1 Bandwidth Profile Negotiation over AAA Farid Adrangi, Paul Congdon, Chuck Black, Avi Lior, Farooq Bari draft-adrangi-radius-bandwidth-capability-01.txt.

Slides:

Advertisements

Similar presentations

Doc.: IEEE /1186r0 Submission October 2004 Aboba and HarkinsSlide 1 PEKM (Post-EAP Key Management Protocol) Bernard Aboba, Microsoft Dan Harkins,

Advertisements

PEAP & EAP-TTLS 1.EAP-TLS Drawbacks 2.PEAP 3.EAP-TTLS 4.EAP-TTLS – Full Example 5.Security Issues 6.PEAP vs. EAP-TTLS 7.Other EAP methods 8.Summary.

Labcourse “Routerlab”

History Since created in 1995, RADIUS has been used to provide authentication, authorization and generate accounting information for dial-in users. However,

Georgy Melamed Eran Stiller

Radius Dave Grizzanti Steve Curti. What is RADIUS? Remote Authentication Dial-In User Service (RADIUS) is a protocol for remote user authentication and.

RADIUS Prepaid Extension draft-lior-radius-prepaid-extensions-05.txt Avi Lior, Yong Li, Bridgewater Systems Parviz Yegani, Cisco Systems Kuntal Chowdhury.

Carrying Location Objects in RADIUS Hannes Tschofenig, Farid Adrangi, Avi Lior, Mark Jones.

RADIUS Chargeable User Identity Farid Adrangi Avi Lior Jouni Korhonen draft-adrangi-radius-chargeable-user-identity-02.txt.

Chapter 18 RADIUS. RADIUS  Remote Authentication Dial-In User Service  Protocol used for communication between NAS and AAA server  Supports authentication,

Microsoft Windows Server 2003 TCP/IP Protocols and Services Technical Reference Slide: 1 Lesson 20 RADIUS and Internet Authentication Service.

Implementing RADIUS AAA Phil & Rick. Content Terms and Concepts Access Control What is AAA? Benefits of AAA What is RADIUS? Microsoft IAS Overview Installation.

IPv6 RADIUS attributes for IPv6 access networks draft-lourdelet-radext-ipv6-access-01 Glen Zorn, Benoit Lourdelet Wojciech Dec, Behcet Sarikaya Radext/dhc.

Dean Cheng Jouni Korhonen Mehamed Boucadair

EAP WG EAP Key Management Framework Draft-ietf-eap-keying-03.txt Bernard Aboba Microsoft.

3Com Confidential Proprietary 3G CDMA AAA Function Yingchun Xu 3COM.

QUALCOMM Incorporated 1 Protocol Options for BSN- BSMCS Controller Interface Jun Wang, Kirti Gupta 05/16/2005 Notice: Contributors grant a free, irrevocable.

Doc.: IEEE /1572r0 Submission December 2004 Harkins and AbobaSlide 1 PEKM (Post-EAP Key Management Protocol) Dan Harkins, Trapeze Networks

March 15, 2005 IETF #62 Minneapolis1 EAP Discovery draft-adrangi-eap-network-discovery-10.txt Farid Adrangi ( )

Dean Cheng Jouni Korhonen Mehamed Boucadair

1 RADIUS Mobile IPv6 Support draft-ietf-mip6-radius-01.txt Kuntal Chowdhury Avi Lior Hannes Tschofenig.

1 RADIUS Attribute Harmonization and Informational guidelines for PWLAN Farid Adrangi Intel Corporation ( )

Radius Redirection draft-lior-radius-redirection-01.txt Avi Lior Bridgewater Systems Farid Adrangi Intel.

Carrying Location Objects in RADIUS Hannes Tschofenig, Farid Adrangi, Avi Lior, Mark Jones.

EAP-based Mediating Network Selection Copyright © 2003, The Internet Society Farid Adrangi Intel Corporation ( ) ACKNOWLEDGEMENTS:

Cody Brookshear Andy Borman

RADIUS 2-Aug-2007.

Data Objects and Message Types 49 th IETF AAAarch Research Group David Spence Interlink Networks.

Support of fragmentation of RADIUS packets in authorization exchanges draft-perez-radext-radius-fragmentation IETF87 – RADEXT Diego R. Lopez - Telefónica.

March 17, 2003 IETF #56, SAN FRANCISCO1 Compound Authentication Binding Problem (EAP Binding Draft) Jose Puthenkulam Intel Corporation (

RADIUS Protocol Sowjanya Talasila Shilpa Pamidimukkala.

1 HRPD Roamer Authentication Zhibi Wang, Sarvar Patel, Simon Mizikovsky, Nancy Lee.

RADIUS What it is Remote Authentication Dial-In User Service

Real-Time Streaming Protocol draft-ietf-mmusic-rfc2326bis-01.txt Magnus Westerlund.

Carrying Location Objects in RADIUS Presentation written by: Hannes Tschofenig, Allison Mankin Draft Authors: Hannes Tschofenig, F. Adrangi, A. Lior, M.

Draft-ietf-radext-filter-rules-01-txt “NAS-Traffic-Rule Attribute” Bernard Aboba Paul Congdon Mauricio Sanchez IETF 67 – San Diego, CA draft-ietf-radext-filter-05-txt.

Quick Reconnect IETF #61, Lemonade. Overview Minimize resynchronization time to prevent long client locks on mobile terminals. Minimize bandwidth consumption.

Dean Cheng 81 st IETF Quebec City RADIUS Extensions for CGN Configurations draft-cheng-behave-cgn-cfg-radius-ext

Washinton D.C., November 2004 IETF 61 st – mip6 WG MIPv6 authorization and configuration based on EAP (draft-giaretta-mip6-authorization-eap-02) Gerardo.

IETF #65 Network Discovery and Selection Problem draft-ietf-eap-netsel-problem-04 Farooq Bari Jouni Korhonen.

DHCP options for PAA Status report of draft-ietf-dhc-paa-option-01.txt Lionel Morand IETF-65, Dallas.

Diameter Group Signaling Thursday, August 02 nd, 2013 draft-ietf-diameter-group-signaling-01 Mark Jones, Marco Liebsch, Lionel Morand IETF 87 Berlin, Germany.

RADEXT WG draft-ietf-radext-ieee802ext-09 Bernard Aboba November 4, 2013 IETF 88 Please join the Jabber room:

August 2001 Slide 1 Extensions to TLS Simon Blake-Wilson Certicom David Hopwood Independent Consultant Jan Mikkelsen Transactionware Magnus Nystrom RSA.

Nov 10, EAP-based Mediating Network Discovery and Selection Copyright © 2003, The Internet Society Farid Adrangi Intel Corporation (

Subject Identification Method August, 2004 Tim Polk, NIST.

August 2, 2005IETF63 EAP WG AAA-Key Derivation with Lower-Layer Parameter Binding (draft-ohba-eap-aaakey-binding-01.txt) Yoshihiro Ohba (Toshiba) Mayumi.

1 Extensible Authentication Protocol (EAP) Working Group IETF-57.

Real-time Transport for Assured Forwarding: An Architecture for both Unicast and Multicast Applications By Ashraf Matrawy and Ioannis Lambadaris From Carleton.

62 nd IETF RADIUS Bandwidth Capability Avi Lior, Bridgewater Systems Farid Adrangi, Intel Paul Congdon, ProCurve Networking Business Chuck Black, ProCurve.

Session-Independent Policies draft-ietf-sipping-session-indep-policy-00 Volker Hilt Gonzalo Camarillo

IETF 78 RADIUS extensions for DS-Lite draft-maglione-softwire-dslite-radius-ext-00 R. Maglione – Telecom Italia A. Durand – Juniper Networks.

Cryptography CSS 329 Lecture 13:SSL.

RADIUS attributes commonly used in fixed networks draft-klammorrissette-radext-very-common-vsas-00 Devasena Morrissette, Frederic Klamm, Lionel Morand.

RADIUS By: Nicole Cappella. Overview  Central Authentication Services  Definition of RADIUS  “AAA Transaction”  Roaming  Security Issues and How.

EAP WG EAP Key Management Framework Draft-ietf-eap-keying-05.txt Bernard Aboba Microsoft IETF 62, Minneapolis, MN.

August 4, 2004EAP WG, IETF 601 Authenticated service identities for EAP (draft-arkko-eap-service-identity-auth-00) Jari Arkko Pasi Eronen.

1 RADEXT WG Agenda IETF-60 Bernard Aboba David Nelson.

Signaling Protocol for Access Service Network using LDP (draft-matsuda-l2vpn-access-service-protocol-00.txt) Tetsushi Matsuda Information Technology R&D.

Informing AAA about what lower layer protocol is carrying EAP

Booting up on the Home Link

Capability Exchange Requirements

(Flow Related) DLEP Extensions

Carrying Location Objects in RADIUS

Diameter NASReq Application Status

Benchmarking Framework draft-constantine-bmwg-traffic-management-02

Sally Floyd and Eddie Kohler draft-floyd-ccid4-00.txt November 2006

Simple Two-way Active Measurement Protocol (STAMP): base protocol and data model draft-mirsky-ippm-stamp draft-mirsky-ippm-stamp-yang Greg Mirsky

X y y = x2 - 3x Solutions of y = x2 - 3x y x –1 5 –2 –3 6 y = x2-3x.

Diameter ABFAB Application

Presentation transcript:

1 Bandwidth Profile Negotiation over AAA Farid Adrangi, Paul Congdon, Chuck Black, Avi Lior, Farooq Bari draft-adrangi-radius-bandwidth-capability-01.txt IETF #60 August 2004

2 Draft Status / Acknowledgement Version 1 was done based on comments and feedbacks from the list –Open issues are discussed at the end Acknowledgement –Special thanks to Jari Arkko for his extensive comments and help us with Diameter part –Thanks to Stefan Cnodder, David MariBlanca, Parviz Yegani, Gilles Bourdo

3 High-level Summary Goal –Enable home network to specify network bandwidth range (min, max) to be used for an access network client Attribute(s) –Used (by access network) to indicate available network bandwidth. –Used (by home network) to specify the desired network bandwidth rates (min, max) for an access network client –Used for accounting purposes

4 Solution Basics Bandwidth Advertisement (Optional) –Sent in RADIUS Access-Request –Sent in Diameter AAR & DER Bandwidth Selection –Sent in RADIUS Access-Accept –Sent in RADIUS re-authorization –Sent in Diameter RAR Bandwidth Confirmation –Sent in RADIUS Accounting-Request –Sent in Diameter ACR

5 Bandwidth Selection at Initial Session Access-Request NAS Access-Accept Client ( Bandwidth Advertisement) ( Bandwidth Selection) Accounting-Request ( Bandwidth Confirmation) Authentication Phase Begin Authentication Accept RADIUS Server

6 Bandwidth Selection in Mid Session NASRADIUS ServerNASRADIUS Server “Push Model”“Pull Model” Re-Authorization (Bandwidth Selection) Re-Authorization Ack Accounting Stop (Old Bandwidth Parameters) Accounting Start (New Bandwidth Parameters) Re-Authorization (Authorize-Only) Re-Authorization NAK (Error-Cause : Request Initiated) Access-Request (Bandwidth Advertisement) Access-Accept (Bandwidth Selection) Access-Stop Access-Start (Old Bandwidth Parameters) (New Bandwidth Parameters)

7 RADIUS Attributes Format | Type | Length | Value | | Value | Four Attributes: 1) Minimum Peak Ingress Bandwidth (bytes per second) 2) Minimum Peak Egress Bandwidth (bytes per second) 3) Average Maximum Ingress Bandwidth (bytes per second) 4) Average Maximum Egress Bandwidth (bytes per second)

8 Issues Should we use a single attribute for indicating all four bandwidth parameters? Do we need to include other parameters like “burst size”, “profile ID” or “algorithm ID”?

9 Next Steps How should we go forward with draft?