Diameter SIP application - PowerPoint PPT Presentation

About This Presentation
Title:

Diameter SIP application

Description:

Proposal: make Digest-Nonce AVP optional in SIP-Authenticate AVP ... Message formats are not open to vendor extensions because all commands mandate ... – PowerPoint PPT presentation

Number of Views:58
Avg rating:3.0/5.0
Slides: 12
Provided by: Miguel125
Learn more at: https://www.ietf.org
Category:
Tags: sip | application | diameter | how | make | out | to

less

Transcript and Presenter's Notes

Title: Diameter SIP application


1
Diameter SIP application
  • IETF 64
  • Vancouver, 6-11 November, 2005
  • e-mail miguel.an.garcia_at_nokia.com

2
Status
  • draft-ietf-aaa-diameter-sip-app-10.txt passed the
    3rd WG Last Call in October 2005.
  • New requirements have been coming during each
    previous WGLC
  • After the 3rd WGLC new issues were raised, mainly
    due to compatibility with the 3GPP Diameter
    application for the Cx interface.
  • All issues are tracked at
  • http//danforsberg.info8080/draft-ietf-aaa-diamet
    er-sip/

3
Issue 49 Required Authentication parameters (1)
  • Use case
  • Nonces are generated in the Diameter client
  • Check for final authentication also takes place
    in the Diameter client.
  • The Diameter client sends the generated nonce to
    the Diameter server in MAR

-------- --------
Diameter SIP
server server
-------- --------

1. SIP INVITE
-----------------------------------gt
2. 407
Proxy Authentication Required)
lt-----------------------------------
3. SIP
INVITE ---------------------------
--------gt 4. MAR
lt------------------
5. MAA
------------------gt 6. SIP INVITE
----------------gt
8. SIP 200 (OK)
8. SIP 200 (OK)
lt---------------- lt-----------------------------
------
4
Issue 49 Required Authentication parameters (2)
  • Optimization 1
  • MAA command includes a SIP-Authenticate AVP which
    mandates to include a nonce (Digest-Nonce AVP).
  • Since the nonce has been previously generated in
    the Diameter client, there is not need to repeat
    this AVP anymore.
  • Proposal make Digest-Nonce AVP optional in
    SIP-Authenticate AVP

5
Issue 49 Required Authentication parameters (3)
  • Optimization 2
  • MAR command includes a SIP-Authorization AVP
    which mandates to include Digest-URI and
    Digest-Response AVPs.
  • The Diameter server does not really need
    Digest-URI or Digest-Response
  • Proposal Make Digest-URI and Digest-Response AVP
    optional in the SIP-authorization AVP

6
Issue 49 Required Authentication parameters (4)
  • Optimization 3
  • SIP-Authentication-Info AVP mandates the
    inclusion of a Digest-Nextnonce AVP
  • Since nonces are generated in the Diameter
    client, there is no point in the Diameter server
    including a Digest-Nextnonce AVP
  • Proposal make Digest-Nextnonce AVP in the
    SIP-Authentication-Info AVP

7
Issue 50 User-Data AVP in PPR
  • PPR mandates to include a User-Data AVP
  • However, there is a use case where the User-Data
    AVP is not updated, but the SIP-Accounting-Informa
    tion AVP instead.
  • Proposal Make User-Data AVP optional, modify the
    explanatory text accordingly.

8
Issue 51 Result-Code AVP
  • Message formats are not open to vendor extensions
    because all commands mandate Auth-Application-ID
    AVP.
  • Complaint cant use Experimental-Result/Experimen
    tal-Result-Code AVPs
  • But Diameter SIP application is not a vendor
    specific application, so commands MUST contain a
    Result-Code AVP
  • Proposal do nothing

9
Issue 52 Auth-Application-ID AVP
  • Message formats are not open to vendor extensions
    because all commands mandate Auth-Application-ID
    AVP.
  • Complaint Vendor-Specific-Application-ID AVP
    cannot be used in a command
  • But Diameter SIP application is not a vendor
    specific application, so commands MUST contain
    Auth-Application-ID.
  • Proposal do nothing.

10
Issue 53 MAR processing
  • The user is not authenticated until the MAA
    command is received, but the MAR processing
    assumes it is.
  • Authentication flag is set if the SIP-Server AVP
    contains a different value than in the past.
  • The flag is cleared if the stored value matches
    the SIP-Server AVP
  • However, the user is not completely authenticated
    at this stage (MAR/MAA).
  • Proposal the flag must be cleared when
    processing the SAR/SAA commands instead

11
Issue 54 Auth-Application-ID AVP in UAR command
  • The syntax of the UAR command defines the
    Auth-Application-ID as a fixed AVP (i.e., syntax
    within ltgt brackets), but the rest of the commands
    list it as a mandatory AVP (i.e., syntax within
    brackets).
  • No specific guidance is provided in RFC 3588, but
    in all commands the Auth-Application-ID appears
    as mandatory AVP
  • Proposal be consistent with other commands and
    change
  • lt Auth-Application-Id gt
  • with
  • Auth-Application-Id
  • in the syntax of the UAR command
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2024 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "Diameter SIP application" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!