1 RADIUS Attribute Harmonization and Informational guidelines for PWLAN Farid Adrangi Intel Corporation ( )

Slides:

Advertisements

Similar presentations

802.1AF - directions define requirements to find and create connections in terms of Discovery - Authentication - Enable 1.Discover of what can be done.

Advertisements

Welcome to the CardSaver VoIP Billing & Call Management Demonstration © 2004, Parwan Electronics Corporation.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 8: Monitoring the Network Connecting Networks.

Omniran TG 1 Cooperation for OmniRAN P802.1CF Max Riegel, NSN (Chair OmniRAN TG)

Dynamic Adaptive Streaming over HTTP – Design Principles and Standards Thomas Stockhammer, Qualcomm DASHDASH.

Omniran IEEE 802 Enhanced Network Detection and Selection Date: Authors: NameAffiliationPhone Max RiegelNSN

Hotspot Express $ One of the Pioneers of complete WiFi solutions in India $ Hardware to create HOTSPOTs  Software to secure HOTSPOTs & Manage the users.

An Architectural Framework for Providing WLAN Roaming D.Vassis G.Kormentzas Dept. of Information and Communication Systems Engineering University of the.

By: Alena Newcomb.  What is a WI-FI hotspot?  Wireless Local Area Network location that provides broadband Internet access.  Use of laptops, PDA, or.

1 An overview Always Best Connected Networks Dênio Mariz Igor Chaves Thiago Souto Aug, 2004.

RADIUS Prepaid Extension draft-lior-radius-prepaid-extensions-05.txt Avi Lior, Yong Li, Bridgewater Systems Parviz Yegani, Cisco Systems Kuntal Chowdhury.

Carrying Location Objects in RADIUS Hannes Tschofenig, Farid Adrangi, Avi Lior, Mark Jones.

Chapter 18 RADIUS. RADIUS  Remote Authentication Dial-In User Service  Protocol used for communication between NAS and AAA server  Supports authentication,

1 Enabling Secure Internet Access with ISA Server.

Using RADIUS Within the Framework of the School Environment Ed Register Consultant April 6, 2011.

70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 10: Remote Access.

Chapter 6 Configuring, Monitoring & Troubleshooting IPsec

Virtual Private Networks (Tunnels). When Are VPN Tunnels Used? VPN with PPTP tunnel Used if: All routers support VPN tunnels You are using MS-CHAP or.

Course 6421A Module 7: Installing, Configuring, and Troubleshooting the Network Policy Server Role Service Presentation: 60 minutes Lab: 60 minutes Module.

Network Services Lesson 6. Objectives Skills/ConceptsObjective Domain Description Objective Domain Number Setting up common networking services Understanding.

SIP Authorization Framework Use Cases Rifaat Shekh-Yusef, Jon Peterson IETF 91, SIPCore WG Honolulu, Hawaii, USA November 13,

Networking Components

Windows Internet Connection Sharing Dave Eitelbach Program Manager Networking And Communications Microsoft Corporation.

Configuring Routing and Remote Access(RRAS) and Wireless Networking

S New Security Developments in DICOM Lawrence Tarbox, Ph.D Chair, DICOM WG 14 (Security) Siemens Corporate Research.

CHAPTER 2 PCs on the Internet Suraya Alias. The TCP/IP Suite of Protocols Internet applications – client/server applications The client requested data.

Module 9: Planning Network Access. Overview Introducing Network Access Selecting Network Access Connection Methods Selecting a Remote Access Policy Strategy.

Chapter 4. After completion of this chapter, you should be able to: Explain “what is the Internet? And how we connect to the Internet using an ISP. Explain.

Altai Certification Training Backend Network Planning

Copyright ©Universalinet.Com, LLC 2009 Implementing Secure Converged Wide Area Networks ( ISCW) Take-Aways Course 1: Cable (HFC) Technologies.

11.59 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 11: Introducing WINS, DNS,

70-411: Administering Windows Server 2012

Dean Cheng Jouni Korhonen Mehamed Boucadair

Call Control with SIP Brian Elliott, Director of Engineering, NMS.

Doc: Submission September 2003 Dorothy Stanley (Agere Systems) IETF Liaison Report September 2003 Dorothy Stanley – Agere Systems IEEE.

Credit Control and Prepaid Applications Avi LiorBridgewater Systems Parviz YeganiCisco

1 Week 6 – NPS and RADIUS Install and Configure a Network Policy Server Configure RADIUS Clients and Servers NPS Authentication Methods Monitor and Troubleshoot.

© Aastra – 2012 SIP-DECT 4.0 RFP 43 WLAN June 2012.

Windows Small Business Server 2003 Setting up and Connecting David Overton Partner Technical Specialist.

HTTP Extension Framework Name: Qin Zhao Id:

5.1 © 2004 Pearson Education, Inc. Exam Designing a Microsoft ® Windows ® Server 2003 Active Directory and Network Infrastructure Lesson 5: Planning.

3Com Confidential Proprietary 3G CDMA AAA Function Yingchun Xu 3COM.

Identities and Network Access Identifier in M2M Page 1 © GPP2 3GPP2 and its Organizational Partners claim copyright in this document and individual.

QUALCOMM Incorporated 1 Protocol Options for BSN- BSMCS Controller Interface Jun Wang, Kirti Gupta 05/16/2005 Notice: Contributors grant a free, irrevocable.

July 16, Diameter EAP Application (draft-ietf-aaa-eap-02.txt) on behalf of...

March 15, 2005 IETF #62 Minneapolis1 EAP Discovery draft-adrangi-eap-network-discovery-10.txt Farid Adrangi ( )

Dean Cheng Jouni Korhonen Mehamed Boucadair

1 RADIUS Mobile IPv6 Support draft-ietf-mip6-radius-01.txt Kuntal Chowdhury Avi Lior Hannes Tschofenig.

RADIUS issues in IPv6 deployments draft-hu-v6ops-radius-issues-ipv6-01 J. Hu, YL. Ouyang, Q. Wang, J. Qin,

Radius Redirection draft-lior-radius-redirection-01.txt Avi Lior Bridgewater Systems Farid Adrangi Intel.

Carrying Location Objects in RADIUS Hannes Tschofenig, Farid Adrangi, Avi Lior, Mark Jones.

Doc.: IEEE /209r0 Submission 1 March GPP SA2Slide 1 3GPP System – WLAN Interworking Principles and Status From 3GPP SA2 Presented.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Connecting to the Network Introduction to Networking Concepts.

1 HRPD Roamer Authentication Zhibi Wang, Sarvar Patel, Simon Mizikovsky, Nancy Lee.

1 Bandwidth Profile Negotiation over AAA Farid Adrangi, Paul Congdon, Chuck Black, Avi Lior, Farooq Bari draft-adrangi-radius-bandwidth-capability-01.txt.

Carrying Location Objects in RADIUS Presentation written by: Hannes Tschofenig, Allison Mankin Draft Authors: Hannes Tschofenig, F. Adrangi, A. Lior, M.

Component 4: Introduction to Information and Computer Science Unit 7: Networks & Networking Lecture 1 This material was developed by Oregon Health & Science.

+ Routing Concepts 1 st semester Objectives  Describe the primary functions and features of a router.  Explain how routers use information.

Dean Cheng 81 st IETF Quebec City RADIUS Extensions for CGN Configurations draft-cheng-behave-cgn-cfg-radius-ext

Nov 10, EAP-based Mediating Network Discovery and Selection Copyright © 2003, The Internet Society Farid Adrangi Intel Corporation (

 Router Configurations part2 2 nd semester

1 cellhost-ipv6-52.ppt/ December 13, 2001 / John A. Loughney Minimum IPv6 Functionality for a Cellular Host John Loughney, Pertti Suomela, Juha Wiljakka,

62 nd IETF RADIUS Bandwidth Capability Avi Lior, Bridgewater Systems Farid Adrangi, Intel Paul Congdon, ProCurve Networking Business Chuck Black, ProCurve.

IETF 78 RADIUS extensions for DS-Lite draft-maglione-softwire-dslite-radius-ext-00 R. Maglione – Telecom Italia A. Durand – Juniper Networks.

Also known as hardware/physi cal address Customer Computer (Client) Internet Service Provider (ISP) MAC Address Each Computer has: Given by NIC card.

RADIUS attributes commonly used in fixed networks draft-klammorrissette-radext-very-common-vsas-00 Devasena Morrissette, Frederic Klamm, Lionel Morand.

Integration of and Third-Generation Wireless Data Networks

Capability Exchange Requirements

IS4550 Security Policies and Implementation

ISMS Information Security Management System

Presentation transcript:

1 RADIUS Attribute Harmonization and Informational guidelines for PWLAN Farid Adrangi Intel Corporation ( )

2 RADIUS Attributes Harmonization for PWLAN Motivation –RADIUS is a key component for successful deployments of Public Wireless LAN (PWLAN) –Additional attributes are needed for RADIUS AAA in Public Wireless LANs (PWLAN). –Common understanding and standardization of these attributes is needed among various standard forum and groups (e.g., 3GPP, 3GPP2, WiFi Public Access, GSMA, IPDR) –Prevent fragmentation and promote multi-vendor and multi-operator interoperability Current attributes –Location and operational ownership for PWLAN AN –Generic Application capability –Redirect –IP address type option capabilities –DNS Server IP address –Network Bandwidth Capabilities –Remote Destination IP address IETF draft –Draft-adrangi-RADIUS-Attributes-Extension-for-PWLAN-00.txtDraft-adrangi-RADIUS-Attributes-Extension-for-PWLAN-00.txt

3 RADIUS Informational Guidelines for PWLAN Rationale –Identify Required RADIUS RFCs for PWLAN –Identify required Attributes for PWLAN –Clarify usage model / interpretation of attributes for PWLAN IETF draft draft will be submitted

4 Next Step IETF Review of currently proposed attributes –The draft is under revision - a revised version will be submitted soon IETF guidelines on how we can expedite standardization of the attributes

5 Backup …

6 Location and Operational Ownership Attributes Rationale –Location aware billing –Location aware services –Location aware authentication –Easier integration into existing inter-operator billing systems Attributes –Access Network operator_name Globally unique and coordinated identifiers for operators E.g. TADIG code, NCC and MNC codes, or Realm – switch able with prefix escape codes (e.g. 00%REALM%…) –Access Network Location-name Contains E.164 Country Code, Telephone Area Code, City, and Access Network Type –Access Network Location-info Contains descriptive string about the hotspot to be printed into subscribers’ detailed bill

7 Generic RADIUS Application Capability Attribute Rationale –Enable a home RADIUS server to discover capabilities of a RADIUS client –The capabilities indicate standard-based applications (e.g., existing dynamic authorization Extension to Remote [5], future prepaid accounting model, etc.) Attribute –Contains a comma-delimited list of URIs. –The URIs include a FQDN corresponding to the organization responsible for the document or standard to which compliance is claimed. For example: – –

8 Redirect Attribute Rationale –Enables home network to redirect the subscribers traffic to a specified server such as a web server. This feature is useful in situations such as replenishing a subscriber prepaid account etc. The attribute should be available to be sent in Access Accept and CoA.

9 IP Address Type Options Attribute Rationale –Specify whether a routable (public) or non-routable (private) IP address should be assigned to a PWLAN client. Attribute –Used by Access Network (in Access-Request) to indicate what IP address type options (private vs. public) are supported by an Access Network –Used by a Home Network (in Access-Accept) to specify what type of IP address (private, public) must be assigned to the PWLAN subscriber.

10 Network Bandwidth Rate Attributes Rationale –Enable home network to specify network bandwidth range (min, max) to be used for a PWLAN subscriber Attribute(s) –Used (by Access Network) to indicate available Network bandwidth. –Used (by home network) to specify the desired network bandwidth rates (min, max) for a PWLAN subscriber –Used for accounting purposes

11 Support for Specifying DNS server Address Rationale –Specify the DNS server IP address to be used by PWLAN subscriber. Attribute –Used (by home network) to specify a DNS server IP address for a PWLAN subscriber

12 Remote IP services Attribute Rationale –Enable a home network to restrict its subscribers accessing to certain remote IP addresses based on their subscription profiles. – Enable home network to audit remote IP addresses that its subscribers may connect to for accounting purposes. Attribute –Contains one or more IP addresses (IP address range can be used), One or more port numbers