Presentation is loading. Please wait.

Presentation is loading. Please wait.

H ELSINKI U NIVERSITY OF T ECHNOLOGY AAA Architecture for hierarchical wireless Mobile IPv4 Tom Weckström Telecommunications Software and Multimedia Laboratory.

Published byRaymundo Space Modified over 9 years ago

Similar presentations

Presentation on theme: "H ELSINKI U NIVERSITY OF T ECHNOLOGY AAA Architecture for hierarchical wireless Mobile IPv4 Tom Weckström Telecommunications Software and Multimedia Laboratory."— Presentation transcript:

1 H ELSINKI U NIVERSITY OF T ECHNOLOGY AAA Architecture for hierarchical wireless Mobile IPv4 Tom Weckström Telecommunications Software and Multimedia Laboratory of Information Processing Science Helsinki University of Technology Finland H ELSINKI U NIVERSITY OF T ECHNOLOGY

2 Introduction Wireless Internet gaining momentum Yankee: 1billion users by 2003 Is access the wireless killer application? Mobile users need to be authenticated, authorized, and correctly billed. H ELSINKI U NIVERSITY OF T ECHNOLOGY

3 Problem Special needs for AAA protocol in Open environment Wireless environment H ELSINKI U NIVERSITY OF T ECHNOLOGY Problem dimensions Trust Security Efficiency

4 H ELSINKI U NIVERSITY OF T ECHNOLOGY Scope Mobile IPv4 environment that is –Open –Hierarchical –Wireless Lots of active mobile users Frequent, fast handoffs

5 H ELSINKI U NIVERSITY OF T ECHNOLOGY Scope

6 H ELSINKI U NIVERSITY OF T ECHNOLOGY Hierarchical Mobile IPv4 CNHA Internet Home Network WLAN FA5 FA2 HFA1 FA1 FA4FA3FA6FA4 Mobile Node FA5 FA2 SFA FA2 FA5 FA1 FA4 HFA1 Foreign Network H ELSINKI U NIVERSITY OF T ECHNOLOGY Mobile Node

7 H ELSINKI U NIVERSITY OF T ECHNOLOGY Criteria From IDs, scope and RFC 2477 11 criteria, classified and prioritized General, dimensional and AAA criteria GQM approach for measuring success

8 H ELSINKI U NIVERSITY OF T ECHNOLOGY My solution AAA Architecture with tick payments

9 H ELSINKI U NIVERSITY OF T ECHNOLOGY Design principles Parallel AAA and MIP signaling Reduced number of signaling messages Periodic payments SPKI with RSA Ideas from Ipay, DIAMETER and BillNeat

10 H ELSINKI U NIVERSITY OF T ECHNOLOGY Architectural elements AAAH, SHA, HA AAAF, HFA, FA Broker MN Buyer

11 H ELSINKI U NIVERSITY OF T ECHNOLOGY Architecture

12 H ELSINKI U NIVERSITY OF T ECHNOLOGY Trust relationships H ELSINKI U NIVERSITY OF T ECHNOLOGY

13 Security RSA for signatures SHA for payment messages Symmetric encryption for authentication, session keys, and signatures Session ID Billing ID Timestamps for replay protection

14 H ELSINKI U NIVERSITY OF T ECHNOLOGY Protocol operation Registration protocol –Slow mode: sequential, for compatibility –Fast mode: Parallel, optional grace period Payment protocol –Real time payments –Localized message handling –Policy based authorization –User controls the size of the bill

15 H ELSINKI U NIVERSITY OF T ECHNOLOGY Slow mode

16 H ELSINKI U NIVERSITY OF T ECHNOLOGY Fast mode

17 H ELSINKI U NIVERSITY OF T ECHNOLOGY Payment protocol

18 H ELSINKI U NIVERSITY OF T ECHNOLOGY Conclusions Potential for significant improvements with parallel signaling Static trust relationships concentrated within organizational units Flexibility with SPKI and Policy Management Tick payments: efficiency & control

19 H ELSINKI U NIVERSITY OF T ECHNOLOGY Future research ideas More extensive use of SPKI Trust relationships Certificate management Improved verification of credibility Integration with DIAMETER Policy management with distributed policies

20 H ELSINKI U NIVERSITY OF T ECHNOLOGY Q & A ?

21 H ELSINKI U NIVERSITY OF T ECHNOLOGY AAA Architecture for hierarchical wireless Mobile IPv4 Tom Weckström Email tweckstr@cc.hut.fi WWW http://www.cs.hut.fi/Research/Dynamics/ H ELSINKI U NIVERSITY OF T ECHNOLOGY

Download ppt "H ELSINKI U NIVERSITY OF T ECHNOLOGY AAA Architecture for hierarchical wireless Mobile IPv4 Tom Weckström Telecommunications Software and Multimedia Laboratory."

Similar presentations

Secure Mobile IP Communication

Secure Mobile IP Communication
Fast and Secure Universal Roaming Service for Mobile Internet Yeali S. Sun, Yu-Chun Pan, Meng-Chang Chen.

Fast and Secure Universal Roaming Service for Mobile Internet Yeali S. Sun, Yu-Chun Pan, Meng-Chang Chen.
Mobile IP in Wireless Cellular Systems from several perspectives Charles E. Perkins Nokia Research Center.

Mobile IP in Wireless Cellular Systems from several perspectives Charles E. Perkins Nokia Research Center.
1Nokia Siemens Networks Presentation / Author / Date University of Twente On the Security of the Mobile IP Protocol Family Ulrike Meyer and Hannes Tschofenig.

1Nokia Siemens Networks Presentation / Author / Date University of Twente On the Security of the Mobile IP Protocol Family Ulrike Meyer and Hannes Tschofenig.
IP EDGE DEVICES A solution for the Internet Migration Patrick Cocquet, 6WIND CEO, IPv6 Forum VP www.6wind.com Dubai IPv6 Forum Summit – February 2001.

IP EDGE DEVICES A solution for the Internet Migration Patrick Cocquet, 6WIND CEO, IPv6 Forum VP Dubai IPv6 Forum Summit – February 2001.
MOBILE NETWORK LAYER Mobile IP.

MOBILE NETWORK LAYER Mobile IP.
Sun Microsystems, Inc. Security for Mobile IP in the 3G Networks Pat R. Calhoun Network and Security Center Sun Microsystems, Inc.

Sun Microsystems, Inc. Security for Mobile IP in the 3G Networks Pat R. Calhoun Network and Security Center Sun Microsystems, Inc.
IPv4 and IPv6 Mobility Support Using MPLS and MP-BGP draft-berzin-malis-mpls-mobility-00 Oleg Berzin, Andy Malis {oleg.berzin,

IPv4 and IPv6 Mobility Support Using MPLS and MP-BGP draft-berzin-malis-mpls-mobility-00 Oleg Berzin, Andy Malis {oleg.berzin,
6 The IP Multimedia Subsystem Selected Topics in Information Security – Bazara Barry.

6 The IP Multimedia Subsystem Selected Topics in Information Security – Bazara Barry.
Mobile IP Security Dominic Maguire Research Essay Presentation Communications Infrastructure Module MSc Communications Software, WIT 1 1 1 0 11 0.

Mobile IP Security Dominic Maguire Research Essay Presentation Communications Infrastructure Module MSc Communications Software, WIT
SIP roaming solution amongst different WLAN-based service providers Julián F. Gutiérrez 1, Alessandro Ordine 1, Luca Veltri 2 1 DIE, University of Rome.

SIP roaming solution amongst different WLAN-based service providers Julián F. Gutiérrez 1, Alessandro Ordine 1, Luca Veltri 2 1 DIE, University of Rome.
Bootstrapping MIP6 Using DNS and IKEv2 (BMIP) James Kempf Samita Chakrarabarti Erik Nordmark draft-chakrabarti-mip6-bmip-01.txt Monday March 7, 2005.

Bootstrapping MIP6 Using DNS and IKEv2 (BMIP) James Kempf Samita Chakrarabarti Erik Nordmark draft-chakrabarti-mip6-bmip-01.txt Monday March 7, 2005.
H ELSINKI U NIVERSITY OF T ECHNOLOGY Increasing communication availability with signal-based mobile controlled handoffs D. Forsberg, J.T. Malinen, J.K.

H ELSINKI U NIVERSITY OF T ECHNOLOGY Increasing communication availability with signal-based mobile controlled handoffs D. Forsberg, J.T. Malinen, J.K.
Terminal Bridge Extension Over Distributed Architecture MSc. Sami Saalasti.

Terminal Bridge Extension Over Distributed Architecture MSc. Sami Saalasti.
An Authentication Service Against Dishonest Users in Mobile Ad Hoc Networks Edith Ngai, Michael R. Lyu, and Roland T. Chin IEEE Aerospace Conference, Big.

An Authentication Service Against Dishonest Users in Mobile Ad Hoc Networks Edith Ngai, Michael R. Lyu, and Roland T. Chin IEEE Aerospace Conference, Big.
More on AuthenticationCS-4513 D-term 20081 More on Authentication CS-4513 Distributed Computing Systems (Slides include materials from Operating System.

More on AuthenticationCS-4513 D-term More on Authentication CS-4513 Distributed Computing Systems (Slides include materials from Operating System.
Chapter 12 USING TECHNOLOGY TO ENHANCE BUSINESS PROCESSES.

Chapter 12 USING TECHNOLOGY TO ENHANCE BUSINESS PROCESSES.
1 Authentication Protocols Celia Li Computer Science and Engineering York University.

1 Authentication Protocols Celia Li Computer Science and Engineering York University.
Telecommunication Networks Group Technical University Berlin Secure WLAN Operation and Deployment in Home and Small to Medium Size Office Environments.

Telecommunication Networks Group Technical University Berlin Secure WLAN Operation and Deployment in Home and Small to Medium Size Office Environments.
Security Considerations for Wireless Sensor Networks Prabal Dutta (614) 975-3658 Security Considerations for Wireless Sensor Networks.

Security Considerations for Wireless Sensor Networks Prabal Dutta (614) Security Considerations for Wireless Sensor Networks.

Similar presentations

Ads by Google