1. IEEE 802.21 MEDIA INDEPENDENT HANDOVER DCN: 21-08-0285-00-0sec
Title: Inter-AAA Domain Assumptions and Requirements
Date Submitted: October 22, 2008
Presented at Security SG Teleconference, October 23, 2008
Authors or Source(s):
 Subir Das
Abstract: This document describes the assumptions and requirements for Inter-AAA domain handover use cases.
sec

2. IEEE 802.21 presentation release statements
This document has been prepared to assist the IEEE Working Group. It is offered as a basis for discussion and is not binding on the contributing individual(s) or organization(s). The material in this document is subject to change in form and content after further study. The contributor(s) reserve(s) the right to add, amend or withdraw material contained herein.
The contributor grants a free, irrevocable license to the IEEE to incorporate material contained in this contribution, and any modifications thereof, in the creation of an IEEE Standards publication; to copyright in the IEEE’s name any IEEE Standards publication even though it may include portions of this contribution; and at the IEEE’s sole discretion to permit others to reproduce in whole or in part the resulting IEEE Standards publication. The contributor also acknowledges and accepts that this contribution may be made public by IEEE
The contributor is familiar with IEEE patent policy, as stated in Section 6 of the IEEE-SA Standards Board bylaws < and in Understanding Patent Issues During IEEE Standards Development
IEEE presentation release statements
This document has been prepared to assist the IEEE Working Group. It is offered as a basis for discussion and is not binding on the contributing individual(s) or organization(s). The material in this document is subject to change in form and content after further study. The contributor(s) reserve(s) the right to add, amend or withdraw material contained herein.
The contributor grants a free, irrevocable license to the IEEE to incorporate material contained in this contribution, and any modifications thereof, in the creation of an IEEE Standards publication; to copyright in the IEEE’s name any IEEE Standards publication even though it may include portions of this contribution; and at the IEEE’s sole discretion to permit others to reproduce in whole or in part the resulting IEEE Standards publication. The contributor also acknowledges and accepts that this contribution may be made public by IEEE
The contributor is familiar with IEEE patent policy, as outlined in Section 6.3 of the IEEE-SA Standards Board Operations Manual < and in Understanding Patent Issues During IEEE Standards Development
sec

3. Use case (TR )
Scenario: A mobile device transitions between two 802-based access networks of the same media type and deployed in different AAA domains, e.g.,
To make handover feasible, following additional assumptions apply
AA1 : Two access networks (e.g., IEEE ) belong to either two different network or service providers
AA2 : Two service providers have either roaming relationships or the subscriber has two separate credentials for two AAA domains (non-roaming case)
AA3: For non-roaming case, target authenticators may only be reachable via IP connectivity from the source radio
sec

4. Use case 2.2.6 contd.. Requirements:
When roaming relationship exists, following additional requirements apply
The security context may be shared between the two AAA domains
For non-roaming case, following additional requirements apply
It shall conduct an authentication prior to handover to the target network using the credential for that target network (Note: This clause can be added in R0.3)
The security context can not shared between two the AAA domains
sec

5. Use case (TR )
Scenario: A mobile device transitions between two 802-based access networks of different media types and deployed in different AAA domains, e.g., and
Following additional assumptions apply
AA1 : Two access networks (e.g., IEEE and IEEE ) belong to either two different network or service providers
AA2 : Two service providers have either roaming relationships or the subscriber has two separate credentials for two AAA domains (non-roaming case)
AA3: For non-roaming case, target authenticators may only be reachable via IP connectivity from the source radio
sec

6. Use case 2.2.5 contd.. Requirements:
When roaming relationship exists, following additional requirements apply
The security context may be shared between the two AAA domains
For non-roaming case, following additional requirements apply
It shall conduct an authentication prior to handover to the target network using the credential for that target network (Note: This clause can be added in R0.3)
The security context can not shared between the AAA domains
sec