Escolar Documentos
Profissional Documentos
Cultura Documentos
www.intellinet-tech.com
www.intellinet-tech.com
What is Diameter
Diameter is an extensible, ASCII based messaging protocol to enable Authorization, Authentication and Accounting (AAA) function in IP and multimedia networks. Diameter supports a modular architecture with the base protocol and application specific extensions Its reliance on secure and reliable transports make it a suitable choice for charging and authorization.
www.intellinet-tech.com
The Evolution
Remote Authentication Dial In User Services - DialUp PPP/IP - MobileIP access
RADIUS
DIAMETER
www.intellinet-tech.com
Increased size of attribute data More Reliable Transport Improved Flow Control Elimination of packet loss Better Proxying mechanisms Enhanced Session Control Tighter Security options
www.intellinet-tech.com
Diameter Architecture
Applications of interest
Applications
NASREQ
Applications
EAP
Mobile IPv4
Applications
Applications
Credit Control
3GPP
The Base protocol provides support for the reliable transport and delivery of messages The Base Protocol must be used along with an Application
www.intellinet-tech.com
Diameter Applications
!
NASREQ Application
!
AAA support for Mobile IP networks as specified in CDMA2000 requirements(rfc3141) and MobileIP AAA(rfc2977)
EAP Application
!
3GPP Applications
!
www.intellinet-tech.com
Diameter Associations
peer
Server Relay
Client
Realm 11 Realm domain1.com domain1.com
Client
Realm 22 Realm domain2.com domain2.com
Diameter Identity
aaa://host.domain.com:3868;transport=sctp;protocol=diameter
www.intellinet-tech.com
Redirect Agent by notify the requesting peer with the routing information Translation Agent
Protocol translation function such as RADIUS-Diameter conversion
www.intellinet-tech.com
Diameter Messages
Fixed Length Header Attribute Value ASCII Based Message Protocol
:
AVP Code Length Flags Data
www.intellinet-tech.com
Version Flags
Header
Hop-by-Hop Identifier End-to-End Identifier AVP Code Flags AVP Length Vendor ID (Vendor specific AVP) AVP Data (Variable Length)
AVP 0 .. n
www.intellinet-tech.com
www.intellinet-tech.com
Proxy
Server Discovery via DNS or static Configuration Peer Identity, apps supported version info etc. KeepAlive message
www.intellinet-tech.com
Peers can be statically configured or dynamically discovered Initial Handshake is established via Capabilities Exchange Message Heartbeats are exchanged for transport failure detection Failover/Failback mechanisms are invoked when transport failures are detected. An alternate peer is selected for all pending and new requests.
www.intellinet-tech.com
Application Programmning Interface Peer Subsystem (FSMs) AVP Parser Routing Peer & Realm
XML
Config DB
Peer Peer
www.intellinet-tech.com
Radius
Limited to 255 octets for an attribute data Only vendor specific attributes UDP lacks any mechanism to regulate data flow Unable to distinguish Silent discarding of packets Inability for proper detection results in ineffective failover
www.intellinet-tech.com
Radius
No proxy servers. Reliance on NAS Not present Not present Only Hop-to-Hop security. No securing of AVPs No alignment requirements Mandates a shared secret even if IPsec or TLS is used
www.intellinet-tech.com
An All-IP Network vision. Diameter is an IETF recommended protocol Ability to support accounting for multiple sessions, with multi-media in a single PDP context Lessons from current set of diverse standards and proprietary interfaces ISUP, CAMEL,WIN,Parlay Harmonized AAA function across all access networks
www.intellinet-tech.com
Diameter in 3GPP
Policy Gq,Gq
www.intellinet-tech.com
www.intellinet-tech.com
I-CSCF I-CSCF
HSS
S-CSCF S-CSCF
Dx
SLF
www.intellinet-tech.com
P-CSCF P-CSCF
Gq
Diameter
RACS RACS
Gq
Diameter
AF AF
GGSN GGSN
IMS
TISPAN-NGN
www.intellinet-tech.com
Diameter
Diameter
Offline Charging
Online Charging
www.intellinet-tech.com
3GPP Specific
! !
Recommendation for SCTP as a reliable transport Support for NASreq, EAP and other IP applications not required Most Diameter communication falls within the same realm.(SCSF-HSS) Diameter does not need a compression function unlike SIP