[Mip4] RE: Issue 3: Diameter MIP4 Application vs. RADIUS Architecture

To: "McCann Peter-A001034" <pete.mccann at motorola.com>, <dime at ietf.org>
Subject: [Mip4] RE: Issue 3: Diameter MIP4 Application vs. RADIUS Architecture
From: "Ahmad Muhanna" <amuhanna at nortel.com>
Date: Thu, 9 Aug 2007 14:30:55 -0500
Cc: mip4 at ietf.org, Hannes Tschofenig <Hannes.Tschofenig at gmx.net>
In-reply-to: <BE4B07D4197BF34EB3B753DD34EBCD1301C3338C@de01exm67.ds.mot.com>
List-help: <mailto:mip4-request@ietf.org?subject=help>
List-id: Mobility for IPv4 <mip4.ietf.org>
List-post: <mailto:mip4@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/mip4>, <mailto:mip4-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/mip4>, <mailto:mip4-request@ietf.org?subject=unsubscribe>
References: <6FC4416DDE56C44DA0AEE67BC7CA43711601FEFC@zrc2hxm2.corp.nortel.com> <BE4B07D4197BF34EB3B753DD34EBCD1301BF5CE8@de01exm67.ds.mot.com> <6FC4416DDE56C44DA0AEE67BC7CA43711606FEEB@zrc2hxm2.corp.nortel.com> <BE4B07D4197BF34EB3B753DD34EBCD1301C32EDB@de01exm67.ds.mot.com> <6FC4416DDE56C44DA0AEE67BC7CA437116114603@zrc2hxm2.corp.nortel.com> <BE4B07D4197BF34EB3B753DD34EBCD1301C33349@de01exm67.ds.mot.com> <6FC4416DDE56C44DA0AEE67BC7CA43711611482D@zrc2hxm2.corp.nortel.com> <BE4B07D4197BF34EB3B753DD34EBCD1301C3338C@de01exm67.ds.mot.com>
Thread-index: AcfUGyjk+uHvSBZCTZChfmfiOho9igAGdW0AATTc4eAACl8zMAABByOwACPqseAAOKQT0AABF7GwAAB0xyAAAjYAMAAAlpMQ
Thread-topic: Issue 3: Diameter MIP4 Application vs. RADIUS Architecture

Hi Pete,

> 
> Ahmad Muhanna wrote:
> > 2. The point here is not about Diameter as an AAA protocol, 
> however, 
> > it is about the concept of coupling the MIPv4 control 
> signaling to AAA 
> > signaling. Which many people do not think it is a good idea and 
> > believe that it is a deviation from RFC3344 initial MIPv4
> > registration procedure. Do not you agree?    
> 
> No, I don't.  Putting the Registration Request in the AMR is 
> a feature.
> It allows the registration to happen in one round-trip.

[Ahmad]
Well, I do not understand what you mean by a feature. Initial RRQ/RRP is
coupled with AMR/AMA, as a matter of fact they are carried in
attributes. In other words, we can not relay initial RRQ/RRP outside
AMR/AMA as per RFC3344. Even if you want to call it a feature, that
feature makes D-MIP4 architecture different from RADIUS and at the same
time makes AAA infrastructure more vulnerable.

>  
> > 6. Actually, we are going to publish a new revision of this 
> draft and 
> > address the scenario of allocating a HA in the visited 
> network. Have 
> > you looked into the difference between the RADIUS and D-MIP4 
> > performance in this scenario and what will happen if the MN happened
> > to retransmit?    
> 
> Obviously this scenario takes longer to process the RRQ and 
> so the chance of hitting a retransmission is greater.

[Ahmad]
Okay.. Then that is bad and has bad consequences on the AAA
infrastructure and on the current MIPv4 deployment. Operators, expects
the current network infrastructure to work, at least, better when
upgrading AAA to Diameter not to degrade their network performance and
start spending moneys on studies and tweaking mechanisms here and there
to compromise for the D-MIPv4 feature. IMO, that is not a bad feature
and we need to fix it.

>  
> >> I agree that a Diameter (or RADIUS, for that matter) 
> infrastructure 
> >> might take more than 1 second to respond to an AMR or an 
> >> Access-Request. It seems that the solution is to recommend 
> a longer 
> >> timeout value for the initial retransmission.  Another 
> solution would 
> >> be to allow the MN to complete its registration successfully by 
> >> receiving an RRP matching a previous RRQ (not just the 
> most recently 
> >> retransmitted one).
> >> 
> >> I don't think we should turn the MIP4 Diameter application into a 
> >> 2-round-trips protocol.  The goal of RFC4004 is to provide MIP 
> >> registration in one round-trip.
> >> 
> 
> -Pete
> 
> 

--
Mip4 mailing list: Mip4 at ietf.org
    Web interface: https://www1.ietf.org/mailman/listinfo/mip4
     Charter page: http://www.ietf.org/html.charters/mip4-charter.html
Supplemental site: http://www.mip4.org/

Follow-Ups:
- [Mip4] RE: [Dime] RE: Issue 3: Diameter MIP4 Application vs. RADIUS Architecture
  - From: Ahmad Muhanna

References:
- [Mip4] Issue 2: Security Concern in RADIUS Mode: MIPv4 Auth Performance Using RADIUS and Diameter MIPv4 Application draft
  - From: Ahmad Muhanna
- [Mip4] RE: Issue 2: Security Concern in RADIUS Mode: MIPv4 Auth Performance Using RADIUS and Diameter MIPv4 Application draft
  - From: McCann Peter-A001034
- [Mip4] RE: Issue 2: Security Concern in RADIUS Mode: MIPv4 Auth Performance Using RADIUS and Diameter MIPv4 Application draft
  - From: Ahmad Muhanna
- [Mip4] RE: Issue 2: Security Concern in RADIUS Mode: MIPv4 Auth Performance Using RADIUS and Diameter MIPv4 Application draft
  - From: McCann Peter-A001034
- [Mip4] Issue 3: Diameter MIP4 Application vs. RADIUS Architecture
  - From: Ahmad Muhanna
- [Mip4] RE: Issue 3: Diameter MIP4 Application vs. RADIUS Architecture
  - From: McCann Peter-A001034
- [Mip4] RE: Issue 3: Diameter MIP4 Application vs. RADIUS Architecture
  - From: Ahmad Muhanna
- [Mip4] RE: Issue 3: Diameter MIP4 Application vs. RADIUS Architecture
  - From: McCann Peter-A001034

Prev by Date: RE: [Mip4] RFC 3344 and draft-ietf-mip4-rfc3344bis-05.txtIANA Considerations
Next by Date: [Mip4] RE: [Dime] RE: Issue 3: Diameter MIP4 Application vs. RADIUS Architecture
Previous by thread: [Mip4] RE: Issue 3: Diameter MIP4 Application vs. RADIUS Architecture
Next by thread: [Mip4] RE: [Dime] RE: Issue 3: Diameter MIP4 Application vs. RADIUS Architecture
Index(es):
- Date
- Thread

[Mip4] RE: Issue 3: Diameter MIP4 Application vs. RADIUS Architecture

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.