE, FHIMSS, CPHIMS
Dear Members and Readers,
• Yuri Luskind’s "Leveraging Single-Pair Ethernet for Sustainable & Secure Smart Buildings" presents a compelling case for how this technology is transforming legacy infrastructure while enhancing security and energy efficiency. • Finally, Anthony Cortes’ "Configuring Enterprise Networks for Wireless Audiovisual Content Sharing in Collaboration Settings" offers practical guidance on optimizing enterprise networks for seamless AV experiences. The insights provided in this issue reinforce the importance of implementing best practices in the design, installation, and management of intelligent building systems and wireless networks. As ICT professionals, we have the responsibility to stay ahead of these trends, innovate with purpose, and ensure that technology serves as an enabler of progress. Thank you for your commitment to excellence and for being an integral part of this vibrant community.
Welcome to the latest edition of ICT Today! This issue is dedicated to the theme of Best Practices in Intelligent Building and Wireless Design and Installation—a timely and crucial focus as we continue to advance the integration of smart technology into modern infrastructure. The articles featured in this edition highlight the critical role of best practices in ensuring that intelligent buildings and wireless networks are not only efficient but also secure, scalable, and future-ready. • Sun Kim’s "How Part 20 Repeaters Can Accelerate Enterprise 5G Adoption for Small Businesses" explores strategies for cost- effective and efficient deployment of 5G in enterprise environments. • Dennis Mazaris presents "Active Evidence Collection: Redefining Survey and Assessment Activities in Smart Buildings" offering invaluable insights into proactive lifecycle management of telecommunication infrastructure. • Tracy Ford’s "From Blueprint to Broadband: Ensuring Seamless Connectivity in Modern Buildings" underscores the importance of integrating wireless connectivity considerations into building design from the outset. • Jim Walters’ "Cyber-Informed Engineering: Safeguarding Intelligent Buildings" highlights the increasing cybersecurity risks faced by intelligent buildings and provides a proactive framework to mitigate potential threats.
EDITORIAL REVIEW BOARD Beatriz Bezos, RCDD, DCDC, ESS, NTS, OSP, PE, PMP Jonathan L. Jew F. Patrick Mahoney, RCDD, CDT PUBLISHER BICSI, Inc., 8610 Hidden River Pkwy., Tampa, FL 33637-1000 Phone: +1 813.979.1991 Web: bicsi.org EDITOR Dan Brown, icttodayeditor@bicsi.org
ICT TODAY NEEDS WRITERS ICT Today is BICSI’s premier publication for authoritative, vendor-neutral coverage and insight on next generation and emerging technologies, standards, trends, and applications in the global ICT community. Consider sharing your industry knowledge and expertise by becoming a contributing writer to this informative publication. Contact icttodayeditor@bicsi.org if you are interested in submitting an article.
Best regards,
David M. Richards, RCDD, NTS, OSP, TECH, CT President, Board of Directors Quality & Training Manager - Global Solutions Integration Black Box Network Services
ADVERTISING SALES +1 813.979.1991 or cnalls@bicsi.org
PUBLICATION STAFF Clarke Hammersley, Consultant Editor Jeff Giarrizzo, Director, Technical Publications
Allen Dean, Manager, Standards and Publications Operations Mark "Line" Cansino, Senior Graphic Designer & Project Manager
I
I
4
ICT TODAY
April/May/June 2025
5
How Part 20 Consumer Repeaters Can Accelerate Enterprise 5G Adoption for Small Businesses
full responsibility for funding their own signal sources in addition to repeaters or distributed
antenna systems (DAS), which is a significant cost. One of the few exceptions to this rule is major consumer destinations near global sporting events such as the Super Bowl or World Cup. As enterprises are now responsible for bearing the full expense, the need for cost-effective solutions is more critical than ever. To address these financial challenges, other
funding models have emerged to help enterprises deploy in-building wireless networks without solely relying on upfront hardware spend (however, they are best suited for mid-sized or large companies):
Managed Services Model If purchasing and owning a DAS or repeater for in-building connectivity were similar to buying property, then the managed service model would be like renting an apartment. A third-party provider installs and maintains the network while the
•
COVER ARTICLE By Sun Kim
The growth of enterprise 5G deployments is one of the most pressing priorities for the wireless industry this year. This is not exclusive to large corporate campuses either—it extends to the “middleprise” and small businesses. It was evident during Mobile World Congress (MWC) Las Vegas 2024, one of the industry's premier annual wireless events, that major players are actively seeking ways to reduce costs and streamline installation to accelerate in-building cellular adoption. A show that used to be heavily carrier-focused has now balanced more evenly between enterprises, wireless operators, and original equipment manufacturers (OEMs). Many different wireless approaches are being touted to support this initiative from small cells to private wireless networks, but one of the most effective ways for small businesses is by leveraging Part 20 consumer repeaters.
enterprise pays a recurring fee. This reduces the initial capital investment and shifts the responsibility of network management to specialized service providers, ensuring continuous support and upgrades. It is another recurring bill to pay in perpetuity as long as the system is being utilized, which can be more costly over a long time than a more traditional deployment.
Neutral-Host Model With neutral host DAS, third-party infrastructure
•
providers build, own, and maintain the wireless system, leasing access to multiple carriers. Enterprises benefit from improved indoor coverage without assuming full financial responsibility, while mobile carriers share the cost of deployment. This model is common in large venues like airports, stadiums, and shopping malls where carriers are incentivized to have excellent signal strength to best represent their brand for thousands
THE SHIFT TOWARD ENTERPRISE RESPONSIBILITY IN 5G DEPLOYMENT The way in which wireless networks are funded has undergone a significant transformation, making it more difficult for enterprises to invest in cellular technology. Before bring-your-own-device (BYOD) democratized cellular usage in offices and venues, mobile carriers were heavily incentivized to front the cost for both a signal source and the cellular infrastructure. This is because enterprises would then
to millions of guests frequenting the establishments. The enterprises that benefit from this model are located in the general area of major landmarks.
be “locked in” to that carrier's network and purchase carrier-specific phones and services. Now, enterprises are mostly expected to take
6
I
ICT TODAY
April/May/June 2025
I
7
• Shared Infrastructure Model Some enterprises are exploring infrastructure- sharing agreements with neighboring businesses or property owners to distribute the infrastructure costs more effectively. Multi-tenant buildings, corporate campuses, and business districts can benefit from jointly funded solutions that serve multiple stakeholders under a single deployment. This model is highly efficient and can be ideal for small businesses if they are located with other businesses whose owners agree on the value wireless brings to each organization. • Hybrid Model In-building wireless funding is not always black and white and occasionally businesses will leverage a mix of funding options, combining elements of capital expenditures (CapEx), operating expenditures (OpEx), and third-party management. For example, an enterprise might partially fund a DAS or repeater deployment while also relying on a managed service provider to handle operations and maintenance under a subscription-based model. Beyond cost, most businesses do not want the weight of respons- ibility for managing the network should something go wrong. • Enterprise Fully-Funded Mode This model is where enterprises fully fund the deployment of in-building wireless infrastructure, including signal sources, cabling, antennas, and system integration costs. This approach has the greatest wireless advantages because it gives enterprises complete control and ownership of the network, but it also requires substantial upfront costs, making it viable for the upper tier of mid-sized companies and large enterprises. Part 20 repeaters, however, can create a way for small buildings, whether retailers, businesses, or other smaller establishments, to afford CapEx and OpEx costs of bringing cellular connectivity indoors. UNDERSTANDING FCC PART 20 INDUSTRIAL AND CONSUMER REPEATERS To understand the advantages of Part 20 consumer repeaters for small businesses (Figure 1), an installer must first consider the differences between Part 20 industrial and consumer repeaters.
fill this gap is with buildings under 75,000 square feet - of which there are a seemingly countless supply of across the U.S. These are buildings where cellular coverage is often an issue but enterprises may not have the resources to cover substantial wireless costs. In this case, these repeaters prove more cost-effective than industrial repeaters and avoid the bureaucratic hurdles. While the actual process varies depending on the brand of consumer repeater, enterprises can simply scan a barcode for each carrier, visit the appropriate website, and enter basic details such as address, bands, and serial numbers. This process can take only minutes and is significantly easier and faster than the aforementioned industrial process, which can take up to six months for approval and still carry risk of being denied after extensive network design work. Consumer repeaters may also require less labor to install, compared to industrial systems with their simple system design. While an experienced integrator is still recommended, the overall complexity is significantly lower. This is partially due to the FCC mandating that everything required to deploy it must be packaged together - including the coaxial cable and other passives. Another element that makes deploy- ment easier is the flexibility of where it is acceptable to place the consumer repeater. Its small form factor means it can be placed effectively anywhere, compared with industrial repeaters that are much larger and must be typically concealed in a telecommunications closet or other hidden area of the building. These elements make consumer repeaters a viable solution for enterprises that need coverage but lack the budget resources or the appetite for an extensive wireless deployment. THE ROLE OF CONVERGED SYSTEMS IN CUTTING COSTS Another element that can reduce friction and total cost for installing commercial cellular wireless in smaller enterprises is coupling the benefits of converged system deployments and Part 20 consumer repeaters. Converging systems refers to sharing the same cabling, antennas, and some hardware for a public safety system with a commercial wireless system.
FIGURE 1: Rack-mounted Part 20 consumer grade repeater. Source: ADRF
pre-packaging to support specific radio frequency (RF) bands, and are subject to much less rigorous regulatory oversight. This is because the FCC has already established specific requirements for consumer signal boosters to ensure they do not cause harmful interference to wireless networks. For example, as of February 20, 2013, the FCC ceased accepting applications for equipment certification of consumer signal boosters that do not comply with the new rules. Additionally, these repeaters must adhere to labeling and technical specifications outlined in Section 47 CFR § 20.21. The label of Part 20 consumer repeaters itself can be misleading since there are various levels of sophis- tication in this category. There are true DIY consumer repeaters that are low-cost but are less reliable and often subject to poor performance due to noise interference. On the other hand, there are Part 20 consumer repeaters more suitable for enterprises, which are more costly and enhance coverage without regulatory friction. It is this “enterprise- grade” Part 20 consumer repeater that can support small businesses struggling to find the right balance of coverage, cost, and deployment simplicity. The sweet spot for where Part 20 consumer repeaters
Part 20 industrial repeaters are intended for use by businesses, airports, sports stadiums, and other large venues. These repeaters are typically used to enhance communication within large facilities or specific outdoor regions. Additionally, industrial repeaters are subject to stringent regulatory requirements compared to their consumer counterparts. For example, they must be registered with the FCC before use and are required to meet specific technical standards to prevent interference with other critical communications systems. The registration process involves a retransmission consent agreement, which includes providing detailed information about the repeater’s location, technical parameters, and the licensee responsible for its operation. In contrast, Part 20 consumer repeaters, often referred to as consumer signal boosters, are designed for use by individuals and small businesses to improve wireless coverage in areas with weak signal strength, such as homes, vehicles, and small offices. These devices are intended to be user-friendly and are typically authorized for immediate use upon purchase. They are simple and straightforward, with
I
8
ICT TODAY
April/May/June 2025
I
9
Most buildings in the U.S. are already mandated by their authority having jurisdiction (AHJ) to install public safety communication systems within six months of operation to receive their certificate of occupancy. While AHJs each have their own interpretation of the NFPA and International Fire Code (IFC) regulations that they follow, in the end, it is a requirement. Many jurisdictions around the country still do not allow merging the commercial and public safety systems, but that is beginning to change. The reason convergence was historically frowned upon was due to a lack of clear language about this in the NFPA and IFC until the publication of NFPA 1225 on September 15, 2021. Section 18.6.3 of NFPA 1225 introduced language that shared systems are not prohibited as long as coverage and performance of the public safety system is uncompromised, regardless of the volume of traffic, and the commercial system must meet the same rigorous testing standards as public safety systems. This clarity is creating momentum for convergence. For example, areas like Broward County, FL; Clark County, NV; Orange County, CA; Washington, D.C.; and parts of Ohio allow full convergence of public safety and commercial systems. Others allow partial convergence, which means a system might be able to share cabling but requires separate repeaters for commercial and public safety use cases. In any case, it helps drive down costs in some capacity to install cellular at the same time as the public safety system.
The acceleration of enterprise 5G adoption in small enterprises hinges on cost-effective and streamlined deployment strategies, and Part 20 consumer repeaters can be a viable solution. They offer a more instant and affordable alternative for small enterprise environments. As enterprises must take on greater responsibility for their wireless infrastructure, leveraging enterprise-grade Part 20 consumer repeaters can help overcome financial and logistical barriers holding them back from offering reliable 5G coverage in their buildings. AUTHOR BIOGRAPHY: Sun Kim is the Director of Engineering at ADRF, in charge of overseeing the technical support team for ADRF products including distributed antenna systems (DAS), repeaters, antennas and passive components. Sun is also responsible for managing product development schedules and oversees developing technical documents including user manuals, product datasheets, and software/firmware for ADRF product lines. He works closely with the sales, marketing, and engineering teams to ensure revenue and customer satisfaction goals are met. He has more than 15 years of experience in the in-building/DAS sector. Sun received his B.S. in Business Administration and Management from the University of California, Riverside.
This is more than a conference. This is the future of connectivity. This is BICSI Beyond.
BICSI Beyond 2025 represents the next generation of BICSI’s Fall Conference, bringing together professionals from a variety of industries for four days of meaningful discussions about the future of connected technologies and current innovations.
Join our mailing list to be among the first to know when registration goes live for BICSI Beyond 2025. Join the List
I
10
ICT TODAY
increased vulnerabilities. A lack of preparation for the treatment of cyber vulnerabilities can jeopardize the safety, functionality, and reputation of intelligent buildings. Threat actors seizing upon untreated vulnerabilities can transform intelligent buildings from innovative assets to high-risk liabilities. In a 2018 Harvard Business Review article titled The End of Cybersecurity , the authors argue that traditional cybersecurity measures are no longer sufficient in the face of evolving digital threats. 2 A shift from reactive defense strategies to proactive risk management approaches is required. This involves integrating cybersecurity into overall business strategy and continuously adapting to emerging threats. This article explores the application of cyber- informed engineering (CIE) principles 3 , as championed by Idaho National Laboratory, in designing and securing intelligent buildings. By embedding cybersecurity considerations into the engineering lifecycle, CIE provides a proactive framework to mitigate risks. This approach ensures that intelligent
buildings are technologically advanced and resilient against cyberattacks that could compromise critical systems such as HVAC, lighting, access control, and emergency response mechanisms. The loss of trust in an intelligent building can be devastating—whether it is a corporate headquarters paralyzed by a ransomware attack, a hospital with its critical systems disabled, or a public facility unable to guarantee occupant safety. Beyond operational disruptions, the reputational damage from such incidents can irreparably tarnish the image of even the most cutting-edge structures. There are 12 principles of CIE, and while it would not be possible to cover them all in detail in this article, the focus will be given to ones that go beyond traditional cybersecurity roles. Some of the principles include layered defenses, active defenses, and supply chain management that are addressed by traditional cyber experts. This article will cover some of the unique features of CIE.
Cyber-Informed Engineering: Safeguarding Intelligent Buildings By Jim Walters
In an era where buildings are no longer just static structures but interconnected ecosystems, intelligent buildings have become a cornerstone of modern infrastructure. An intelligent building is a term given to a building or premise that utilizes communication technology to integrate building systems (Figure 1), allowing for intersystem coordination that provides a safer, more comfortable, productive, and efficient environment. 1 The user of the premise should be oblivious to the behind-the-scenes coordination, and enjoy the
environment designed for positive user experiences and enhanced safety. This integration of systems requires many disciplines in the design process. Historically, ICT designers were brought into the process after the most important design decisions had already been made. Developers quickly realized this was inefficient and ICT designers have since become an integrated part of the design process. The growing number of systems and their interdependence caused by integration has created
FIGURE 2 : the 12 principles of cyber informed engineering
FIGURE 1 : Intelligent buildings contain a myriad of interconnected systems that utilize ICT infrastructure to provide safety and improved user experience.
FIGURE 2 : The 12 principles of cyber informed engineering.
I
12
ICT TODAY
April/May/June 2025
I
13
Traditionally, there are four methods to approaching risk. Acceptance, transfer, mitigation, and avoidance are well-known in the industry. The first treatment is to simply accept the risk. However, before the risk is accepted it needs to be quantified to understand the extent of the risk. The entire building stake- holder team will need to be involved in estimating the potential costs and consequences of the unmitigated risk. Therefore, the inability to perform the exercise can allow the risk to be accepted by the team without fully understanding the consequences of their decision. Furthermore, the risk could potentially be accepted by someone on behalf of the team without the knowledge or authority to accept the risk. Some of the key considerations for areas of risk to assess should include, at a minimum: • Security • Safety • Quality • Usability • Mission • Public image The concepts of security and safety are straight- forward and—recalling the definition of an intelligent building—align perfectly with the expectations and skillsets of the traditional design team. The con- siderations of mission and public image will require the broader team to account for the potential implications. The public image of an intelligent building has associated risks that need to be quantified. If the building is a little hotter than usual with service personnel working on systems, the occupants might be inconvenienced, but it is generally understood that sometimes things break down and require repair. If this situation is discovered to be the result of a cyber incident on the operational technology (OT) it could make the local evening news or go viral on social media. Depending on the severity of the event or even the volume of articles in the media, the story may be publicized beyond regional or national news. To understand quantifying the risk of tarnished public image requires talented team members with intimate business expertise to be involved in the process.
CONSEQUENCE FOCUSED DESIGN A deliberate exercise must be conducted to define what critical functions the systems must perform to fully understand the consequences that must be avoided. 4 Such an exercise must move past the basic functions of the system(s) and make a concerted effort to under- stand the safety and business functions performed. Designing an intelligent building is truly a team sport as one single person cannot know all of the answers to the items under consideration. This team should involve players outside of the traditional design team, such as some of the personnel exhibited in Figure 3 at a minimum. Each of these team members brings a unique per- spective and experience to the team. The risk experts and business representatives can articulate the mission and can help examine how to accomplish that mission even in a diminished capacity. These important team members will have concrete knowledge of the risk appetite of the organization. Naturally, the cost required to completely eliminate risk could grow infinitely. As money is always a limit- ing factor, understanding acceptable risk is important. The team will have to choose among competing priorities to arrive at the most complete solution set. FIGURE 3 : ICT designer, business representative, IT and OT, engineering risk expert.
All projects live in an environment with finite resources. Laws and regulations may require specific actions. Risk treatments associated with these aspects will need members of the team with business and legal expertise. There are numerous frameworks to choose from when ranking choices. Outside of corporate guidance, the team needs to arrive at a decision that allows “racking and stacking” of competing interests. Benefit-cost analyses will allow the team to arrive at a ratio by dividing the net present value of benefits by the net present value of costs to arrive at the benefit-cost ratio (BCR). 4 ENGINEERING CONTROLS The concept of engineering control has to be con- sidered very early in design to have the maximum positive impact. It is best practice now to identify engineering design changes that can “eliminate or mitigate cyber risk,” thereby reducing the need to bolt on “additive IT security controls”. 5 These are not the controls covered by National Institute of Standards and Technology (NIST) or further flushed out by control correlation identifiers (CCIs). An example could be if your home water heater
had a digital controller that was hacked. The hacker would not be able to overheat the vessel and cause a major explosion because of a design decision that was later codified requiring a temperature and pressure relief (T&P) valve—or what is commonly referred to as a pop-off valve on pressure vessels. Thoughtful consideration early on can have an outsized impact on security posture. The ICT designer plays an important role in contributing to resilient communication pathways while assisting
with eliminating unnecessary protocols. While the move to non-digital controls
is an unrealistic requirement in today’s connected environment, calculated decisions can mitigate the risks. Deploying sufficient manual controls can allow a system to keep the mission alive while fighting through a breach with needed resiliency. DESIGN SIMPLIFICATION Simplifying design involves removing features that are unnecessary to accomplishing the goals of the system. This can prove to be a tricky process for the design team in an era of intelligent buildings. The Association for Smarter Homes & Buildings (ASHB) states they
I
14
ICT TODAY
April/May/June 2025
I
15
AUTHOR BIOGRAPHY: Jim Walters, RCDD, RTPM, OSP, DCDC, PMP, CISSP is the Technology Director for Mason and Hanger Architecture and Engineering, where he serves as the market director for telecommunications, Electronic Security, and Cybersecurity. Prior to joining Mason and Hanger, Jim served as an Information Communication Technology and Cyber SME with the U.S. Army Corps of Engineers. He served as the Operational Technology Branch lead and the Policy and Integration Lead in the Army Control Systems Governance Office in the Pentagon and served as the Facility Related Control System Program Manager at U.S. Army Corps of Engineers Headquarters in Washington DC. Jim was the U.S. Army Corps of Engineers 2021 Control System Professional of the Year, he was privileged to have worked on some of the nation’s critical infrastructure. Jim has presented at five BICSI conferences on cybersecurity topics. He can be reached at james.walters@masonandhanger.com
References : 1. BICSI (2024) Information Communication Technology Design and Implementation Practices for Intelligent Buildings and Premises. ANSI/BICSI 007-2024. 2. Barrett, M.P. (2018) ‘The End of Cybersecurity’, Harvard Business Review, 18 October. 3. Wright, V.L. et al. (2023) ‘Cyber-Informed Engineering Implementation Guide: Version 1.0’. Idaho National Laboratory, September. 4. Wright, V.L. et al. (2023) ‘Cyber-Informed Engineering Implementation Guide: Version 1.0’. Idaho National Laboratory, September. 5. Ohrt, A. et al. (2024) ‘Integrating Cyber-Informed Engineering into Enterprise Risk Management’. Idaho National Laboratory, 30 September. 6. ASHB (n.d.) ‘What Is An Intelligent Building? Your Go-To Guide’.
deliver “building owners the flexibility to integrate individual building systems to deliver an enhanced working or living environment for occupants.” 6 Essentially, this alerts designers that a proper business use-case needs to exist for the integration of systems. Without that use case, the design team could simplify and decrease the potential attack vectors by avoiding the integration of systems. This is contrary to putting everything in the data lake and assuming AI will sort it out later. The ICT designer has a significant role in the design simplification process. The expertise to evaluate a structured OT physical Layer 1 versus the systems cabling can help the team produce simpler and lower- risk designs. The ICT designer’s intimate knowledge of Citizens Broadband Radio Service (CBRS) and private 5G, as well as skills in designing Wi-Fi deployments, can support the team in resiliency planning and infrastructure simplification. Finally, the ICT designer has an important role in the centralization of power for these systems with recommendations on Class 2 or fault managed power systems (FMPS). This can provide the opportunity to reduce the quantities of locations for UPS deployments and better manage intelligent building operations. PLANNED RESILIENCE Planning appropriately requires the team to realize that it is not a matter of if a system will be com- promised, but when. Understanding that when compromised, the created value stream can be diminished without completely losing the stream entirely. Sometimes solutions can be in plain sight and should not be overlooked because they appear simple. The concept of cross system connection (XSC) allows for the fact that the attacker may not be all-knowing. Something as simple as adding temperature sensors on an intrusion detection system that alert as backup alarms in addition to those found in the building automation system can provide crucial resilience and warn intelligent building operators that a system is compromised. This work leads the team to consider what diminished capacity can still accomplish the mission.
The ICT designer will assist the team in creating the OT Layer 1 infrastructure that enables the system to “island” and continue to function. INTERDEPENDENCY EVALUATION As more functions move into a cloud environment and manufacturers migrate systems, the team needs to consider cascading effects. Cloud-connected systems allow for real-time monitoring, machine learning-based predictions, and automated optimization. This reliance on cloud service introduces interdependencies that must be evaluated. Designing systems to complete the mission even when information is missing from compromised systems takes a calculated effort for success.
CONCLUSION The constant evolution of threats in the digital world makes it an unreasonable expectation to assume no incursions will occur. The era of providing proper cyber hygiene is no longer sufficient. A proactive approach with the design team focused early on improving outcomes is now required to succeed. Design teams must encourage the expertise of the ICT designer and other building professionals to work together to find solutions that utilize all available toolsets. Such an important endeavor in our field will require the application of digital and non-digital layers working in concert to secure our intelligent buildings.
I
16
ICT TODAY
April/May/June 2025
I
17
DAS A DAS distributes RF signals from a central point to antennas located throughout the facility to provide ubiquitous coverage and capacity. They are primarily used in large buildings, stadiums, public spaces, airports and outdoor environments. DAS networks can accommodate a large number of people and a variety of frequency bands and technologies. They can be designed to house all wireless carriers, which is often referred to as a neutral-host design. A DAS can also scale so new carriers or frequencies can be added to the system after it has been deployed (Figure 2).
From Blueprint to Broadband: Ensuring Seamless Connectivity in Modern Buildings
to reduce radio signal strength by as much as 15 dBm. This means that the signal is only 1/32 its original strength after it passes through the glass — roughly equivalent to passing through a 1-inch-thick sheet of concrete. Two of the most prevalent in-building technologies — distributed antenna systems (DAS) and small cells — have provided a way for operators to supplement coverage and capacity for indoor spaces not adequately served by the outdoor macrocellular network and relieve pressure and congestion from outdoor data demands.
By Tracy Ford
In-building connectivity options are increasing as spectrum is being deployed both in licensed bands and lightly licensed bands. Building owners, tenants, and the people driving their ICT requirements demand device connectivity throughout their buildings and across campuses. Enterprises are using 4G and 5G licensed cellular spectrum to augment Wi-Fi systems as well as Citizens Broadband Radio Service (CBRS) to improve connectivity. Companies are also increasingly using private wireless networks to improve connectivity across their orgnizations. A private cellular network enables a corporation, business or organization (e.g., hospital, university, hotel) to use the same network technology as mobile network operators (MNOs) but for a private, closed network, where the use of the network is limited to a specific group of people, employees and/or devices. A private cellular network may be interconnected to commercial cellular networks so that users of the private network can maintain a connection as they move away from the private network. Private networks are not new, but what has changed is the availability of CBRS, 150 MHz of spectrum in the 3.5 GHz band. With CBRS, virtually anyone can purchase network equipment from a number of companies, own (or lease access to) a (virtual) evolved packet core (EPC) and set up their own, self-contained, private network. Today enterprises have a choice – they can work with a wireless operator (and many choose to do so for a variety of reasons) or use CBRS spectrum independently. THE IN-BUILDING EXPERIENCE Mobile data usage continues to skyrocket in the U.S. as people use their mobile devices as computers to connect to the Internet, apps, and the people around them. As employees return to work in the office, building owners and employers recognized that
they need to make the office environment attractive for employees. That includes providing high-quality, indoor wireless coverage. In fact, many tenants are demanding an improved in-building connected experience for hybrid and in-office employees as part of lease renewals. As part of its In-Building Forum initiative, WIA conducted an online survey of U.S. enterprise IT professionals who were responsible and/or knowledgeable of their company’s in-building and campus wireless network deployments (Figure 1).
• 59 percent of IT professionals said maintaining and growing revenues is their top focus.
• 47 percent of IT professionals said upgrading or modifying connectivity and applications to enable a more flexible workforce for the future is a major challenge. • Ensuring reliable network coverage within company buildings and operational sites is a priority for more than 32 percent of IT managers. Cellular telephony originally was conceived as a mobile technology with a focus on outdoor usage, with base stations and antenna equipment designed to operate at high power over long distances. Now, the intrinsic benefits of mobility and the advent of smartphones have combined to make mobile phones the preferred medium for indoor communications as well. The macro network has been and continues to be effective in reaching inside buildings in most cases. But outside-in approaches can be hindered by the advent of energy-efficient building practices, such as Low-emission (Low-E) glass, which has been shown
FIGURE 1: Infographic depicting U.S. cellular network infrastructure by the numbers. Source: WIA
I
I
19
18
ICT TODAY
April/May/June 2025
Repeaters and Bi-Directional Amplifiers (BDAs) BDAs boost the cellular signal by rebroadcasting it inside the building from an existing local cell site. They are coverage-only solutions. Operators must approve BDA deployments as they can interfere with the macrocellular network. Depending on the services in the area, multiple BDAs might be needed to properly cover the area. Small Cells Small cells are an umbrella term given to microcells, metrocells, picocells, and enterprise radio access networks (E-RAN). These are operator-controlled, low- powered radio access nodes, including those that operate in licensed spectrum and unlicensed carrier- grade Wi-Fi spectrum. Traditional small cells are typically low-power radio access points designed to increase coverage and capacity within a short range and can handle a limited number of users; they generally have a range from ≈10 m (32 ft) to several hundred meters. An E-RAN can scale to cover very large venues and thousands of data sessions. Small cells are generally indoor, premise- based deployments that go beyond a home office environment. They are primarily coverage-driven, with a need for high reliability, although they can be deployed to support capacity requirements as well. DESIGN PHASE CONSIDERATIONS Mobile broadband connectivity is not always considered during initial architectural drawings, or early in the design process for new buildings. In fact, some building design aspects, like low- emission glass and building material choices like aluminum, can hinder RF transmissions and necessitate additional in-building connectivity to be brought into the venue. That challenge is compounded by higher frequencies now being used in cellular networks that are inherently less able to penetrate buildings. More established buildings also can suffer from poor in-building connectivity. This can result in buildings being less desirable when trying to attract new tenants or improve employee productivity. Much of the cost of deploying in-building connectivity can be defrayed by including plans for licensed and lightly licensed
connectivity into the process early in the design stage for new buildings or during planned renovations to an existing building. It is easier to run the necessary optical fiber, antennas, and other equipment when ceilings, floors, and walls are exposed. In existing buildings, adding wireless infrastructure should be considered during remodeling periods or as a stand- alone service. In both cases, new buildings or existing ones, those who plan and account for the venue’s connectivity needs can achieve the desired outcomes and make the process less costly. Many factors can influence how in-building networks are designed and optimized, including the availability of optical fiber, cabling pathways, physical space to house equipment, building aesthetics, carrier approvals, power requirements, ongoing maintenance needs, the size of the building, and traffic patterns within the structure. While each venue is unique, they generally have common design, approval, and construction issues. Up front preparation, thoughtful design, and continued project support can save sig- nificant installation time, improve design efficiency, and reduce costs even in the most difficult project environments.
To ensure seamless connectivity throughout a building, the following items should be part of the initial design process and followed during con- struction of the system: • Depending on the size of the building(s)/venue and the number of wireless carriers connecting to the DAS, having a common equipment space for the head-end equipment is critical. Locating equipment in existing IT rooms and closets can be an option. However, the building IT department will need to review and understand future space and resource requirements for both the building IT and DAS equipment. Often these spaces end up on mechanical, basement, or parking levels, which can pose environmental issues. The design in these areas should be reviewed carefully to mitigate potential issues like moisture and dust. • HVAC is critical for DAS equipment spaces. Existing cooling capacity should be assessed for both the initial and anticipated future growth of the system. Dedicated IT cooling is required year-round so standard building cooling or small residential-type applications should be reviewed carefully. HVAC systems that are designed specifically for IT applications and that are scalable are strongly recommended. Ductwork and raised floor applications required for proper air circulation should be coordinated with the cabling design to minimize pathway conflicts. • Power for the DAS head-end is an important consideration. The capacity of the existing power distribution system should be analyzed. Neutral- host DAS power designs should include considerations for the additional requirements of future carriers. If the building is supplying the power, metering and interconnection for smart- building monitoring will need to be coordinated with building management. Utility metering will require coordination with the local power utility and can be a long lead item that can delay system activation. Utilizing building back-up power or installing a back-up generator to harden the system are additional design considerations.
• Fire protection for the head-end and maintenance of existing fire wall assemblies is another important design consideration. For spaces with existing sprinkler systems, new walls or rooms within the space may require modifications or additional sprinkler heads. For critical system infrastructure or larger DAS systems, a pre-action sprinkler system may be a consideration to reduce the chance of accidental discharge. Clean agent gas systems like the FM-200 fire suppressant agent can also be used to minimize damage to the electrical equipment should fire suppression be required. Early warning notification air sampling systems can also minimize notification and response time to a smoke or fire situation. Fire stopping of cabling and utility penetrations throughout the building is also an important consideration. All wall and floor penetrations should be sealed to maintain the existing wall rating. This is especially critical in hospital environments, where wall fire ratings are critical to the venue’s evacuation plan. For penetrations where future cabling is anticipated, penetration products are available that are resealable and accelerate future cabling installations. It should be noted that cabling should never be routed through egress hallways or stairwells unless it is related to the function of that egress as allowed by the building code. Cabling that passes through plenum spaces is required to be plenum-rated to meet low-smoke, low-flame spread requirements. • The design requirements for accessory equipment cabinets should not be overlooked. Depending on the system manufacturer and configuration, remote cabinets that are required for conversion from optical fiber to coaxial cabling will need to be located throughout the building. Locations for these remotes are often in IT or mechanical rooms, where space may be limited, so performing initial inspections of potential remote locations should be performed during the design phase. Considerations for power and back-up batteries should also be reviewed and included as part of the design phase.
FIGURE 2 : Wireless infrastructure supporting high volume of attendees at the Super Bowl. Source: WIA
I
I
21
20
ICT TODAY
April/May/June 2025
CONCLUSION The demand for mobile connectivity inside venues has shifted from an amenity to a feature that consumers expect. As such, building for robust connectivity is now a given for building owners and managers. Thoughtful design projects and enhancements will include mobile broadband connectivity plans in projects at an early stage when deployments can be done more cost-effectively. When retrofitting a building for mobile connectivity, future connectivity requirements should be given thought, as mobile data consumption shows no sign of tapering off. AUTHOR BIOGRAPHY: Tracy Ford is Vice President of Member Services at the Wireless Infrastructure Association (WIA). WIA represents the businesses that build, develop, own, and operate the nation’s wireless infrastructure. WIA advocates for the widespread, responsible deployment of wireless infrastructure to enable connectivity everywhere. Ford guides membership initiatives for the association, including the In-Building Forum, the Infrastructure Developers Forum, the Professional Services Forum and more. A former journalist, she has spent more than two decades covering the rapidly changing wireless industry, tracking its changes as it grew from a voice- centric marketplace to the dynamic data-intensive industry it is today.
Once a design is completed, the construction activities and sequence should be reviewed with the building owner, system designer, architect, building engineer, and systems installer. Work hours, restricted access points, tenant space restrictions, union requirements, preferred specialty vendors, etc., are all important points for discussion. Coring and fire stopping of vertical and horizontal pathways for RF cabling and power are critical. Scanning of floor and wall penetrations often will be required and review of pathways is key to identifying areas that require cutting and patching because they do not always have accessible ceilings. Working in an unoccupied space can eliminate many of these issues, but often installations must be done in occupied tenant spaces. Antenna locations and aesthetics should be reviewed and approved by both the building owner and tenants. Providing a mock-up and standard mounting details can reduce antenna/cabling relocation after construction begins. Detailed color-coded floor plans with equipment locations including vertical and horizontal risers and antennas can be a useful tool to display the entire system design and can significantly reduce time and costs associated with change orders from installers that can stem from undefined system requirements or unclear scopes of work.
I
I
23
22
ICT TODAY
April/May/June 2025
Page 1 Page 2-3 Page 4-5 Page 6-7 Page 8-9 Page 10-11 Page 12-13 Page 14-15 Page 16-17 Page 18-19 Page 20-21 Page 22-23 Page 24-25 Page 26-27 Page 28-29 Page 30-31 Page 32-33 Page 34-35 Page 36-37 Page 38-39 Page 40-41 Page 42-43 Page 44-45 Page 46-47 Page 48Made with FlippingBook - Online catalogs