mip6-5----Page:8
1 2 3 4 5 6 7 8 9 10
|
Goals Security Service Authorization Accounting Mobile node authentication Mutual authentication Integrity protection Replay protection Confidentiality Inactive peer detection NAI to identify the MN HA must be able to query AAA-MSP to verify MN authorization AAA-MSP should be able to enforce auth. restrictions of HA ....... Transfer of accounting records (e.g. bytes transferred in bi-directional tunneling) Delivery of config. data MN authentication with HA as NAS and AAA-MSP as backend authentication server (e.g. EAP) ....... AAA-MSP should be able to poll HA for the allocation of a HoA AAA-MSP should be able to send security data to HA (e.g. PSK) ........ Common goals Scenario n.1 Scenario n.2 |