IETF Logo Mail Archive

[Mip6] mip6-aaa frameworks

Alper Yegin <alper.yegin@samsung.com> Tue, 15 February 2005 06:48 UTC

Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id BAA05717 for <mip6-web-archive@ietf.org>; Tue, 15 Feb 2005 01:48:10 -0500 (EST)
Received: from megatron.ietf.org ([132.151.6.71]) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1D0wqG-0004F1-O0 for mip6-web-archive@ietf.org; Tue, 15 Feb 2005 02:09:52 -0500
Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1D0wTJ-00060u-Qf; Tue, 15 Feb 2005 01:46:09 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1D0wSM-0005vo-OY for mip6@megatron.ietf.org; Tue, 15 Feb 2005 01:45:11 -0500
Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id BAA05470 for <mip6@ietf.org>; Tue, 15 Feb 2005 01:45:09 -0500 (EST)
Received: from mailout2.samsung.com ([203.254.224.25]) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1D0wnL-0004An-MM for mip6@ietf.org; Tue, 15 Feb 2005 02:06:52 -0500
Received: from custom-daemon.mailout2.samsung.com by mailout2.samsung.com (iPlanet Messaging Server 5.2 Patch 2 (built Jul 14 2004)) id <0IBX00G6AXE934@mailout2.samsung.com> for mip6@ietf.org; Tue, 15 Feb 2005 15:44:33 +0900 (KST)
Received: from ep_mmp2 (mailout2.samsung.com [203.254.224.25]) by mailout2.samsung.com (iPlanet Messaging Server 5.2 Patch 2 (built Jul 14 2004)) with ESMTP id <0IBX00MIEXE71H@mailout2.samsung.com> for mip6@ietf.org; Tue, 15 Feb 2005 15:44:31 +0900 (KST)
Received: from Alperyegin ([105.253.155.12]) by mmp2.samsung.com (iPlanet Messaging Server 5.2 HotFix 1.17 (built Jun 23 2003)) with ESMTPA id <0IBX00GK8XE4PT@mmp2.samsung.com> for mip6@ietf.org; Tue, 15 Feb 2005 15:44:31 +0900 (KST)
Date: Mon, 14 Feb 2005 22:44:19 -0800
From: Alper Yegin <alper.yegin@samsung.com>
In-reply-to: <01cd01c512e3$c4f4a250$016115ac@dcml.docomolabsusa.com>
To: mip6@ietf.org
Message-id: <11d201c51329$c83d61e0$291d9069@sisa.samsung.com>
MIME-version: 1.0
X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2800.1441
X-Mailer: Microsoft Outlook, Build 10.0.2627
Content-type: text/plain; charset="us-ascii"
Content-transfer-encoding: 7bit
Importance: Normal
X-Priority: 3 (Normal)
X-MSMail-priority: Normal
X-Spam-Score: 0.0 (/)
X-Scan-Signature: a2c12dacc0736f14d6b540e805505a86
Content-Transfer-Encoding: 7bit
Subject: [Mip6] mip6-aaa frameworks
X-BeenThere: mip6@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: mip6.ietf.org
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/mip6>, <mailto:mip6-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:mip6@ietf.org>
List-Help: <mailto:mip6-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/mip6>, <mailto:mip6-request@ietf.org?subject=subscribe>
Sender: mip6-bounces@ietf.org
Errors-To: mip6-bounces@ietf.org
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 5011df3e2a27abcc044eaa15befcaa87
Content-Transfer-Encoding: 7bit

This is an attempt to enumerate possible MIP6-AAA frameworks, and start
discussions on for which one(s) IETF shall pursue standardization. 

Framework 1:
------------
Using network access AAA to deliver MIP6 configuration parameters from
the AAA server to the MN. 

MIP6 configuration is directly delivered from the AAA server to the MN
during network access AAA, in-band with the authentication (e.g.,
transported by EAP or EAP methods).

Related I-Ds:

draft-giaretta-mip6-authorization-eap-01
draft-le-aaa-mipv6-requirements-03
draft-ohnishi-mip6-aaa-problem-statement-00

Discussion:

The end2end transport between the AAA and the MN is the key. Use of EAP
for this somewhat network access unrelated "configuration" is not
recommended as far as I understand. One can design his own EAP method to
do that, yet that would have limited applicability.


Framework 2:
------------
Using network access AAA to deliver MIP6 configuration parameters from
the AAA server to the NAS. It is assumed that parameters will be
delivered from the NAS to the MN via another protocol (e.g., DHCP, PANA,
etc.)

Related I-Ds:

draft-chowdhury-mip6-bootstrap-radius-00
draft-jang-dhc-haopt-00

Discussion:

This is similar to NAS learning the IP address for the connected host
via RADIUS, and delivering it to the host via DHCP.

James had a comment regarding not having to support intra-operator
interoperability. I think regardless of the deployment, interoperability
between vendors is the important. Also, I was not sure on the complexity
argument.

3GPP2 has already chosen this scheme. Some other SDO(s) may follow the
suit.

Framework 3:
------------
Piggybacking MIP6 signaling (BU) with network access AAA. In-band with
the network access authentication execution, the MN delivers
(piggybacks) a BU to the AAA server. The AAA server may have to relay
the BU to the HA (unless collocated).  

Related I-D:

draft-le-aaa-mipv6-requirements-03

Discussion:

While the performance benefits are clear, limited applicability (not
always the network access and mobility services are bundled) and
complexity are concerning.


Framework 4:
------------
A backend AAA protocol is executed between the HA and the AAA server in
response to the MIP6 signaling between the MN and the HA. Similar to the
use of AAA protocols with MIPv4 co-located care-of address case.

Related I-Ds:

draft-giaretta-mip6-aaa-ha-goals-00.txt
draft-yegin-mip6-aaa-fwk-00.txt

Discussion:
This one appears to be the most needed framework. It is assumed that MN
already knows the HA address. 


Are there other frameworks to add?

I am sure I have missed some references, please let us know which ones.

Alper




_______________________________________________
Mip6 mailing list
Mip6@ietf.org
https://www1.ietf.org/mailman/listinfo/mip6

v2.23.0 | Report a Bug | By Email