ancp-2----Page:5
1 2 3 4 5 6 7 8 9 10
|
Overview and Threat Model +--------+ | AAA | | Server | +--------+ | | +-----+ +-----+ +--------+ +-----+ +----------+ | CPE |---| HGW |---| | | | | | +-----+ +-----+ | Access | | | | Internet | | Node |-----------------| NAS |---| | +-----+ +-----+ | (AN) | | | | | | CPE |---| HGW |---| | | | | | +-----+ +-----+ +--------+ +-----+ +----------+ Attackers can be either on-path or off-path : active or passive Threat Model: Off-path adversary at the CPE or HGW Off-path adversary on the Internet or a Regional Network On-path adversary at the network elements between the AN and the NAS Adversary taking control over the NAS Adversary taking control over the AN |