[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: QoS attributes

To: <rrroy@att.com>, <jari.arkko@piuha.net>, <Madjid.Nakhjiri@motorola.com>
Subject: RE: QoS attributes
From: <john.loughney@nokia.com>
Date: Wed, 7 Jan 2004 13:32:07 +0200
Cc: <avi@bridgewatersystems.com>, <radiusext@ops.ietf.org>

Hi Radhika,

> As long as authentication, authorization, and accounting for 
> any services (e.g., VoIP services/SIP, QoS services, any 
> other resources) of a given call are concerned, it is in the 
> domain of the AAA protocol.

Agreed.
 
> However, services or calls are usually reside in the 
> application layer, and we should restrict ourselves to remain 
> in that layer as per standards. In the same token, calls 
> (e.g., opening of a transport channel) can be in the 
> transport layer (e.g., IPSec, TLS) as well .

Well, one can think of an AAA server used as a subscriber 
database.  The AAA server needs to check if a user is
authorized for a particular server.
 
> Now, there are some dependency. For example, if 
> authentication/authorization services are provided for the 
> SIP/VoIP services, it means it should also deal with QoS 
> resources in the SIP layer if the AAA server wants to do 
> something specific to QoS (e.g., use of specific codecs or 
> applications - this ,in turn, will lead to detail QoS 
> parameters for each media) of that SIP call.
> 
> If the authentication is provided for a user for the 
> transport layer (e.g., IPSec, TLS) only, we can deal with the 
> IP/Transport layer QOS resources (e.g., RSVP, DiffServe) 
> authorization. If we stop here for the Transport layer call, 
> as I understand from your email, I think that we are OK.

I don't think that IPSec or TLS can do service level authorization,
so wrt QoS, I don't think IPSec or TLS is enough.

> If a SIP user is authentication, it will also mean how to 
> authorize the use of resources like codecs (e.g., audio, 
> video) and applications (e.g., white board, data sharing). If 
> we stop here for the SIP call, as I understand from your 
> email, I think that we are OK.

OK.
 
> From AAA server point of view, the QoS attributes MUST be 
> generic enough, like authentication/authorization, to satisfy 
> all the needs for all types (e.g., application, transport) of 
> calls (e.g., SIP, IPSec/TLS). This is our challenge in 
> creating the common QoS attributes standard for the AAA server.

Agreed.

To add.  Suppose I want to have a video call to you, using SIP.
I have a 3G mobile phone & you are using a laptop with WLAN.  
We may use SIP to initiate the call & codecs, however my operator may 
want to use some sort of AAA protocol (RADIUS / Diameter) to see if
I am allowed to use such a service and your ISP may want to 
check to see that you are allowed to use a certain amount of
bandwidth.  COPS may be used interally within the operator/ISP
network for traffic management, etc.  Use of preconditions with
SIP may ensure that we have sufficient QoS service for the call.
However, one thing is missing, there is no end-to-end mechanism
to ensure we are using similar QoS settings for the call.   My 
bandwidth might be 128k while yours might be 2M.  

John


--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

Prev by Date: RE: QoS attributes
Next by Date: Re: QoS attributes
Previous by thread: Potential work items
Next by thread: RE: QoS attributes
Index(es):
- Date
- Thread