Presentation is loading. Please wait.

Presentation is loading. Please wait.

August 2004 at IETF-60 Jari.Arkko@ericsson.com Thoughts on RADIUS Data Model Issues and Some Possible New Approaches -- Including Diameter Compatibility.

Published byMavis Shields Modified over 6 years ago

Similar presentations

Presentation on theme: "August 2004 at IETF-60 Jari.Arkko@ericsson.com Thoughts on RADIUS Data Model Issues and Some Possible New Approaches -- Including Diameter Compatibility."— Presentation transcript:

1 August 2004 at IETF-60 Jari.Arkko@ericsson.com
Thoughts on RADIUS Data Model Issues and Some Possible New Approaches -- Including Diameter Compatibility August 2004 at IETF-60

2 Not All Attributes Are Created Equal
RADIUS IETF Attributes Strict type and allocation control Restricted type and number space RADIUS VSAs (vendor and SDO) Less strict control of typing No allocation control Unrestricted number space Diameter AVPs Powerful type system and unrestricted number space

3 The Implications... This is fine; the spaces have different purposes
However, movements between spaces are complicated: It may be hard to adopt a VSA as an IETF attribute, even if we wanted to, if there is a type difference Question: what types do VSAs use? A definition of an attribute in Diameter can not be used in RADIUS, two different attributes lead to translation difficulties Only designed movement is RADIUS attribute => Diameter VSA Some people argue that current type system is too limiting Attribute number availability may be a problem too

4 How Other Protocols Deal with This
SNMP Unrestricted numbering system (OIDs) Strict type control A private MIB branch can be moved to IETF space just by assigning new numbers

5 Some Potential New Approaches for RADIUS

6 Approach 1: Use an IETF VSA with an Extended Data Model
Allocate a vendor number (maybe != 0) for IETF Extend the data model/have more attribute numbers available for this attribute Use this attribute for new work

7 The Attribute Format | Type = | Length | Vendor-Id = IETF Vendor-Id (cont) |M|R| Extended IETF type | | Extended IETF Data ...

8 Approach 2: Merge the Extended IETF and Diameter AVP data models
Allocate a new attribute, “IETF Extended” Contents are Diameter AVPs (or subset of them) “IETF Extended” and Diameter AVPs share the same number system

9 The Attribute Format | Type = TBD | Length | Diameter AVP Code | V M r r r r r r | Vendor-ID (opt) Vendor-ID (opt, cont) | Diameter Data ... Note: data types include Grouped More information: (Appendix A)

10 Discussion (1/2) Implications to implementations:
In any case, existing VSAs must continue to work Only new work would use the new format New code not needed if attributes fed in using hex New code needed if cleaner input/processing is required Implications to attribute spaces: Approach 1 creates a new, fourth attribute space Approach 2 merges two of the existing attribute spaces Implications for RADIUS - Diameter interoperability: Approach 2 makes it possible to use existing AVPs in RADIUS

11 Discussion (2/2) Bits on the wire Feature set
Goal: a translation agent needs no per-AVP information to do a conversion Implies that format must be exactly as in Diameter or self-describing so that an automatic conversion can be done Feature set If we do, think hard about how powerful the scheme should be Attribute number space extension -- probably useful Attribute type space extension -- maybe some Not all Diameter attribute types are currently used Length extension -- not sure

Download ppt "August 2004 at IETF-60 Jari.Arkko@ericsson.com Thoughts on RADIUS Data Model Issues and Some Possible New Approaches -- Including Diameter Compatibility."

Similar presentations

--- IT Acumens. COMIT Acumens. COM SNMP Project. AIM The aim of our project is to monitor and manage the performance of a network. The aim of our project.

--- IT Acumens. COMIT Acumens. COM SNMP Project. AIM The aim of our project is to monitor and manage the performance of a network. The aim of our project.
PCEP extensions for GMPLS

PCEP extensions for GMPLS
TOPIC : MIME (Multipurpose Internet Mail Extensions ) By: Cecilia Gomes COSC 541,DATA COMMUNICATION SYSTEMS & NETWORKS Instructor: Prof. Anvari (SEU)

TOPIC : MIME (Multipurpose Internet Mail Extensions ) By: Cecilia Gomes COSC 541,DATA COMMUNICATION SYSTEMS & NETWORKS Instructor: Prof. Anvari (SEU)
C honnam N ational U niversity Computer Science Network Laboratory Tel: +82-062-530-0898 2002-03-14 New Design Schemes for.

C honnam N ational U niversity Computer Science Network Laboratory Tel: New Design Schemes for.
DOIC Restructuring. Restructuring Purpose Improve readability Separate informative from normative text Isolate loss abatement algorithm behavior into.

DOIC Restructuring. Restructuring Purpose Improve readability Separate informative from normative text Isolate loss abatement algorithm behavior into.
Lionel Morand DIME WG IETF 79 Diameter Design Guidelines Thursday, November 11, 2010 Lionel Morand.

Lionel Morand DIME WG IETF 79 Diameter Design Guidelines Thursday, November 11, 2010 Lionel Morand.
Some Thoughts on Data Representation 47th IETF AAAarch Research Group David Spence Merit Network, Inc.

Some Thoughts on Data Representation 47th IETF AAAarch Research Group David Spence Merit Network, Inc.
Prepared By: Eng.Ola M. Abd El-Latif

Prepared By: Eng.Ola M. Abd El-Latif
6LoWPAN-SNMP: Simple Network Management Protocol for 6LoWPAN

6LoWPAN-SNMP: Simple Network Management Protocol for 6LoWPAN
Advisor: Quincy Wu Speaker: Kuan-Ta Lu Date: Aug. 19, 2010

Advisor: Quincy Wu Speaker: Kuan-Ta Lu Date: Aug. 19, 2010
Dean Cheng Jouni Korhonen Mehamed Boucadair

Dean Cheng Jouni Korhonen Mehamed Boucadair
Extended Attributes RADEXT - IETF 79 Alan DeKok FreeRADIUS Avi Lior Bridgewater.

Extended Attributes RADEXT - IETF 79 Alan DeKok FreeRADIUS Avi Lior Bridgewater.
“Trust me …” Policy and Practices in PKI David L. Wasley Fall 2006 PKI Workshop.

“Trust me …” Policy and Practices in PKI David L. Wasley Fall 2006 PKI Workshop.
March 2006IETF 65, Dallas1 Diameter NASreq (RFC 4005) and RADIUS Compatibility David Mitton RSA Security Inc. draft-mitton-diameter-radius-vsas-01.txt.

March 2006IETF 65, Dallas1 Diameter NASreq (RFC 4005) and RADIUS Compatibility David Mitton RSA Security Inc. draft-mitton-diameter-radius-vsas-01.txt.
RADEXT WG IETF 91 Rechartering. Why? Current charter doesn’t allow us to take on new work that is waiting in the queue Has an anachronistic Diameter entanglement.

RADEXT WG IETF 91 Rechartering. Why? Current charter doesn’t allow us to take on new work that is waiting in the queue Has an anachronistic Diameter entanglement.
NextHop Technologies, Inc. BGP-4 MIB Status, IETF 56 Jeffrey Haas.

NextHop Technologies, Inc. BGP-4 MIB Status, IETF 56 Jeffrey Haas.
RADEXT WG RADIUS Attribute Guidelines Greg Weber March 21 st, 2006 IETF-65, Dallas v1 draft-weber-radius-attr-guidelines-02.txt draft-wolff-radext-ext-attribute-00.txt.

RADEXT WG RADIUS Attribute Guidelines Greg Weber March 21 st, 2006 IETF-65, Dallas v1 draft-weber-radius-attr-guidelines-02.txt draft-wolff-radext-ext-attribute-00.txt.
KMIP Compliance Redefining Server and Client requirements to claim compliance Presented by: Bob Lockhart.

KMIP Compliance Redefining Server and Client requirements to claim compliance Presented by: Bob Lockhart.
Page - 1 76 th IETF – Hiroshima, Japan, November 2009 WSON Signal Characteristics and Network Element Compatibility Constraints for GMPLS Greg

Page th IETF – Hiroshima, Japan, November 2009 WSON Signal Characteristics and Network Element Compatibility Constraints for GMPLS Greg
Design Guidelines Thursday July 26, 2007 Bernard Aboba IETF 69 Chicago, IL.

Design Guidelines Thursday July 26, 2007 Bernard Aboba IETF 69 Chicago, IL.

Similar presentations

Ads by Google