Accounting, Auditing and Session IDs - PowerPoint PPT Presentation

1 / 14
About This Presentation
Title:

Accounting, Auditing and Session IDs

Description:

Several good ways to construct globally unique identifiers are already known, e. ... K0 with Authentication Request via AR to AH. AH returns Authentication ... – PowerPoint PPT presentation

Number of Views:38
Avg rating:3.0/5.0
Slides: 15
Provided by: nevi52
Category:

less

Transcript and Presenter's Notes

Title: Accounting, Auditing and Session IDs


1
Accounting, Auditing and Session IDs Nevil
BrownleeThe University of Auckland /
CAIDAAdelaide, March 2000
2
Accounting and Auditing
  • Auditing means making and distributing records
    of network activity so that events, usage, etc.
    can be summarised for the users responsible for
    them
  • Accounting means generating audit records
  • An Accounting ID is a globally unique identifier
    used by an Audit server to correlate audit
    records by session and sub-session
  • Audit servers could allow controlled access to
    different parts of the audit database, e.g. users
    could see their usage records

3
Accounting IDs
  • Several good ways to construct globally unique
    identifiers are already known, e.g. SMTP,
    DIAMETER, UUID URI, etc.
  • A simple scheme for AAA could be nnn.ttt_at_server.f
    oo.com where server.foo.com servers domain
    name ttt time of day (UTC seconds) nnn
    sequence number (set to a random value on
    server boot-up)

4
Using Accounting IDs
  • Could have AAA server generate Accounting ID on
    authentication, and have all servers use it.This
    creates a bottleneck
  • Better to have each server generate and use its
    own sub-session ID
  • Each server will send audit records to one or
    more Audit Servers using their IDs
  • The servers will also need to send the Audit
    servers information about the IDs, allowing it to
    keep track of the sub-session tree

5
User starts session
HomeAAA Server
RemoteAAA Server
SecondaryAudit (AAA)Server
UserAgent
S0 generates Accounting ID K0, sends K0 with
Authentication Request via AR to AH AH returns
Authentication Response to S0, with list of
Audit Servers (AH, As)
6
S0 Initiates Auditing
HomeAAA Server
RemoteAAA Server
SecondaryAudit (AAA)Server
UserAgent
S0 sends Start Session request to its designated
Audit Servers (AH, As) Start Session record
includes the session Accounting ID, K0
7
S0 Session Progresses
HomeAAA Server
RemoteAAA Server
SecondaryAudit (AAA)Server
UserAgent
S0 sends Audit Record(s) to its designated Audit
Servers (AH, As) Every audit record record
includes the session Accounting ID, K0
8
S0 starts Sub-session S1
HomeAAA Server
RemoteAAA Server
SecondaryAudit (AAA)Server
UserAgent
Sub-sessionServer 1
Sub-session examplesBandwidth Broker, VoIP
Gateway S0 sends S1 a Start Sub-session request,
which includes K0 and (AH, As)
9
S1 Initiates Auditing
HomeAAA Server
RemoteAAA Server
SecondaryAudit (AAA)Server
UserAgent
Sub-sessionServer 1
S1 generates sub-session Accounting ID K1, sends
Start Sub-session request to (AH, As), which
includes K0, K1 and (AH, As)
10
S1 Sub-session Progresses
HomeAAA Server
RemoteAAA Server
SecondaryAudit (AAA)Server
UserAgent
Sub-sessionServer 1
S1 sends Audit Record(s) with Accounting ID K1
to (AH, As)
11
S1 starts Sub-session S2
HomeAAA Server
RemoteAAA Server
SecondaryAudit (AAA)Server
UserAgent
Sub-sessionServer 1
Sub-sessionServer 2
S1 sends S2 a Start Sub-session request, which
includes K1 and (AH, As)
12
S2 Initiates Auditing
HomeAAA Server
RemoteAAA Server
SecondaryAudit (AAA)Server
UserAgent
Sub-sessionServer 1
Sub-sessionServer 2
S2 generates sub-session Accounting ID K2, sends
Start Sub-session request to (AH, As), which
includes K1, K2 and (AH, As)
13
S2 Sub-session Progresses
HomeAAA Server
RemoteAAA Server
SecondaryAudit (AAA)Server
UserAgent
Sub-sessionServer 1
Sub-sessionServer 2
S1 sends Audit Record(s) with Accounting ID K1
to (AH, As)
14
Summary
  • There are several good ways to make a globally
    unique Accounting ID
  • Accounting IDs can be generated by each server
    contributing to a session
  • Each server must send Accounting IDs for itself
    and its parent to the Audit Server(s) as part of
    initiating sub-session audit activities
  • Audit servers collect pairs of parent-child
    Accounting IDs and use them to reconstruct the
    session tree
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2024 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "Accounting, Auditing and Session IDs" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!