Re: [lp-wan] overview issue#2: AAA server term...
Stephen Farrell <stephen.farrell@cs.tcd.ie> Fri, 19 May 2017 09:42 UTC
Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: lp-wan@ietfa.amsl.com
Delivered-To: lp-wan@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B37E912EB6E for <lp-wan@ietfa.amsl.com>; Fri, 19 May 2017 02:42:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.302
X-Spam-Level:
X-Spam-Status: No, score=-4.302 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cs.tcd.ie
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Le5Pw8XN6Y8u for <lp-wan@ietfa.amsl.com>; Fri, 19 May 2017 02:42:15 -0700 (PDT)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D403D12EB83 for <lp-wan@ietf.org>; Fri, 19 May 2017 02:35:19 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id 60911BE5C; Fri, 19 May 2017 10:35:17 +0100 (IST)
X-Virus-Scanned: Debian amavisd-new at scss.tcd.ie
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CCQSjyeU6wMq; Fri, 19 May 2017 10:35:15 +0100 (IST)
Received: from [10.244.2.100] (95-45-153-252-dynamic.agg2.phb.bdt-fng.eircom.net [95.45.153.252]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id 282EABE5B; Fri, 19 May 2017 10:35:15 +0100 (IST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.tcd.ie; s=mail; t=1495186515; bh=0PeNzX2uBDP2jyDGXLU1raGVF9DRHT4lxYeTaMyXJWY=; h=Subject:To:Cc:References:From:Date:In-Reply-To:From; b=HiJwTPRqnsl8ILY/M4LAxTVc2GqSseJzNJhwjff7S3uB7OW4FDcDRuF0y8rCtLrzq oxSIWS78wXd8y0W71a4Qq8L0Yv2VfJ8YrZ/iYIAb+y7jCGPhnznvCMruKbeg2oO7gr ItnAO4BNE/x0zgbCLhY7nPhoEZF6WaPUTkOPjgDE=
To: Dan García Carrillo <dan.garcia@um.es>, Juan Carlos Zuniga <juancarlos.zuniga@sigfox.com>
Cc: "lp-wan@ietf.org" <lp-wan@ietf.org>, Arun <arun@acklio.com>
References: <6a4c386b-4b23-569f-c32a-09d546e7e681@cs.tcd.ie> <1fec4a42-3477-d8c1-ce6d-d2d8cd4b568c@acklio.com> <DB6PR08MB26799EC47E945CF45AFCDBE689E40@DB6PR08MB2679.eurprd08.prod.outlook.com> <FD037033-3AC7-4B4D-AD0F-8AE9884292E6@um.es>
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Openpgp: id=D66EA7906F0B897FB2E97D582F3C8736805F8DA2; url=
Message-ID: <d8c153e8-ba2d-e88b-23a2-ef8017e6bf71@cs.tcd.ie>
Date: Fri, 19 May 2017 10:35:14 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.1.1
MIME-Version: 1.0
In-Reply-To: <FD037033-3AC7-4B4D-AD0F-8AE9884292E6@um.es>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="OOQJTcd8VOb0xAHvv1xuQbqPIKnWqDG0R"
Archived-At: <https://mailarchive.ietf.org/arch/msg/lp-wan/ntpYyAtt4HPbZ5qBp9bxZAHn7b0>
Subject: Re: [lp-wan] overview issue#2: AAA server term...
X-BeenThere: lp-wan@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Low-Power Wide Area Networking \(LP-WAN\), also known as LPWA or Low-Rate WAN \(LR-WAN\)" <lp-wan.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lp-wan>, <mailto:lp-wan-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lp-wan/>
List-Post: <mailto:lp-wan@ietf.org>
List-Help: <mailto:lp-wan-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lp-wan>, <mailto:lp-wan-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 19 May 2017 09:42:19 -0000
Hiya, On 18/05/17 18:02, Dan García Carrillo wrote: > Hi, > > I agree that the solution presented in > draft-garcia-radext-radius-lorawan is specific to LoRaWAN. Not > applicable to other radio technologies (i.e. Sigfox as mentioned). > > Although, the idea of having AAA and its advanced characteristics > (e.g., Identity federation) is the general idea that can be > extrapolated to LPWAN (That was also the idea behind the draft) > Well, in terms of RFC2904 (not that that should be considered that authoratitive), the thing about which we're talking is just called the "service equipment." And that's about right, a LoRaWAN NS/JS is not (architecturally) a AAA server in my mind, a AAA server is a more generic entity that is not specific to the radio technology in use. In saying that it's also true that the LoRaWAN NS/JS interaction is very similar to one part of what we do with RADIUS/Diameter, so the ideas in draft-garcia-radext-radius-lorawan are not crazy at all. > I understand, at the end, that is the goal. Using AAA or LBES from > what I understand is only nomenclature. Yep. This isn't a hill on which anyone ought want to die:-) > Am I wright, or are there > other reasons? If RADIUS or Diameter are not suitable for the task > would be an interesting discussion, as well as analyzing the possible > gap in case there are reasons to change the name, or the concept, > beyond nomenclature. IMO Diameter or RADIUS are fine protocols one might well use talk to a AAA server from an "LBES" (or whatever we end up calling it). Cheers, S. > > What do you think? > > Thank you. Best Regards, Dan. > > >> El 18 may 2017, a las 18:01, Juan Carlos Zuniga >> <juancarlos.zuniga@sigfox.com> escribió: >> >> Hi, >> >> I tend to agree with Stephen in that assuming a RADIUS or Diameter >> server is not generic enough. Even though a solution like the one >> proposed in draft-garcia-radext-radius-lorawan might be suitable >> for certain technologies like LoRaWAN, there are other protocols >> like Sigfox which don’t have a joining procedure or an >> authentication message exchange (i.e. every message is individually >> authenticated). Therefore, Stephen’s proposal to use LBES instead >> of AAA sounds like a good generic solution. >> >> Best, >> >> Juan Carlos >> >> >> From: lp-wan [mailto:lp-wan-bounces@ietf.org] On Behalf Of Arun >> Sent: May 18, 2017 11:24 AM To: lp-wan@ietf.org Subject: Re: >> [lp-wan] overview issue#2: AAA server term... >> >> Hi Stephen, There is a draft, draft-garcia-radext-radius-lorawan, >> that explains the use of AAA server in lpwa technologies like lora. >> The idea is to use standardized solutions like AAA for >> authenticating end devices in such technologies. IMHO, AAA term in >> a way is good to push for the use of standard entities in the >> architecture. >> >> regards, Arun >> >> On 18/05/2017 09:41, Stephen Farrell wrote: >> >> Hiya, >> >> (Crap: I mucked up the subject line by also calling this "issue#1" >> when I first sent this, maybe that's why nobody responded - so >> trying now with a correct subject line and with a suggested >> resolution in case nobody else cares... :-) >> >> In [1] we define the term "AAA server." I don't think that's a >> good term to use, as it may be read to assume that we'll end up >> with a RADIUS or Diameter based solution and a typical AAA server >> like that is just not the same as a LoRaWAN NS/JS. (There might be >> a RADIUS or Diameter server behind such a beast, but it's not the >> same thing.) I think (less sure though) that the "AAA server" is >> also not so good for the other technologies too. >> >> What'd the WG like to do here? >> >> If nobody answers, in the next revision I'll use the term "LPWAN >> back-end server" ("LBES") instead of "AAA server." That's also not >> great but at least doesn't have the potential to create new >> confusion. >> >> Cheers, S. >> >> [1] >> https://tools.ietf.org/html/draft-ietf-lpwan-overview-02#section-3 >> <https://tools.ietf.org/html/draft-ietf-lpwan-overview-02#section-3> >> >> >> >> >> >> >> >> _______________________________________________ lp-wan mailing >> list lp-wan@ietf.org <mailto:lp-wan@ietf.org> >> https://www.ietf.org/mailman/listinfo/lp-wan >> <https://www.ietf.org/mailman/listinfo/lp-wan> >> >> _______________________________________________ lp-wan mailing >> list lp-wan@ietf.org https://www.ietf.org/mailman/listinfo/lp-wan > > > > > _______________________________________________ lp-wan mailing list > lp-wan@ietf.org https://www.ietf.org/mailman/listinfo/lp-wan >
- [lp-wan] overview issue#2: AAA server term... Stephen Farrell
- Re: [lp-wan] overview issue#2: AAA server term... Arun
- Re: [lp-wan] overview issue#2: AAA server term... Dan García Carrillo
- Re: [lp-wan] overview issue#2: AAA server term... Juan Carlos Zuniga
- Re: [lp-wan] overview issue#2: AAA server term... Stephen Farrell