Re: [lp-wan] overview issue#2: AAA server term...
Dan García Carrillo <dan.garcia@um.es> Thu, 18 May 2017 17:08 UTC
Return-Path: <dan.garcia@um.es>
X-Original-To: lp-wan@ietfa.amsl.com
Delivered-To: lp-wan@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F2D4212EB48 for <lp-wan@ietfa.amsl.com>; Thu, 18 May 2017 10:08:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.19
X-Spam-Level:
X-Spam-Status: No, score=-4.19 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001, T_KAM_HTML_FONT_INVALID=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pfXeCQTEQwhz for <lp-wan@ietfa.amsl.com>; Thu, 18 May 2017 10:08:12 -0700 (PDT)
Received: from xenon44.um.es (xenon44.um.es [155.54.212.171]) by ietfa.amsl.com (Postfix) with ESMTP id 6C1EB12EB6D for <lp-wan@ietf.org>; Thu, 18 May 2017 10:02:33 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by xenon44.um.es (Postfix) with ESMTP id 5DB4A206CD; Thu, 18 May 2017 19:02:32 +0200 (CEST)
X-Virus-Scanned: by antispam in UMU at xenon44.um.es
Received: from xenon44.um.es ([127.0.0.1]) by localhost (xenon44.um.es [127.0.0.1]) (amavisd-new, port 10024) with LMTP id Lxz5fi23z7Z2; Thu, 18 May 2017 19:02:32 +0200 (CEST)
Received: from inf-205-172.inf.um.es (inf-205-172.inf.um.es [155.54.205.172]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) (Authenticated sender: dan.garcia@um.es) by xenon44.um.es (Postfix) with ESMTPSA id 8A50E206C6; Thu, 18 May 2017 19:02:31 +0200 (CEST)
Content-Type: multipart/alternative; boundary="Apple-Mail=_E7976E12-506A-4680-AD7C-ED13FAF54143"
Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
From: Dan García Carrillo <dan.garcia@um.es>
In-Reply-To: <DB6PR08MB26799EC47E945CF45AFCDBE689E40@DB6PR08MB2679.eurprd08.prod.outlook.com>
Date: Thu, 18 May 2017 19:02:31 +0200
Cc: Dan García Carrillo <dan.garcia@um.es>, Arun <arun@acklio.com>, "lp-wan@ietf.org" <lp-wan@ietf.org>
Message-Id: <FD037033-3AC7-4B4D-AD0F-8AE9884292E6@um.es>
References: <6a4c386b-4b23-569f-c32a-09d546e7e681@cs.tcd.ie> <1fec4a42-3477-d8c1-ce6d-d2d8cd4b568c@acklio.com> <DB6PR08MB26799EC47E945CF45AFCDBE689E40@DB6PR08MB2679.eurprd08.prod.outlook.com>
To: Juan Carlos Zuniga <juancarlos.zuniga@sigfox.com>
X-Mailer: Apple Mail (2.3124)
Archived-At: <https://mailarchive.ietf.org/arch/msg/lp-wan/mPRUuVb8K7iNQpCKmqNaTndVulA>
Subject: Re: [lp-wan] overview issue#2: AAA server term...
X-BeenThere: lp-wan@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Low-Power Wide Area Networking \(LP-WAN\), also known as LPWA or Low-Rate WAN \(LR-WAN\)" <lp-wan.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lp-wan>, <mailto:lp-wan-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lp-wan/>
List-Post: <mailto:lp-wan@ietf.org>
List-Help: <mailto:lp-wan-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lp-wan>, <mailto:lp-wan-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 18 May 2017 17:08:16 -0000
Hi, I agree that the solution presented in draft-garcia-radext-radius-lorawan is specific to LoRaWAN. Not applicable to other radio technologies (i.e. Sigfox as mentioned). Although, the idea of having AAA and its advanced characteristics (e.g., Identity federation) is the general idea that can be extrapolated to LPWAN (That was also the idea behind the draft) I understand, at the end, that is the goal. Using AAA or LBES from what I understand is only nomenclature. Am I wright, or are there other reasons? If RADIUS or Diameter are not suitable for the task would be an interesting discussion, as well as analyzing the possible gap in case there are reasons to change the name, or the concept, beyond nomenclature. What do you think? Thank you. Best Regards, Dan. > El 18 may 2017, a las 18:01, Juan Carlos Zuniga <juancarlos.zuniga@sigfox.com> escribió: > > Hi, > > I tend to agree with Stephen in that assuming a RADIUS or Diameter server is not generic enough. Even though a solution like the one proposed in draft-garcia-radext-radius-lorawan might be suitable for certain technologies like LoRaWAN, there are other protocols like Sigfox which don’t have a joining procedure or an authentication message exchange (i.e. every message is individually authenticated). Therefore, Stephen’s proposal to use LBES instead of AAA sounds like a good generic solution. > > Best, > > Juan Carlos > > > From: lp-wan [mailto:lp-wan-bounces@ietf.org] On Behalf Of Arun > Sent: May 18, 2017 11:24 AM > To: lp-wan@ietf.org > Subject: Re: [lp-wan] overview issue#2: AAA server term... > > Hi Stephen, > There is a draft, draft-garcia-radext-radius-lorawan, that explains the use of AAA server in lpwa technologies like lora. > The idea is to use standardized solutions like AAA for authenticating end devices in such technologies. > IMHO, AAA term in a way is good to push for the use of standard entities in the architecture. > > regards, > Arun > > On 18/05/2017 09:41, Stephen Farrell wrote: > > Hiya, > > (Crap: I mucked up the subject line by also calling this "issue#1" > when I first sent this, maybe that's why nobody responded - so > trying now with a correct subject line and with a suggested > resolution in case nobody else cares... :-) > > In [1] we define the term "AAA server." I don't think that's a good > term to use, as it may be read to assume that we'll end up with a > RADIUS or Diameter based solution and a typical AAA server like that > is just not the same as a LoRaWAN NS/JS. (There might be a RADIUS or > Diameter server behind such a beast, but it's not the same thing.) > I think (less sure though) that the "AAA server" is also not so good > for the other technologies too. > > What'd the WG like to do here? > > If nobody answers, in the next revision I'll use the term "LPWAN > back-end server" ("LBES") instead of "AAA server." That's also not > great but at least doesn't have the potential to create new confusion. > > Cheers, > S. > > [1] https://tools.ietf.org/html/draft-ietf-lpwan-overview-02#section-3 <https://tools.ietf.org/html/draft-ietf-lpwan-overview-02#section-3> > > > > > > > _______________________________________________ > lp-wan mailing list > lp-wan@ietf.org <mailto:lp-wan@ietf.org> > https://www.ietf.org/mailman/listinfo/lp-wan <https://www.ietf.org/mailman/listinfo/lp-wan> > > _______________________________________________ > lp-wan mailing list > lp-wan@ietf.org > https://www.ietf.org/mailman/listinfo/lp-wan
- [lp-wan] overview issue#2: AAA server term... Stephen Farrell
- Re: [lp-wan] overview issue#2: AAA server term... Arun
- Re: [lp-wan] overview issue#2: AAA server term... Dan García Carrillo
- Re: [lp-wan] overview issue#2: AAA server term... Juan Carlos Zuniga
- Re: [lp-wan] overview issue#2: AAA server term... Stephen Farrell