Presentation is loading. Please wait.

Presentation is loading. Please wait.

Network Selection Issues

Published byHannah Fitzgerald Modified over 6 years ago

Similar presentations

Presentation on theme: "Network Selection Issues"— Presentation transcript:

1 Network Selection Issues
Pasi Eronen

2 Network Selection -- Goals
Assist AAA routing in global roaming, when full routing information not available or ambiguous Allow the user to select which broker to use, in case there are price or other differences Allow the intended service providers to be a part of the transaction business-wise

3 Network Selection -- Some Solutions
AAA layer: some mechanism to provide a better AAA routing / roaming table Link layer: advertise an SSID for the broker/intermediate network, then use that in AAA routing, using virtual AAA clients and proxies EAP layer: provide some hints in EAP identity request, select a NAI based on those hints A regular NAI A NAI with the broker’s name added Another alternative decoration:

4 Issues with NAI Prefix / EAP Solution
All proxies have to know about this Diameter routing and Diameter-RADIUS problems Does not work this way according to the current RFCs APs have to be modified to get the initial ID request from the proxy, or identity re-queries are needed, lengthening the network attachment time Does not help in selecting the AP Need to scan of all APs and running EAP before deciding which AP to choose EAP Identity Req/Resp contents are not secured

5 The SSID Solution No AAA protocol implications
No EAP or NAI interoperability issues Does require APs to support multiple SSIDs If the number of advertised networks is large, can consume a lot of beacon bandwidth At 1 mbps, all bandwidth used for 100 network advertisements! A similar issue with the EAP/scan solution, but not dependent on number of networks -- instead, the number of logins per second x number of APs However, in the EAP/scan solution a higher speed can be chosen for the unicast communications For instance, 10 logins per second with 10 APs and 100 networks, with 10 mbps unicast speed would result in 10 * 10 * = 1 mbps or 10% of the bandwidth used

6 Feedback on Network Selection
If an EAP-layer based solution is used, EAP identity request hints are probably OK Prefix-based NAI decoration is problematic AAA routing instructions from RFCs are violated All proxies have to recognize the decoration Suffix-based NAI decoration would be better Neither the hints or the decorations are authenticated Applies to SSIDs in part too, at least for dishonest AP case Scanning APs and trying EAP is problematic Particularly hard if there are multiple APs and fast roaming And particularly if identity re-query is used Consider combining AP selection and network selection? Beacon-based approach is limited to ~dozen brokers Particularly if lowest beaconing speed is small

Download ppt "Network Selection Issues"

Similar presentations

Unlicensed Mobile Access (UMA) Dasun Weerasinghe School of Engineering and Mathematical Sciences City University London.

Unlicensed Mobile Access (UMA) Dasun Weerasinghe School of Engineering and Mathematical Sciences City University London.
Doc.: IEEE 802.11-02/689r0 Submission November 2002 Dan Harkins, Trapeze Networks.Slide 1 Re-authentication when Roaming Dan Harkins.

Doc.: IEEE /689r0 Submission November 2002 Dan Harkins, Trapeze Networks.Slide 1 Re-authentication when Roaming Dan Harkins.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Confidential 1 IEEE 802.11u Overview Klaas Wierenga TF-Mobility Loughborough, May 7, 2009.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Confidential 1 IEEE u Overview Klaas Wierenga TF-Mobility Loughborough, May 7, 2009.
Omniran-13-0063-00-0000 1 IEEE 802 Enhanced Network Detection and Selection Date: 2013-08-26 Authors: NameAffiliationPhoneEmail Max RiegelNSN+49 173 293.

Omniran IEEE 802 Enhanced Network Detection and Selection Date: Authors: NameAffiliationPhone Max RiegelNSN
1 Role of Authorization in Wireless Network Security Pasi Eronen Jari Arkko November 3, 2004 This document has been produced partially in the context of.

1 Role of Authorization in Wireless Network Security Pasi Eronen Jari Arkko November 3, 2004 This document has been produced partially in the context of.
History Since created in 1995, RADIUS has been used to provide authentication, authorization and generate accounting information for dial-in users. However,

History Since created in 1995, RADIUS has been used to provide authentication, authorization and generate accounting information for dial-in users. However,
Slides of the course was made by TAs of this and previous semesters 1 Internet Networking Spring 2002 Tutorial 1 Subnets, Proxy ARP.

Slides of the course was made by TAs of this and previous semesters 1 Internet Networking Spring 2002 Tutorial 1 Subnets, Proxy ARP.
(part 3).  Switches, also known as switching hubs, have become an increasingly important part of our networking today, because when working with hubs,

(part 3).  Switches, also known as switching hubs, have become an increasingly important part of our networking today, because when working with hubs,
ERP for IKEv2 draft-nir-ipsecme-erx-01. Why ERP for IKEv2? RFC 5296 and the bis document define a quick re- authentication protocol for EAP. ERP requires.

ERP for IKEv2 draft-nir-ipsecme-erx-01. Why ERP for IKEv2? RFC 5296 and the bis document define a quick re- authentication protocol for EAP. ERP requires.
03/09/2003Helsinki University of Technology1 Overview of Thesis Topic Presented By: Zhao Xuetao.

03/09/2003Helsinki University of Technology1 Overview of Thesis Topic Presented By: Zhao Xuetao.
Identities and Network Access Identifier in M2M Page 1 © 2010 3GPP2 3GPP2 and its Organizational Partners claim copyright in this document and individual.

Identities and Network Access Identifier in M2M Page 1 © GPP2 3GPP2 and its Organizational Partners claim copyright in this document and individual.
2003/12/291 Security Aspects of 3G-WLAN Interworking 組別: 2 組員: 陳俊文 691410048, 李奇勇 691410051, 黃弘光 691430045, 林柏均 489410080.

2003/12/291 Security Aspects of 3G-WLAN Interworking 組別: 2 組員: 陳俊文 , 李奇勇 , 黃弘光 , 林柏均
EAP Key Framework Draft-ietf-eap-keying-01.txt IETF 58 Minneapolis, MN Bernard Aboba Microsoft.

EAP Key Framework Draft-ietf-eap-keying-01.txt IETF 58 Minneapolis, MN Bernard Aboba Microsoft.
July 16, 20031 Diameter EAP Application (draft-ietf-aaa-eap-02.txt) on behalf of...

July 16, Diameter EAP Application (draft-ietf-aaa-eap-02.txt) on behalf of...
11 December, 200049th IETF, AAA WG1 AAA Proxies draft-ietf-aaa-proxies-01.txt David Mitton.

11 December, th IETF, AAA WG1 AAA Proxies draft-ietf-aaa-proxies-01.txt David Mitton.
EAP-based Mediating Network Selection Copyright © 2003, The Internet Society Farid Adrangi Intel Corporation ( ) ACKNOWLEDGEMENTS:

EAP-based Mediating Network Selection Copyright © 2003, The Internet Society Farid Adrangi Intel Corporation ( ) ACKNOWLEDGEMENTS:
Doc.: IEEE 802.11-04/0638r0 Submission May 2004 Bernard Aboba, MicrosoftSlide 1 Network Selection Bernard Aboba Microsoft

Doc.: IEEE /0638r0 Submission May 2004 Bernard Aboba, MicrosoftSlide 1 Network Selection Bernard Aboba Microsoft
Submission doc.: IEEE 11-12/535r1 May 2012 Jarkko Kneckt, NokiaSlide 1 Scanning and FILS requirements Date: 2012-05-03 Authors:

Submission doc.: IEEE 11-12/535r1 May 2012 Jarkko Kneckt, NokiaSlide 1 Scanning and FILS requirements Date: Authors:
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential.

© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 © 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential.
Doc.: IEEE 802.11-08/0357r0 Submission March 2008 Michelle Gong, Intel, et alSlide 1 Enhancement to Mesh Discovery Date: 2008-03-17 Authors:

Doc.: IEEE /0357r0 Submission March 2008 Michelle Gong, Intel, et alSlide 1 Enhancement to Mesh Discovery Date: Authors:

Similar presentations

Ads by Google