aaa architecture for hierarchical wireless mobile ipv4
Download
Skip this Video
Download Presentation
AAA Architecture for hierarchical wireless Mobile IPv4

Loading in 2 Seconds...

play fullscreen
1 / 21

AAA Architecture for hierarchical wireless Mobile IPv4 - PowerPoint PPT Presentation


  • 89 Views
  • Uploaded on

H ELSINKI U NIVERSITY OF T ECHNOLOGY. AAA Architecture for hierarchical wireless Mobile IPv4. Tom Weckström Telecommunications Software and Multimedia Laboratory of Information Processing Science Helsinki University of Technology Finland. H ELSINKI U NIVERSITY OF T ECHNOLOGY.

loader
I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.
capcha
Download Presentation

PowerPoint Slideshow about 'AAA Architecture for hierarchical wireless Mobile IPv4' - dom


An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript
aaa architecture for hierarchical wireless mobile ipv4
HELSINKI UNIVERSITY OF TECHNOLOGYAAA Architecture for hierarchical wireless Mobile IPv4

Tom Weckström

Telecommunications Software and Multimedia

Laboratory of Information Processing Science

Helsinki University of Technology

Finland

introduction
HELSINKI UNIVERSITY OF TECHNOLOGYIntroduction
  • Wireless Internet gaining momentum
  • Yankee: 1billion users by 2003
  • Is access the wireless killer application?
  • Mobile users need to be authenticated, authorized, and correctly billed.
problem
HELSINKI UNIVERSITY OF TECHNOLOGYProblem
  • Special needs for AAA protocol in
      • Open environment
      • Wireless environment
  • Problem dimensions
      • Trust
      • Security
      • Efficiency
scope
Scope
  • Mobile IPv4 environment that is
    • Open
    • Hierarchical
    • Wireless
  • Lots of active mobile users
  • Frequent, fast handoffs
hierarchical mobile ipv4
Mobile Node

Mobile Node

Mobile Node

HELSINKI UNIVERSITY OF TECHNOLOGY

Hierarchical Mobile IPv4

Home Network

CN

HA

Internet

HFA1

HFA1

SFA

Foreign Network

FA1

FA1

FA2

FA2

FA2

WLAN

FA3

FA4

FA4

FA4

FA5

FA5

FA5

FA6

criteria
Criteria
  • From IDs, scope and RFC 2477
  • 11 criteria, classified and prioritized
  • General, dimensional and AAA criteria
  • GQM approach for measuring success
my solution
My solution

AAA Architecture with tick payments

design principles
Design principles
  • Parallel AAA and MIP signaling
  • Reduced number of signaling messages
  • Periodic payments
  • SPKI with RSA
  • Ideas from Ipay, DIAMETER and BillNeat
architectural elements
Architectural elements
  • AAAH, SHA, HA
  • AAAF, HFA, FA
  • Broker
  • MN
  • Buyer
security
Security
  • RSA for signatures
  • SHA for payment messages
  • Symmetric encryption for authentication, session keys, and signatures
  • Session ID
  • Billing ID
  • Timestamps for replay protection
protocol operation
Protocol operation
  • Registration protocol
    • Slow mode: sequential, for compatibility
    • Fast mode: Parallel, optional grace period
  • Payment protocol
    • Real time payments
    • Localized message handling
    • Policy based authorization
    • User controls the size of the bill
conclusions
Conclusions
  • Potential for significant improvements with parallel signaling
  • Static trust relationships concentrated within organizational units
  • Flexibility with SPKI and Policy Management
  • Tick payments: efficiency & control
future research ideas
Future research ideas
  • More extensive use of SPKI
      • Trust relationships
      • Certificate management
  • Improved verification of credibility
  • Integration with DIAMETER
  • Policy management with distributed policies
ad