Académique Documents
Professionnel Documents
Culture Documents
Therefore, BW recognizes that being able to access and use the Internet easily influences overall guest satisfaction.
The Guest Internet system comprises of the internet data circuit, hardware, software, and support services needed to
deliver internet access to hotel guests and other users who use their own computers or devices in the guest room,
meeting rooms or public areas.
The chosen vendor must provide all functionality & facilities outlined in this document, in conjunction with all other
relevant BW standards documentation. The purpose of this document is to provide implementation guidance to BW
owners and/or management teams.
Proof of compliance with any standards detailed herein, must be provided by the Guest Internet vendor on request.
Failure to do so could constitute grounds for termination.
This document sets out Global technical standards which must be adhered to in all hotels, in all regions.
Regional Variation
BW has created this document on a Global Level, however it has been identified that some regions and countries
have unique local legislative and/or region/country specific technical requirements that need to be addressed.
These variations do not under any circumstance contradict or overlap with the Global standards, specifically the
Guest experience, but are only to complement and expand on specific regional requirements that are specific to
certain locations.
These requirements may be related to Governmental regulations and/or privacy laws, or may relate to technical
challenges or regional guest requirements.
These requirements only apply to their intended geography and countries and do not form standards for any other
geography or countries.
Please refer to your regional Global Technology partner for details on deployment. These Regional Variations are
categorized in the following manner:
1
1.1 How to Use This Document
This document defines the minimum requirements for the implementation of Guest Internet Access
across the BW brands. Unless reference is made to a recommendation, all specifications are
requirements. This document is designed to:
Ensure that providers have been given clear guidance on how to comply with the standards for
Guest Internet Access for both wired and wireless systems.
Protect hotel guests and other authorized Users who access the Guest Internet System.
Note: This document does not anticipate every contingency for use.
As used in this document, the capitalized term “User” refers to any authorized individual accessing
the Guest Internet system, such as hotel guests and visitors.
2. Technical Requirements – Lists the requirements for infrastructure, coverage, bandwidth, bandwidth
management, networking and hardware requirements.
3. Security – Explains the Guest Internet security for port-to-port and private network use.
Guest Internet system delivered through wired, wireless or both, must be provisioned by a single
system within the property in Guest rooms and public areas (with the exception being meeting rooms).
Guest Internet Access must not cause interference or degradation of other services provided within the
hotel network.
Guest Internet Access must be fully compatible and certified for use on computers and devices using
any Operating System (OS) that supports TCP/IP connectivity.
Guest Internet Access must be fully compatible and certified for use with any guest devices, to grant
access to internet services.
Before Guests access internet services, the system is required to complete 2 steps to grant that access:
1. Ensure the guest identifies themselves through an authentication process
2. Ensures the guest ‘accepts’ BW’s terms and conditions.
(1) If the “Terms and Conditions of Use of Internet” language is embedded in the Start Page, when
the Web browser is launched, Users must be directed to the Start Page. From the Start Page,
Users must be provided the option to accept the “Terms of Use of Internet.”
(2) If the “Terms and Conditions of Use of Internet” is provided on a separate page, this separate page
must not provide any information other than the BW-approved “Terms of Use of Internet” language,
and such page shall not be considered one of the three steps of the log-in procedure. From this
2
separate page, Users must be provided the option to accept the “Terms of Use of Internet.” In either
scenario, Users must accept the “Terms and Conditions of Use of Internet” before continuing the
process of accessing the Internet.
All elements must be optimized based on the browser in use. For laptops or similar devices, a
1024x768 resolution without the need to scroll the Web browser is appropriate. For mobile devices
such as smart phones, tablets and other internet enabled devices, the size and presentation must be
optimized for this environment.
The ‘landing page’ to which the guest is directed after authentication should be as defined in the BW
Standards documentation.
Guest Internet Access must be a plug-and-play solution, such that Users will not be required:
The Guest Internet Access system can be support a Certified Interface to the PMS for:
Guest verification
In the event the hotel has no PMS interface in place users in wired and wireless environments
must receive an access code from the hotel registration desk.
Hotels with a GIA PMS interface: The validation for access must be based on family name and
room number enabling the authentication process to be automated.
Non-guest Users must have an access code to access the Internet for any wired or
wireless use, obtained from hotel reception.
1.6.2 Changing Access Codes / Passwords In the absence of a PMS interface, Access
Codes / Passwords must be changed weekly.
3
1.7 Portal Facility
Guest Internet Access must include a portal facility where Users gain Internet access within 2
steps, incorporating:
• Require that the guest identify him/herself through family name and room number
• Accept Terms & Conditions
BW may in the future, choose to host the Welcome page externally to provide a branded portal for the guests.
The Guest Internet system must be capable of providing Web-based interface for the hotel and/or
vendor to modify portal content. The interface should be secured with access maintained and
controlled by either the hotel or Guest Internet Access vendor.
BW shall have the right to exercise control over any content displayed or otherwise made
available to Users via the hotel Welcome, Log-in, or Splash pages through any Guest Internet
Access implementation, including but not limited to the authority to require the removal of any
content that promotes non-BW branded hotels outside BW. This includes but is not limited to:
For Users to have a consistent experience, properties are required to employ the content and
order (designated by the brand) in accordance with the BW global standards.
2. Technical Requirements
The following sections describe the technical requirements for Guest Internet Access. Because the trends in
connectivity and applications have changed over time, the Guest Internet Access system should be reviewed every
three years to verify it can support the demand. This should include access gateway, routers, switches, wireless
access points, and any other products used for delivery of Guest Internet Access service.
BW requires the hotel to have 100% wireless coverage for all guest access areas. (Guestrooms,
Public Space, Restaurants, Lounges, fitness, pool, spa and meeting space). A wireless controller is
required to manage the wireless devices in your hotel.
Wireless Access Points (WAPs) deployed must conform to the 802.11 series, which is
currently 802.11n, or subsequent. WAPs must be backwards compatible to 802.11n/ac/ax
standards. Vendor must ensure that all WAPs installed are enterprise grade and do not
4
exceed the Equivalent Isotropically Radiated Power (EIRP) regulations for their respective
countries. Please consult your regional BW technology team for advice on the latest
guidance.
Wireless Internet access must have signal coverage of at least -65 dBm in guest rooms
and public areas
Note: Site surveys are recommended for appropriate signal strength verification and
coverage.
For Users who are registered guests at the hotel, Guest Internet Access must be
seamless access between guestrooms and public areas. Session continuity for guest
access is desirable, but it is not a requirement.
All equipment must be enterprise grade, remotely monitored, remotely managed and
configured. The WAPs are installed such that they are securely mounted and hidden or
concealed from public view (to reduce the possibility of theft, tampering, or damage).
WAPs should be installed in common areas of the hotel with easy access for
maintenance and repairs by the contracted service provider. If common area mounting is
not accessible then Guestroom WAP’s (Enterprise Grade) must be installed.
WAPs must be implemented using Power over Ethernet (PoE). This will eliminate the
need for additional power requirement at the WAP location.
5
2.2.7 Wireless Site Survey
Documentation showing that the signal coverage (heat maps) conform to the
wireless Guest Internet standards.
Certification that the wireless deployment conforms to local regulatory
requirements. For example, the wireless signal does not bleed beyond property
boundaries.
Site surveys must be conducted on site and not remotely based on floor plans.
Awareness of building construction material, space in MDF, IDF, and existing
conduit/cabling access is important to provide an accurate survey and
capital/labour cost estimates.
The following table lists the Institute of Electrical and Electronics Engineers (IEEE) and
International Telecommunication Union (ITU) compliance requirements for Ethernet,
DSL, and wireless connectivity.
Technology Requirement
Ehternet IEEE 802.3 series
DSL ITU G.992 series
Wireless IEEE 802.11 series (Minimum 802.11n)
Guest Rooms – Guest Internet Access must be available in all guest rooms. Connections
must be wireless. A hotel may have wired connectivity. These connection standards are in
accordance with mandatory system requirements and brand standards.
Wired – When required, guest rooms must have at least one Ethernet RJ45 connection.
Wireless –The property must provide 100% coverage inside the guest rooms.
Partial coverage within the guestroom for wireless connectivity is not allowed.
Public Areas –The hotel must provide 100% wireless coverage to public areas (lobby,
restaurant, and other public spaces).
Guest Internet Access in public areas must support a wireless connection that is
installed in accordance with BW Technical Specifications for Guest Internet Access
requirements.
Meeting Space – The property must provide wired and wireless access to meeting rooms. In accordance with
BW Technical Specifications for Guest Internet Access requirements, all meeting room wired connections must
be Ethernet based.
The following table summarizes the required coverage by location for Guest Internet Access. See
brand standards for wired guest room connection requirements:
6
Location Media Coverage
Guest Rooms Wireless (Required) 100%
Public Areas Wireless (Required) 100%
Meeting Spaces Wireless (Required) 100%
The property will provide a minimum of one managed synchronous* Data Circuit based on the
following HSIA Standard Guideline.
The hotel will provide enough Public Routable Static IP’s from the Internet Service Provider (ISP)
for use with virtual private network (VPN) access to meet guest satisfaction.
Must be a managed circuit with a minimum 4 hours SLA (Service Level Agreement)
This requirement may be further reviewed based on local market availability of broadband services
(for example, in the case of hotels in rural areas).
Best practice for redundancy is to provide a back-up circuit, in order to avoid a service disruption to
guests.
Bandwidth allocations are defined in regional requirements, but it should be noted that figures
defined in these variations in some cases represents ‘caps’ and in other cases, minimum
requirements, as indicated in the documentation.
2.4.1 Multi-homing Solution for Aggregated Multiple Broadband Services Hotels that are
not able to obtain a minimum dedicated managed symmetric circuit as defined in section
2.4, please consult your regional technology team for alternatives.
Hotels should initially request a Multi Router Traffic Grapher (MRTG) report (or equivalent) which
shows total Guest Internet throughput, and on a regular basis (recommended quarterly) should
review same, in order to understand what contention ratio is required.
7
2.5.1 Bandwidth Shaping
The Guest Internet Access vendor must have full support for VPN client pass through.
Guest Internet Access system must support VPN connectivity through leading software
clients, such as common client and firewall software that may be installed on guest
devices. Standards-based VPN connectivity must also be supported, including:
To support guest VPN connections, Guest Internet Access must be able to allocate static
IP addresses for use by those VPN connections.
Troubleshooting user VPN connections must be provided via the toll-free support line, and
static/public IP addresses must be available where necessary to facilitate user VPN
connections.
Guest Internet Access must provide support for Network Address Translation (NAT), an
Internet standard that enables a LAN to use one set of IP addresses for internal traffic and
a second set of addresses for external traffic, providing a type of firewall by hiding internal
IP addresses.
SMTP routing
Outbound spam control
Limit users' bandwidth if device supports Bandwidth Management, otherwise
separate Bandwidth Management Device must be used.
Terms of Use (content and disclaimers) to Users
Wireless Access Codes / Passwords with time limitations for User access
8
If multiple circuits are used, the gateway can be used as a Multi-homing device to
link circuits. This provides for failover in case of circuit outage, otherwise a
separate Multi-homing device would be required if multiple circuits are required.
The server must support a certified interface to the Property Management
System (PMS) for “User authentication”
Guest Internet Access must provide support for Dynamic Host Configuration Protocol
(DHCP) using both private and public address space. DHCP is a protocol that:
Guest Internet Access must provide support for Proxy Address Resolution Protocol (ARP)
which allows the User to access the Internet with any configured IP address and default
gateway configuration. Proxy ARP accomplishes this by masquerading as the default
gateway.
This feature is important for Users with corporate laptops in which the IP address is
statically configured. Users may not have administrative access to change it.
Guest Internet Access must redirect a User’s initial Web browser request to a specific
URL.
Guest Internet Access must transparently redirect Users to a Web proxy; i.e., it must do so
without Users having to manually configure a Web browser proxy setting.
9
2.9 Hardware Requirements
Equipment in Main Distribution Frame (MDF) or Intermediate Distribution Frame (IDF) rooms must
be rack-mounted.
The Guest Internet Access system documentation must cover the following:
If the server platform is hard-disk based, it must support Redundant Array of Independent
Disks (RAID).
All switches must have the capability to be managed remotely to each individual port with
the following features:
All equipment installation must be in accordance with the current regulations of the local
authorities.
10
2.9.6 Reviewing Hardware
Routers
Switches
Servers
Software
WAPs
Wiring infrastructure
Internet circuit and bandwidth capacity (Yearly)
UPS’s (Battery Backup’s) (Annually)
3. Security
3.1 Port Security
The Guest Internet Access system must enable port security on all ports in each hotel installation.
This measure prevents Users from viewing the traffic of other Users using the high-speed network
in the hotel. Data traffic to and from each User is kept private and isolated from other Users. This
feature is also known as room-to-room security.The Guest Internet system must include security
providing the following protections:
Room-to-Room: Users in guest rooms shall not be able to access or to view the
computers, data, or network of other Users in different guest rooms through the Guest
Internet Access network.
User-to-User: When Users are connected through the same WAP in a Wi-Fi Guest
Internet Access environment, Users shall not be able to access or to view the devices,
data, or network of other Users of that WAP.
Hotel-to-Room: Hotel staff shall not be able to access or to view the computers, data, or
network of Users in the guest rooms through the Guest Internet Access network.
Internet-to-Room: Users on the Internet shall not be able to access or to view the
computers, data, or network of other Users in the guest rooms through the Guest Internet
Access network.
Room-to-Hotel: Users in guest rooms shall not be able to access or to view the
computers, data, or network of the hotel LAN through the Guest Internet Access network.
Property-to-Property: Users at one property shall not be able to access or to view another
property’s computers, data, or network through the Guest Internet Access network.
Internet-to-Hotel: Users on the Internet shall not be able to access or to view the
computers, data, or network of the hotel LAN through the Guest Internet Access network.
Public-Areas-and-Meeting-Rooms-to-Guest-Rooms: Users in public areas or meeting
rooms shall not be able to access or to view the computers, data, or network in guest
rooms through the Guest Internet Access network.
Meeting-Rooms-to-Meeting-Rooms: Users in one meeting room shall not be able to
access or to view the computers, data, or network of Users in another meeting room
through the Guest Internet Access network.
11
3.2 Firewall
The Guest Internet connection to the ISP router must be secured by an enterprise class firewall
which is required to:
All hardware must be located in secured locations and not visible to the public.Management of all
equipment, including WAPs, must be protected by network Access Control Lists (ACL) and
passwords.
All passwords for equipment must be changed from manufacturers' default.Where Hypertext
Transfer Protocol (HTTP) is used for equipment management and configuration, HTTP sessions
must be secured through Secure Sockets Layer (SSL).
Using Secure Shell (SSH) to provide encrypted and secure remote log-in for equipment
management is recommended but not required.
Each guest room and individual switch port must be configured with a separate VLAN to ensure:
The hotel Internet access network and guest Internet access must be physically separate. Guest
Internet must support the ability to enable certain ports to do one of the following:
Be open
Share information and create a VLAN that allows a small group to share information
Guest Internet must be able to provide private network capability for Users and/or groups of Users
requesting the networking of computer devices within the hotel such that the port-to-port security
function must be disabled.
As part of the monitoring procedure, the Guest Internet system must have an intrusion detection
system that flags any suspicious attempts to access the Guest Internet system. All remote log-ins
and administrative actions must be logged in the system. Review with hotel any issue detected
within 48 hours of alert.
12
3.7 Remote Access
The Guest Internet system must be able to remotely manage and troubleshoot any problems in the
hotel. To maximize security, the vendor must take measures to ensure that remote access is
permitted only from pre-selected locations.
Guest Internet system gateways must be password protected, and gateway passwords must be
changed monthly.
Ten characters
One letter (A-Z, a-z)
One digit (0-9)
The Guest Internet system and property must adhere to all Government and/or industry laws,
regulations, and standards, including:
Payment Card Industry-Data Security Standard (PCI-DSS), as may be updated from time
to time
Related to Personal Identifiable Information (PII)
When requested, the Guest Internet Access vendor must provide proof of compliance.
The Guest Internet Access vendor must enter into a written agreement with the hotel that covers:
13
Guest Internet Access Terms & Definitions
Bandwidth: Size of Circuit, typically measured in Mbps, provided by Telecoms company or Telco or Cable Company
etc. This represents the speed of the Wide Area Network. See ISP below.
Bandwidth Management: Typically implemented by the Guest Internet System. It is the process of measuring and
controlling the communications (called traffic, or packets) on a data network, to avoid filling and overfilling the Guest
Internet Access network. Filling or overfilling the Guest Internet Access network results in network congestion and
poor performance. When network congestion occurs, Users experience slow performance, and the quality of service
deteriorates.
Bandwidth Shaping: Typically implemented by the Guest Internet System. The ability to restrict specific traffic types,
either through limiting available bandwidth, or lowering it’s relative priority
Bandwidth Tiering: The ability for a Guest Internet Access System to be able to provide multiple, different policies to
guests, limited by defined, lower and upper bandwidth caps. For example, providing limited bandwidth up to a cap of
512 Kbps, and a second policy with a higher cap, say 1Mbps.
Contention Ratio: Is the ratio of the potential maximum demand to the actual bandwidth.
Firewall: System designed to prevent unauthorized access to or from an internal private network.
Guest Internet System Gateway: The appliance that controls guest access and experience for connecting to the
Internet.
Internet Service Provider (ISP): – The company that provides the WAN Connectivity to the hotel.
Local Area Network (LAN):- Computer Network covering a small geographic area, like a home, office, Hotel, or
group of buildings. The defining characteristics of LANs, in contrast to wide-area networks (WANs), include their
much higher data-transfer rates, smaller geographic range. Ethernet over unshielded twisted pair cabling (Cat 5 / Cat
6), and WiFi are the two most common technologies currently comprising the LAN.
Service Set Identifier (SSID): – Common Name Given to all Wireless Access Points (WAP) in the same LAN. This is
the name that guests will see when connecting to the Guest Internet System.
Structured cabling: Hotel telecommunications cabling infrastructure that consists of a number of standardized
smaller elements (hence structured) called subsystems.
Router: (or Edge Device) Device typically provided by the ISP, to connect the LAN to the WAN.
Wide Area Network (WAN): WANs are provided by ISPs. WANs are used to connect LANs and other types of
networks together or to the Internet, so that users and computers in one location can communicate with users and
computers in other locations.
Wireless Access Point (WAP): The device that allows guests to connect their WiFi capable devices to the Guest
Internet Access System.
Welcome page: The Welcome page in a Guest Internet Access system, will be the first page the guest accesses on
connection to the property's HSIA solution.
Access page: The Access page in a Guest Internet Access system, would typically advise all guests using the
wireless service that customers are assuming the risks associated with the use of a wireless network. Guests must
accept the terms and conditions before login to the internet.
14
Landing page: The Landing page in a Guest Internet Access system, is displayed following the purchase of Guest
Internet access. If used, the guest may be presented with a Landing page containing Corporate (BW) or
property/brand specific information, in accordance with BW standards documentation.
15