IETF Logo Mail Archive

Re: [Mip6] mip6-aaa frameworks

"Mohan Parthasarathy" <mohanp@sbcglobal.net> Wed, 16 February 2005 01:50 UTC

Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id UAA12485 for <mip6-web-archive@ietf.org>; Tue, 15 Feb 2005 20:50:25 -0500 (EST)
Received: from megatron.ietf.org ([132.151.6.71]) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1D1Efr-0000tH-7z for mip6-web-archive@ietf.org; Tue, 15 Feb 2005 21:12:19 -0500
Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1D1EFW-0007Hd-Ny; Tue, 15 Feb 2005 20:45:06 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1D1EBu-0006h3-PU for mip6@megatron.ietf.org; Tue, 15 Feb 2005 20:41:24 -0500
Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id UAA11703 for <mip6@ietf.org>; Tue, 15 Feb 2005 20:41:20 -0500 (EST)
Received: from smtp811.mail.sc5.yahoo.com ([66.163.170.81]) by ietf-mx.ietf.org with smtp (Exim 4.33) id 1D1EX1-0000fS-TR for mip6@ietf.org; Tue, 15 Feb 2005 21:03:14 -0500
Received: from unknown (HELO adithya) (mohanp@sbcglobal.net@192.103.17.134 with login) by smtp811.mail.sc5.yahoo.com with SMTP; 16 Feb 2005 01:41:18 -0000
Message-ID: <011101c513c8$9a1d5e10$861167c0@adithya>
From: Mohan Parthasarathy <mohanp@sbcglobal.net>
To: Alper Yegin <alper.yegin@samsung.com>, mip6@ietf.org
References: <11d201c51329$c83d61e0$291d9069@sisa.samsung.com>
Subject: Re: [Mip6] mip6-aaa frameworks
Date: Tue, 15 Feb 2005 17:41:13 -0800
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2800.1437
X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2800.1441
X-Spam-Score: 0.0 (/)
X-Scan-Signature: c3a18ef96977fc9bcc21a621cbf1174b
Content-Transfer-Encoding: 7bit
X-BeenThere: mip6@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: mip6.ietf.org
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/mip6>, <mailto:mip6-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:mip6@ietf.org>
List-Help: <mailto:mip6-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/mip6>, <mailto:mip6-request@ietf.org?subject=subscribe>
Sender: mip6-bounces@ietf.org
Errors-To: mip6-bounces@ietf.org
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 32b73d73e8047ed17386f9799119ce43
Content-Transfer-Encoding: 7bit

Alper,

Thanks for summarizing this.  A few comments below.

> 
> Framework 1:
> ------------
> Using network access AAA to deliver MIP6 configuration parameters from
> the AAA server to the MN. 
> 
> MIP6 configuration is directly delivered from the AAA server to the MN
> during network access AAA, in-band with the authentication (e.g.,
> transported by EAP or EAP methods).
> 
> Related I-Ds:
> 
> draft-giaretta-mip6-authorization-eap-01
> draft-le-aaa-mipv6-requirements-03
> draft-ohnishi-mip6-aaa-problem-statement-00
> 
> Discussion:
> 
> The end2end transport between the AAA and the MN is the key. Use of EAP
> for this somewhat network access unrelated "configuration" is not
> recommended as far as I understand. One can design his own EAP method to
> do that, yet that would have limited applicability.
> 
Perhaps, you don't need a new method. But something like EAP-TLV (there was
a draft around sometime back) is sufficient i guess. Anyway, the key issue
is using EAP for configuration.

 
> Framework 3:
> ------------
> Piggybacking MIP6 signaling (BU) with network access AAA. In-band with
> the network access authentication execution, the MN delivers
> (piggybacks) a BU to the AAA server. The AAA server may have to relay
> the BU to the HA (unless collocated).  
> 
> Related I-D:
> 
> draft-le-aaa-mipv6-requirements-03
> 
> Discussion:
> 
> While the performance benefits are clear, limited applicability (not
> always the network access and mobility services are bundled) and
> complexity are concerning.
> 
Can you elaborate on the complexity issue ?

> 
> Framework 4:
> ------------
> A backend AAA protocol is executed between the HA and the AAA server in
> response to the MIP6 signaling between the MN and the HA. Similar to the
> use of AAA protocols with MIPv4 co-located care-of address case.
> 
> Related I-Ds:
> 
> draft-giaretta-mip6-aaa-ha-goals-00.txt
> draft-yegin-mip6-aaa-fwk-00.txt
> 
> Discussion:
> This one appears to be the most needed framework. It is assumed that MN
> already knows the HA address. 
> 
Agreed.  We can always use a simpler mechanism e.g. DNS to discover the
HA address i suppose. 

-mohan

> 
> Are there other frameworks to add?
> 
> I am sure I have missed some references, please let us know which ones.
> 
> Alper
> 
> 
> 
> 
> _______________________________________________
> Mip6 mailing list
> Mip6@ietf.org
> https://www1.ietf.org/mailman/listinfo/mip6

_______________________________________________
Mip6 mailing list
Mip6@ietf.org
https://www1.ietf.org/mailman/listinfo/mip6

v2.23.0 | Report a Bug | By Email