The Advanced Security component (CcspAdvSecurity) provides TR-181 parameter management interface for network security features on RDK-B devices. The component serves as the middleware interface for advanced security services, coordinating with the advanced security agent that implements device fingerprinting, safe browsing protection, network flow monitoring, and parental controls to deliver real-time threat detection and network protection capabilities.<\/p>\n\n\n\n
The component operates as a critical security layer in the RDK-B middleware stack, providing TR-181 parameter management for various security features while the advanced security agent handles actual threat detection and mitigation. The component enables management and configuration of device identification, malicious website blocking, network traffic analysis, and advanced parental control functionalities through a unified TR-181 interface.<\/p>\n\n\n\n
At the module level, the Advanced Security component implements a plugin-based architecture with separate DML modules providing TR-181 parameter support for Device Fingerprinting (network device identification and classification), Safe Browsing (malicious URL detection and blocking), Softflowd (network flow monitoring), and Advanced Parental Control (content filtering and access control). The actual implementation of these security features is performed by the advanced security agent. The component also provides WebConfig integration for remote configuration management and RFC (Remote Feature Control) support for enabling\/disabling security features dynamically.<\/p>\n\n\n\n
graph LR\n subgraph \"External Systems\"\n RemoteMgmt[\"Remote Management\"]\n LocalUI[\"Local Web UI\"]\n end\n\n subgraph \"RDK-B Platform\"\n subgraph \"Remote Management Agents\"\n ProtocolAgents[\"TR-069\/WebPA\/TR-369<br\/>Protocol Agents\"]\n end\n \n AdvSec[\"CcspAdvSecurity<br\/>(Advanced Security)\"]\n \n subgraph \"RDK-B Core Components\"\n PSM[\"PSM\"]\n CR[\"Component Registry\"]\n WebConfig[\"WebConfig\"]\n DeviceMgr[\"Device Manager\"]\n end\n \n SecurityAgent[\"Advanced Security Agent<br\/>(Security Enforcement)\"]\n \n subgraph \"System Layer\"\n Netfilter[\"Netfilter\/iptables\"]\n Linux[\"Linux Kernel\"]\n end\n end\n\n RemoteMgmt -->|TR-069\/WebPA| ProtocolAgents\n LocalUI -->|HTTP\/HTTPS| ProtocolAgents\n ProtocolAgents -->|IPC| AdvSec\n \n AdvSec -->|IPC| PSM\n AdvSec -->|IPC| CR\n AdvSec -->|IPC| WebConfig\n AdvSec -->|IPC| DeviceMgr\n AdvSec <-->|IPC\/Sockets| SecurityAgent\n \n SecurityAgent <-->|Policy| Netfilter\n SecurityAgent <-->|System Calls| Linux\n\n classDef external fill:#fff3e0,stroke:#ef6c00,stroke-width:2px;\n classDef advSec fill:#e3f2fd,stroke:#1976d2,stroke-width:3px;\n classDef rdkbComponent fill:#e8f5e8,stroke:#2e7d32,stroke-width:2px;\n classDef system fill:#fce4ec,stroke:#c2185b,stroke-width:2px;\n\n class RemoteMgmt,LocalUI external;\n class AdvSec advSec;\n class ProtocolAgents,PSM,CR,WebConfig,DeviceMgr rdkbComponent;\n class SecurityAgent,Netfilter,Linux system;<\/pre><\/div>\n\n\n\nKey Features & Responsibilities<\/strong>:<\/p>\n\n\n\n
\n
- Device Fingerprinting Interface<\/strong>: Provides TR-181 parameter interface to control network device identification and classification capabilities implemented by the advanced security agent<\/li>\n\n\n\n
- Safe Browsing Protection Interface<\/strong>: Provides TR-181 parameter interface to control malicious website detection and blocking functionality implemented by the advanced security agent<\/li>\n\n\n\n
- Network Flow Monitoring (Softflowd) Interface<\/strong>: Provides TR-181 parameter interface to enable\/disable network traffic analysis and flow monitoring capabilities implemented by the advanced security agent<\/li>\n\n\n\n
- Advanced Parental Controls Interface<\/strong>: Provides TR-181 parameter interface to control content filtering and access control features implemented by the advanced security agent<\/li>\n\n\n\n
- RFC Feature Management<\/strong>: Provides Remote Feature Control capabilities for dynamically enabling\/disabling security features through centralized configuration management without requiring device restarts<\/li>\n\n\n\n
- WebConfig Integration<\/strong>: Supports remote configuration management through WebConfig framework, enabling cloud-based security policy updates and configuration synchronization<\/li>\n\n\n\n
- TR-181 Data Model Interface<\/strong>: Implements comprehensive TR-181 parameter support for security feature management, providing standardized access to security configuration and status information<\/li>\n\n\n\n
- Security Agent Coordination<\/strong>: Coordinates with the advanced security agent for configuration changes, status monitoring, and feature control through IPC mechanisms<\/li>\n<\/ul>\n\n\n\n
Design<\/h3>\n\n\n\n
The Advanced Security component follows a layered modular design that separates policy management from enforcement mechanisms. The core design principle centers around providing a standardized TR-181 interface for security feature configuration while the advanced security agent handles actual security processing and enforcement. This separation allows for flexible deployment while maintaining consistent management interfaces across various RDK-B device types.<\/p>\n\n\n\n
The component implements a plugin-based architecture where each security feature (Device Fingerprinting, Safe Browsing, Softflowd, Parental Controls) is handled by dedicated DML modules with well-defined TR-181 parameter interfaces. The design ensures loose coupling between components while providing centralized configuration management and event coordination. The architecture supports both synchronous parameter operations (get\/set) and asynchronous event-driven processing for real-time security responses.<\/p>\n\n\n\n
North-bound interactions are handled through R-Bus\/DBus messaging for integration with other RDK-B components, WebConfig framework for cloud-based configuration management, and direct TR-181 parameter access for management systems. South-bound interactions utilize IPC mechanisms (sockets, shared memory) for communication with the advanced security agent, system calls for kernel module management, and file-based configuration for persistent settings.<\/p>\n\n\n\n
IPC mechanisms are designed based on platform capabilities, with R-Busbeing the preferred method for component-to-component communication on newer platforms, while maintaining DBUS compatibility for legacy systems. The design includes fail-safe mechanisms ensuring that security features degrade gracefully when the advanced security agent is unavailable, and configuration changes are validated before commitment to prevent system instability.<\/p>\n\n\n\n
Data persistence is achieved through a combination of syscfg for persistent configuration storage, temporary files for runtime state management, and WebConfig framework for cloud-synchronized settings. The component manages configuration versioning and provides rollback capabilities for failed configuration updates.<\/p>\n\n\n\n
graph LR\n subgraph \"External Systems\"\n SecurityAgent[\"Advanced Security Agent<br\/>(Security Enforcement)\"]\n end\n\n subgraph \"CcspAdvSecurity\"\n subgraph \"Core Engine\"\n SSPMain[SSP Main Engine]\n DMLHandler[DML Handler]\n WebConfigInteg[WebConfig Handler]\n end\n \n subgraph \"Security Features\"\n Fingerprint[Device Fingerprinting]\n SafeBrowsing[Safe Browsing]\n Softflowd[Softflowd]\n ParentalCtrl[Parental Controls]\n end\n end\n\n subgraph \"RDK-B Components\"\n PSM[(PSM Storage)]\n CR[Component Registry]\n WebConfig[WebConfig Framework]\n end\n\n SecurityAgent <-->|IPC Sockets| Fingerprint\n SecurityAgent <-->|IPC Sockets| SafeBrowsing\n SecurityAgent <-->|IPC Sockets| Softflowd\n SecurityAgent <-->|IPC Sockets| ParentalCtrl\n \n SSPMain --> DMLHandler\n DMLHandler --> Fingerprint\n DMLHandler --> SafeBrowsing\n DMLHandler --> Softflowd\n DMLHandler --> ParentalCtrl\n WebConfigInteg --> DMLHandler\n \n SSPMain -->|IPC| CR\n DMLHandler -->|Config Storage| PSM\n WebConfigInteg -->|Cloud Config| WebConfig\n\n classDef external fill:#fff3e0,stroke:#ef6c00,stroke-width:2px;\n classDef core fill:#e3f2fd,stroke:#1976d2,stroke-width:2px;\n classDef features fill:#c8e6c9,stroke:#388e3c,stroke-width:2px;\n classDef rdkbComp fill:#e8f5e8,stroke:#2e7d32,stroke-width:2px;\n\n class SecurityAgent external;\n class SSPMain,DMLHandler,WebConfigInteg core;\n class Fingerprint,SafeBrowsing,Softflowd,ParentalCtrl features;\n class PSM,CR,WebConfig rdkbComp;<\/pre><\/div>\n\n\n\nPrerequisites and Dependencies<\/strong><\/h3>\n\n\n\n
Build-Time Flags and Configuration:<\/strong><\/p>\n\n\n\n
Configure Option<\/strong><\/td> DISTRO Feature<\/strong><\/td> Build Flag<\/strong><\/td> Purpose<\/strong><\/td> Default<\/strong><\/td><\/tr> --enable-unitTestDockerSupport<\/code><\/td>N\/A<\/td> UNIT_TEST_DOCKER_SUPPORT<\/code><\/td>Enable Docker support for unit testing<\/td> Disabled<\/td><\/tr> --with-ccsp-arch={arm,atom,pc,mips}<\/code><\/td>N\/A<\/td> CCSP_ARCH<\/code><\/td>Specify the CCSP board CPU platform<\/td> None (must be specified)<\/td><\/tr> --enable-wifidcl<\/code><\/td>N\/A<\/td> WIFI_DATA_COLLECTION<\/code><\/td>Enable WiFi data collection for advanced security agent<\/td> Disabled<\/td><\/tr> --enable-downloadmodule<\/code><\/td>N\/A<\/td> DOWNLOADMODULE<\/code><\/td>Enable downloadable module support<\/td> Disabled<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n RDK-B Platform and Integration Requirements<\/strong><\/p>\n\n\n\n
\n
- RDK-B Components<\/strong>: PSM (Persistent Storage Manager), Component Registry (CR), WebConfig Framework, Device Manager, System Info component<\/li>\n\n\n\n
- HAL Dependencies<\/strong>: Platform HAL for network interface management, minimum version supporting netfilter integration<\/li>\n\n\n\n
- Systemd Services<\/strong>: CcspCrSsp.service, CcspPsmSsp.service must be active before advanced security starts; network.target dependency for network availability<\/li>\n\n\n\n
- Hardware Requirements<\/strong>: Minimum 256MB RAM for agent operation, netfilter kernel support, network interface access capabilities<\/li>\n\n\n\n
- Message Bus<\/strong>: R-Busregistration for “eRT.com.cisco.spvtg.ccsp.advsecurity” namespace (newer platforms) or DBUS com.cisco.spvtg.ccsp.advsecurity (legacy platforms)<\/li>\n\n\n\n
- TR-181 Data Model<\/strong>: Device.DeviceInfo.X_RDKCENTRAL-COM_DeviceFingerPrint.* and Device.DeviceInfo.X_RDKCENTRAL-COM_AdvancedSecurity.* parameter support<\/li>\n\n\n\n
- Configuration Files<\/strong>: \/usr\/ccsp\/advsec\/TR181-AdvSecurity.xml data model definition, \/tmp\/advsec\/ runtime configuration directories<\/li>\n\n\n\n
- Startup Order<\/strong>: Must initialize after PSM, CR, and WebConfig components; coordinates with advanced security agent after component initialization<\/li>\n<\/ul>\n\n\n\n
Threading Model:<\/strong><\/p>\n\n\n\n
The Advanced Security component implements a lightweight multi-threaded architecture with event-driven processing for security feature management and agent coordination. Unlike components with extensive threading models, Advanced Security focuses on minimal threading while maintaining responsive parameter operations and agent communication.<\/p>\n\n\n\n
Thread & Function<\/strong><\/td> Purpose<\/strong><\/td> Cycle\/Timeout<\/strong><\/td> Synchronization<\/strong><\/td><\/tr> Main Thread<\/strong> main<\/strong>()<\/code> \/ssp_main<\/strong>()<\/code><\/td>Component initialization, TR-181 parameter processing, daemon lifecycle management<\/td> Event-driven message loop, signal handling, component registration, configuration loading<\/td> pthread signals for termination, SSP lifecycle callbacks<\/td><\/tr> Logger Thread<\/strong> advsec_logger_th<\/strong>()<\/code><\/td>Device fingerprinting logging and periodic system monitoring<\/td> Configurable logging period (default 1440 minutes), health monitoring cycles<\/td> logMutex<\/code> mutex,logCond<\/code> condition variable for timeout control<\/td><\/tr>Sysevent Handler Thread<\/strong> advsec_sysevent_handler_th<\/strong>()<\/code><\/td>System event processing and bridge mode detection<\/td> Continuous event listening, 2-second polling intervals, event-driven responses<\/td> Event-based synchronization, sysevent file descriptor monitoring<\/td><\/tr> WebConfig Processing<\/strong>Integrated in main thread<\/td> Cloud configuration updates and synchronization<\/td> WebConfig framework callbacks, asynchronous processing<\/td> WebConfig framework internal synchronization<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n Component State Flow<\/h3>\n\n\n\n
Initialization to Active State<\/strong><\/p>\n\n\n\n
The Advanced Security component follows a structured initialization sequence ensuring proper dependency resolution and secure agent coordination. The component validates system prerequisites, loads configuration from persistent storage, establishes IPC connections, and coordinates with the advanced security agent lifecycle management before transitioning to active operational state.<\/p>\n\n\n\n
sequenceDiagram\n participant System\n participant AdvSec as Advanced Security\n participant PSM as PSM Storage\n participant Agent as Advanced Security Agent\n\n System->>AdvSec: Start Component\n AdvSec->>AdvSec: Initialize Logging & Resources\n AdvSec->>PSM: Load Configuration\n PSM-->>AdvSec: Configuration Data\n AdvSec->>AdvSec: Register TR-181 Parameters\n AdvSec->>System: Connect to R-Bus\/DBUS\n System-->>AdvSec: IPC Established\n AdvSec->>Agent: Coordinate with Agent\n Agent-->>AdvSec: Agent Ready\n AdvSec->>System: Initialization Complete\n \n loop Runtime\n AdvSec->>AdvSec: Process TR-181 Requests\n AdvSec->>Agent: Send Commands\n Agent->>AdvSec: Status Updates\n end<\/pre><\/div>\n\n\n\nRuntime State Changes and Context Switching<\/strong><\/p>\n\n\n\n
The component supports dynamic feature activation\/deactivation based on RFC (Remote Feature Control) settings and user configuration changes. State transitions occur when security features are enabled\/disabled, when the advanced security agent requires restart due to configuration changes, or when the system enters\/exits bridge mode.<\/p>\n\n\n\n
State Change Triggers:<\/strong><\/p>\n\n\n\n
\n
- RFC parameter changes requiring agent reconfiguration (triggers agent restart with new settings)<\/li>\n\n\n\n
- Bridge mode activation\/deactivation (disables\/enables security features as network topology changes)<\/li>\n\n\n\n
- Advanced security agent crashes or becomes unresponsive (triggers automatic restart procedures)<\/li>\n\n\n\n
- WebConfig updates from cloud services (triggers validation and application of new security policies)<\/li>\n\n\n\n
- Memory pressure conditions (triggers agent hibernation to preserve system resources)<\/li>\n<\/ul>\n\n\n\n
Context Switching Scenarios:<\/strong><\/p>\n\n\n\n
\n
- Bridge Mode Context<\/strong>: Component disables all security features when device operates in bridge mode, preserving configuration for later restoration<\/li>\n\n\n\n
- Agent Recovery Context<\/strong>: When advanced security agent fails, component maintains TR-181 parameter access while attempting agent restart in background<\/li>\n\n\n\n
- Configuration Update Context<\/strong>: During WebConfig updates, component validates new configuration before committing changes and restarting affected services<\/li>\n<\/ul>\n\n\n\n
Call Flow<\/h3>\n\n\n\n
Initialization Call Flow:<\/strong><\/p>\n\n\n\n
sequenceDiagram\n participant Init as Initialization\n participant AdvSec as CcspAdvSecurity\n participant Deps as Dependencies\n\n Init->>AdvSec: Start Component\n AdvSec->>AdvSec: Load Configuration\n AdvSec->>Deps: Register TR-181 & Connect\n Deps-->>AdvSec: Ready\n AdvSec->>Deps: Coordinate with Agent\n Deps-->>AdvSec: Agent Active\n AdvSec->>Init: Component Active<\/pre><\/div>\n\n\n\nRequest Processing Call Flow:<\/strong><\/p>\n\n\n\n
The most critical flow involves TR-181 parameter operations that trigger security feature configuration changes and agent interactions.<\/p>\n\n\n\n
sequenceDiagram\n participant Client as Management Client\n participant AdvSec as Advanced Security\n participant Agent as Advanced Security Agent\n\n Client->>AdvSec: Set Parameter (SafeBrowsing.Enable)\n AdvSec->>AdvSec: Validate Parameter\n AdvSec->>Agent: Apply Configuration\n Agent-->>AdvSec: Configuration Applied\n AdvSec-->>Client: Success\n \n Agent->>AdvSec: Feature Status Update\n AdvSec->>AdvSec: Update Internal State<\/pre><\/div>\n\n\n\nTR\u2011181 Data Models<\/h2>\n\n\n\n
Supported TR-181 Parameters<\/h3>\n\n\n\n
The Advanced Security component implements vendor-specific TR-181 parameters under the Device.DeviceInfo.X_RDKCENTRAL-COM namespace, providing comprehensive management interfaces for advanced security features. The implementation follows BBF TR-181 specification guidelines for parameter structure, access controls, and data validation while extending functionality for RDK-B specific security requirements.<\/p>\n\n\n\n
Object Hierarchy<\/h3>\n\n\n\nDevice.\n\u2514\u2500\u2500 DeviceInfo.\n \u251c\u2500\u2500 X_RDKCENTRAL-COM_DeviceFingerPrint.\n \u2502 \u251c\u2500\u2500 Enable (boolean, R\/W)\n \u2502 \u251c\u2500\u2500 LoggingPeriod (unsignedInt, R\/W)\n \u2502 \u251c\u2500\u2500 EndpointURL (string, R\/W)\n \u2502 \u2514\u2500\u2500 LogLevel (unsignedInt, R\/W)\n \u251c\u2500\u2500 X_RDKCENTRAL-COM_AdvancedSecurity.\n \u2502 \u251c\u2500\u2500 Data (string, W)\n \u2502 \u251c\u2500\u2500 SafeBrowsing.\n \u2502 \u2502 \u251c\u2500\u2500 Enable (boolean, R\/W)\n \u2502 \u2502 \u251c\u2500\u2500 ConfigVersion (unsignedInt, R\/W)\n \u2502 \u2502 \u251c\u2500\u2500 RouterIP (string, R)\n \u2502 \u2502 \u251c\u2500\u2500 DNSServerIP (string, R)\n \u2502 \u2502 \u251c\u2500\u2500 Blockpage (string, R)\n \u2502 \u2502 \u251c\u2500\u2500 Warnpage (string, R)\n \u2502 \u2502 \u251c\u2500\u2500 Cacheurl (string, R)\n \u2502 \u2502 \u2514\u2500\u2500 OtmDedupFqdn (string, R)\n \u2502 \u251c\u2500\u2500 Softflowd.\n \u2502 \u2502 \u2514\u2500\u2500 Enable (boolean, R\/W)\n \u2502 \u2514\u2500\u2500 RabidFramework.\n \u2502 \u251c\u2500\u2500 MacCacheSize (unsignedInt, R\/W)\n \u2502 \u2514\u2500\u2500 DnsCacheSize (unsignedInt, R\/W)\n \u2514\u2500\u2500 X_RDKCENTRAL-COM_RFC.\n \u251c\u2500\u2500 Feature.\n \u2502 \u251c\u2500\u2500 AdvancedParentalControl.\n \u2502 \u2502 \u2514\u2500\u2500 Enable (boolean, R\/W)\n \u2502 \u251c\u2500\u2500 PrivacyProtection.\n \u2502 \u2502 \u2514\u2500\u2500 Enable (boolean, R\/W)\n \u2502 \u251c\u2500\u2500 DeviceFingerPrintICMPv6.\n \u2502 \u2502 \u2514\u2500\u2500 Enable (boolean, R\/W)\n \u2502 \u251c\u2500\u2500 WSDiscoveryAnalysis.\n \u2502 \u2502 \u2514\u2500\u2500 Enable (boolean, R\/W)\n \u2502 \u251c\u2500\u2500 AdvancedSecurityOTM.\n \u2502 \u2502 \u2514\u2500\u2500 Enable (boolean, R\/W)\n \u2502 \u251c\u2500\u2500 AdvancedSecurityUserSpace.\n \u2502 \u2502 \u2514\u2500\u2500 Enable (boolean, R\/W)\n \u2502 \u251c\u2500\u2500 AdvancedSecurityCujoTracer.\n \u2502 \u2502 \u2514\u2500\u2500 Enable (boolean, R\/W)\n \u2502 \u251c\u2500\u2500 AdvancedSecurityCujoTelemetry.\n \u2502 \u2502 \u2514\u2500\u2500 Enable (boolean, R\/W)\n \u2502 \u251c\u2500\u2500 AdvancedSecurityWiFiDataCollection.\n \u2502 \u2502 \u2514\u2500\u2500 Enable (boolean, R\/W)\n \u2502 \u251c\u2500\u2500 AdvancedSecurityLevl.\n \u2502 \u2502 \u2514\u2500\u2500 Enable (boolean, R\/W)\n \u2502 \u251c\u2500\u2500 AdvancedSecurityAgent.\n \u2502 \u2502 \u2514\u2500\u2500 Enable (boolean, R\/W)\n \u2502 \u2514\u2500\u2500 AdvancedSecuritySafeBrowsing.\n \u2514\u2500\u2500 Enable (boolean, R\/W)\n<\/pre>\n\n\n\nParameter Definitions<\/strong><\/p>\n\n\n\n
Core Parameters:<\/strong><\/p>\n\n\n\n
Parameter<\/strong> Path<\/strong><\/td> Data Type<\/strong><\/td> Access<\/strong><\/td> Default Value<\/strong><\/td> Description<\/strong><\/td> BBF Compliance<\/strong><\/td><\/tr> Device<\/strong>.DeviceInfo.X_RDKCENTRAL-COM_DeviceFingerPrint.Enable<\/code><\/td>boolean<\/td> R\/W<\/td> false<\/code><\/td>Enables or disables device fingerprinting functionality. When enabled, the system analyzes network traffic patterns to identify and classify connected devices automatically. Valid values: true (enabled), false (disabled).<\/td> TR-181 Issue 2<\/td><\/tr> Device<\/strong>.DeviceInfo.X_RDKCENTRAL-COM_DeviceFingerPrint.LoggingPeriod<\/code><\/td>unsignedInt<\/td> R\/W<\/td> 1440<\/code><\/td>Specifies the logging period in minutes for device fingerprinting data collection. Range: 60-2880 minutes (1-48 hours). Controls frequency of fingerprinting data uploads to cloud services.<\/td> TR-181 Issue 2<\/td><\/tr> Device<\/strong>.DeviceInfo.X_RDKCENTRAL-COM_DeviceFingerPrint.EndpointURL<\/code><\/td>string<\/td> R\/W<\/td> \"\"<\/code><\/td>Defines the endpoint URL for device fingerprinting data uploads. Must be a valid HTTPS URL. Used for sending collected device classification data to cloud analytics services.<\/td> TR-181 Issue 2<\/td><\/tr> Device<\/strong>.DeviceInfo.X_RDKCENTRAL-COM_DeviceFingerPrint.LogLevel<\/code><\/td>unsignedInt<\/td> R\/W<\/td> 3<\/code><\/td>Controls logging verbosity for device fingerprinting module. Valid values: 1 (Error), 2 (Warning), 3 (Info), 4 (Verbose). Higher values produce more detailed logging output.<\/td> TR-181 Issue 2<\/td><\/tr> Device<\/strong>.DeviceInfo.X_RDKCENTRAL-COM_AdvancedSecurity.SafeBrowsing.Enable<\/code><\/td>boolean<\/td> R\/W<\/td> false<\/code><\/td>Enables or disables safe browsing protection. When enabled, system blocks access to malicious websites and provides warning pages for suspicious content. Requires active security agent.<\/td> TR-181 Issue 2<\/td><\/tr> Device<\/strong>.DeviceInfo.X_RDKCENTRAL-COM_AdvancedSecurity.Softflowd.Enable<\/code><\/td>boolean<\/td> R\/W<\/td> false<\/code><\/td>Enables or disables network flow monitoring via softflowd daemon. When enabled, collects network flow statistics for security analysis and anomaly detection.<\/td> TR-181 Issue 2<\/td><\/tr> Device<\/strong>.DeviceInfo.X_RDKCENTRAL-COM_RFC.Feature.AdvancedParentalControl.Enable<\/code><\/td>boolean<\/td> R\/W<\/td> false<\/code><\/td>RFC parameter controlling advanced parental control features. When enabled, allows content filtering and access restrictions based on device, time, and content category policies.<\/td> Custom Extension<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n Internal Modules<\/h2>\n\n\n\n
The Advanced Security component consists of several specialized modules that handle different aspects of security functionality. Each module operates independently while sharing common infrastructure for configuration management and agent communication. The DML (Data Model Library) modules handle TR-181 parameter operations, while the SSP (Service Support Provider) module manages component lifecycle and IPC communications.<\/p>\n\n\n\n
Module\/Class<\/strong><\/td> Description<\/strong><\/td> Key Files<\/strong><\/td><\/tr> AdvSecurityDml<\/td> Core TR-181 parameter handling and security feature management. Implements all DML functions for device fingerprinting, safe browsing, and parental controls. Handles parameter validation, persistence, and agent coordination.<\/td> cosa_adv_security_dml.c<\/code>,cosa_adv_security_dml<\/strong>.h<\/code><\/td><\/tr>AdvSecuritySsp<\/td> Service Support Provider for component lifecycle management. Handles process initialization, R-Bus\/DBUS registration, message bus interface, and component shutdown procedures.<\/td> ssp_main.c<\/code>,ssp_messagebus_interface.c<\/code>,ssp_global<\/strong>.h<\/code><\/td><\/tr>WebConfigModule<\/td> WebConfig framework integration for cloud-based configuration management. Handles remote configuration updates, version management, and configuration validation for security features.<\/td> cosa_adv_security_webconfig.c<\/code>,cosa_adv_security_webconfig<\/strong>.h<\/code><\/td><\/tr>InternalHelpers<\/td> Utility functions for security operations including parameter validation, URL checking, security agent communication, and system state management.<\/td> cosa_adv_security_internal.c<\/code>,cosa_adv_security_internal<\/strong>.h<\/code>,advsecurity_helpers.c<\/code><\/td><\/tr>PluginMain<\/td> Plugin initialization and function registration interface. Registers all DML callback functions with the COSA framework and manages plugin lifecycle.<\/td> plugin_main.c<\/code>,plugin_main<\/strong>.h<\/code><\/td><\/tr>AgentInterface<\/td> Interface module for communication with the advanced security agent. Handles command sending, status monitoring, and agent lifecycle management.<\/td> cujoagent_dcl_api.c<\/code>,