1 / 21

AAA Architecture for hierarchical wireless Mobile IPv4

H ELSINKI U NIVERSITY OF T ECHNOLOGY. AAA Architecture for hierarchical wireless Mobile IPv4. Tom Weckström Telecommunications Software and Multimedia Laboratory of Information Processing Science Helsinki University of Technology Finland. H ELSINKI U NIVERSITY OF T ECHNOLOGY.

dom
Télécharger la présentation

AAA Architecture for hierarchical wireless Mobile IPv4

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. HELSINKI UNIVERSITY OF TECHNOLOGY AAA Architecture for hierarchical wireless Mobile IPv4 Tom Weckström Telecommunications Software and Multimedia Laboratory of Information Processing Science Helsinki University of Technology Finland

  2. HELSINKI UNIVERSITY OF TECHNOLOGY Introduction • Wireless Internet gaining momentum • Yankee: 1billion users by 2003 • Is access the wireless killer application? • Mobile users need to be authenticated, authorized, and correctly billed.

  3. HELSINKI UNIVERSITY OF TECHNOLOGY Problem • Special needs for AAA protocol in • Open environment • Wireless environment • Problem dimensions • Trust • Security • Efficiency

  4. Scope • Mobile IPv4 environment that is • Open • Hierarchical • Wireless • Lots of active mobile users • Frequent, fast handoffs

  5. Scope

  6. Mobile Node Mobile Node Mobile Node HELSINKI UNIVERSITY OF TECHNOLOGY Hierarchical Mobile IPv4 Home Network CN HA Internet HFA1 HFA1 SFA Foreign Network FA1 FA1 FA2 FA2 FA2 WLAN FA3 FA4 FA4 FA4 FA5 FA5 FA5 FA6

  7. Criteria • From IDs, scope and RFC 2477 • 11 criteria, classified and prioritized • General, dimensional and AAA criteria • GQM approach for measuring success

  8. My solution AAA Architecture with tick payments

  9. Design principles • Parallel AAA and MIP signaling • Reduced number of signaling messages • Periodic payments • SPKI with RSA • Ideas from Ipay, DIAMETER and BillNeat

  10. Architectural elements • AAAH, SHA, HA • AAAF, HFA, FA • Broker • MN • Buyer

  11. Architecture

  12. HELSINKI UNIVERSITY OF TECHNOLOGY Trust relationships

  13. Security • RSA for signatures • SHA for payment messages • Symmetric encryption for authentication, session keys, and signatures • Session ID • Billing ID • Timestamps for replay protection

  14. Protocol operation • Registration protocol • Slow mode: sequential, for compatibility • Fast mode: Parallel, optional grace period • Payment protocol • Real time payments • Localized message handling • Policy based authorization • User controls the size of the bill

  15. Slow mode

  16. Fast mode

  17. Payment protocol

  18. Conclusions • Potential for significant improvements with parallel signaling • Static trust relationships concentrated within organizational units • Flexibility with SPKI and Policy Management • Tick payments: efficiency & control

  19. Future research ideas • More extensive use of SPKI • Trust relationships • Certificate management • Improved verification of credibility • Integration with DIAMETER • Policy management with distributed policies

  20. Q & A ?

  21. HELSINKI UNIVERSITY OF TECHNOLOGY AAA Architecture for hierarchical wireless Mobile IPv4 Tom Weckström Email tweckstr@cc.hut.fi WWW http://www.cs.hut.fi/Research/Dynamics/

More Related