IETF Logo Mail Archive

Re: [Mip6] mip6-aaa frameworks

Rafa Marin Lopez <rafa@dif.um.es> Tue, 15 February 2005 19:54 UTC

Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id OAA01663 for <mip6-web-archive@ietf.org>; Tue, 15 Feb 2005 14:54:03 -0500 (EST)
Received: from megatron.ietf.org ([132.151.6.71]) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1D196u-0007JE-Um for mip6-web-archive@ietf.org; Tue, 15 Feb 2005 15:15:54 -0500
Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1D18TY-0001F7-R5; Tue, 15 Feb 2005 14:35:12 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1D16G6-0002zZ-Ij for mip6@megatron.ietf.org; Tue, 15 Feb 2005 12:13:11 -0500
Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id MAA14179 for <mip6@ietf.org>; Tue, 15 Feb 2005 12:13:07 -0500 (EST)
Received: from smtp.um.es ([155.54.212.103]) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1D16b7-0000dm-Tv for mip6@ietf.org; Tue, 15 Feb 2005 12:34:57 -0500
Received: from smtp.um.es (localhost [127.0.0.1]) by localhost (Postfix) with ESMTP id 232BA1541; Tue, 15 Feb 2005 18:12:26 +0100 (CET)
Received: from correo.um.es (zape.um.es [155.54.212.102]) by smtp.um.es (Postfix) with ESMTP id F05D314FF; Tue, 15 Feb 2005 18:12:25 +0100 (CET)
Received: from [155.54.210.9] (dibulibu.um.es [155.54.1.250]) by correo.um.es (Postfix) with ESMTP id 9BF085CC8; Tue, 15 Feb 2005 18:12:24 +0100 (MET)
Message-ID: <42122D78.3010304@dif.um.es>
Date: Tue, 15 Feb 2005 18:12:24 +0100
From: Rafa Marin Lopez <rafa@dif.um.es>
User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Alper Yegin <alper.yegin@samsung.com>
Subject: Re: [Mip6] mip6-aaa frameworks
References: <11d201c51329$c83d61e0$291d9069@sisa.samsung.com>
In-Reply-To: <11d201c51329$c83d61e0$291d9069@sisa.samsung.com>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 0ff9c467ad7f19c2a6d058acd7faaec8
Content-Transfer-Encoding: 7bit
Cc: mip6@ietf.org
X-BeenThere: mip6@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: mip6.ietf.org
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/mip6>, <mailto:mip6-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:mip6@ietf.org>
List-Help: <mailto:mip6-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/mip6>, <mailto:mip6-request@ietf.org?subject=subscribe>
Sender: mip6-bounces@ietf.org
Errors-To: mip6-bounces@ietf.org
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 789c141a303c09204b537a4078e2a63f
Content-Transfer-Encoding: 7bit

Hi Alper,all

I think this classification could be summarized in two models (agent 
sequence and pull sequence) in this sense:

Taking into account that HA would be service equipment for Mobile IPv6 
service then:

if people want pull sequence then they need to know HA address and 
execute some kind of protocol between MT and NAS(HA) and HA contacts AAA 
server (framework 4)

MT------HA------AAA

if people want (framework 1, framework 2, framework 3) to deliver MIP6 
configuration parameters with network access, agent sequence could fit 
in the majority of these cases

MT-----AAA-----HA


note1 : you may want to include draft-ohba-mip6-boot-arch-dhcp-00.txt in 
framework 2.
note2 : draft-bournelle-pana-mip6-00 can match with sequences shown by 
draft-ohba-aaaarch-authorization-delegation-00

Regards.

Alper Yegin wrote:

>This is an attempt to enumerate possible MIP6-AAA frameworks, and start
>discussions on for which one(s) IETF shall pursue standardization. 
>
>Framework 1:
>------------
>Using network access AAA to deliver MIP6 configuration parameters from
>the AAA server to the MN. 
>
>MIP6 configuration is directly delivered from the AAA server to the MN
>during network access AAA, in-band with the authentication (e.g.,
>transported by EAP or EAP methods).
>
>Related I-Ds:
>
>draft-giaretta-mip6-authorization-eap-01
>draft-le-aaa-mipv6-requirements-03
>draft-ohnishi-mip6-aaa-problem-statement-00
>
>Discussion:
>
>The end2end transport between the AAA and the MN is the key. Use of EAP
>for this somewhat network access unrelated "configuration" is not
>recommended as far as I understand. One can design his own EAP method to
>do that, yet that would have limited applicability.
>
>
>Framework 2:
>------------
>Using network access AAA to deliver MIP6 configuration parameters from
>the AAA server to the NAS. It is assumed that parameters will be
>delivered from the NAS to the MN via another protocol (e.g., DHCP, PANA,
>etc.)
>
>Related I-Ds:
>
>draft-chowdhury-mip6-bootstrap-radius-00
>draft-jang-dhc-haopt-00
>
>Discussion:
>
>This is similar to NAS learning the IP address for the connected host
>via RADIUS, and delivering it to the host via DHCP.
>
>James had a comment regarding not having to support intra-operator
>interoperability. I think regardless of the deployment, interoperability
>between vendors is the important. Also, I was not sure on the complexity
>argument.
>
>3GPP2 has already chosen this scheme. Some other SDO(s) may follow the
>suit.
>
>Framework 3:
>------------
>Piggybacking MIP6 signaling (BU) with network access AAA. In-band with
>the network access authentication execution, the MN delivers
>(piggybacks) a BU to the AAA server. The AAA server may have to relay
>the BU to the HA (unless collocated).  
>
>Related I-D:
>
>draft-le-aaa-mipv6-requirements-03
>
>Discussion:
>
>While the performance benefits are clear, limited applicability (not
>always the network access and mobility services are bundled) and
>complexity are concerning.
>
>
>Framework 4:
>------------
>A backend AAA protocol is executed between the HA and the AAA server in
>response to the MIP6 signaling between the MN and the HA. Similar to the
>use of AAA protocols with MIPv4 co-located care-of address case.
>
>Related I-Ds:
>
>draft-giaretta-mip6-aaa-ha-goals-00.txt
>draft-yegin-mip6-aaa-fwk-00.txt
>
>Discussion:
>This one appears to be the most needed framework. It is assumed that MN
>already knows the HA address. 
>
>
>Are there other frameworks to add?
>
>I am sure I have missed some references, please let us know which ones.
>
>Alper
>
>
>
>
>_______________________________________________
>Mip6 mailing list
>Mip6@ietf.org
>https://www1.ietf.org/mailman/listinfo/mip6
>
>
>
>  
>


-- 
------------------------------------------------------
Rafael Marin Lopez
Faculty of Computer Science-University of Murcia
30071 Murcia - Spain
Telf: +34968367645    e-mail: rafa@dif.um.es
------------------------------------------------------


_______________________________________________
Mip6 mailing list
Mip6@ietf.org
https://www1.ietf.org/mailman/listinfo/mip6

v2.23.0 | Report a Bug | By Email