RFC 3588:Diameter Base Protocol
RFC-Ref

1 - 2 - 3 - 6 - 7 - 8 - A - B - C - D - E - F - G - H - I - K - L - M - N - O - P - Q - R - S - T - U - V - W

RADIUS

Click on the red underlined text to get to the source

1. Introduction
... TACACS [TACACS] and RADIUS [RADIUS] were initially deployed to provide dial-up ...
... While [RFC3162prop] defines the use of IPsec with RADIUS, support for IPsec is not required. Since within [IKE ...
... Reliable transport RADIUS runs over UDP, and does not define retransmission behavior; ...
... Server-initiated messages While RADIUS server-initiated messages are defined in [DYNAUTH], support is optional. This makes it difficult to implement ...
... Auditability RADIUS does not define data-object security mechanisms, and as a result, untrusted proxies ...
... protocol data unit (PDU) with RADIUS, considerable effort has been expended in enabling backward compatibility with RADIUS ...
... RADIUS, considerable effort has been expended in enabling backward compatibility with RADIUS, so that the two protocols may be deployed in the same network. Initially, it is expected that ...
... network devices, as well as within gateways enabling communication between legacy RADIUS devices and Diameter agents ...
... networks, by addition of a gateway or server speaking both RADIUS and Diameter. ...
... Capability negotiation RADIUS does not support error messages, capability negotiation, or ...
... error messages, capability negotiation, or a mandatory/non-mandatory flag for attributes. Since RADIUS clients and servers are not aware of each other's capabilities, they may not be able to successfully negotiate a mutually acceptable service ...
... Peer discovery and configuration RADIUS implementations typically require that the name or address of servers or clients ...
... administrative burden, and creates the temptation to reuse the RADIUS shared secret, which can result in major security vulnerabilities if the Request Authenticator ...
... NAI) [NAI], and documented existing implementations (and imitations) of RADIUS-based roaming [PROXYCHAIN ...
... server, facilitating roaming between providers. However, since RADIUS does not provide explicit support for proxies, and lacks auditability and transmission-level security features ...
... proxies, and lacks auditability and transmission-level security features, RADIUS- based roaming is vulnerable to attack ...
... substantially. As a result, while Diameter is a considerably more sophisticated protocol than RADIUS, it remains feasible to implement within embedded devices, given improvements in processor ...
... servers that need to perform protocol conversion between Diameter and RADIUS. In summary, this document defines the base protocol ...
... domain, to determine whether messages can be satisfied locally, or whether they must be routed or redirected. In RADIUS, realm names are not necessarily piggybacked on the DNS namespace but may be independent of it. ...
... Diameter and another AAA protocol, such as RADIUS. Transport Connection ...


2. Protocol Overview
... - Protocol translation (e.g., RADIUS <-> Diameter) ...
... A translation agent is a device that provides translation between two protocols (e.g., RADIUS<->Diameter, TACACS+<->Diameter ...
... +------+ ---------> +------+ ---------> +------+ | | RADIUS Request | | Diameter Request | | | NAS ...
... | NAS | | TLA | | HMS | | | RADIUS Answer | | Diameter Answer | | +------+ <--------- +------+ <--------- +------+ ...
... example.net example.net example.com Figure 4: Translation of RADIUS to Diameter ...


4. Diameter AVPs
... AVP numbers 1 through 255 are reserved for backward compatibility with RADIUS, without setting the Vendor-Id field. AVP ...


8. Diameter User Sessions
... whether a user is to be authenticated only, authorized only or both. Note any value other than both MAY cause RADIUS interoperability issues. The following values are defined: ...


9. Accounting
... AVP Code 44) is of type OctetString is only used when RADIUS/Diameter translation occurs. This AVP contains the ...
... Diameter translation occurs. This AVP contains the contents of the RADIUS Acct-Session-Id attribute. ...


11. IANA Considerations
... AVP Code 0 is not used. AVP Codes 1-255 are managed separately as RADIUS Attribute Types [RADTYPE]. This document defines the AVP Codes 257-274, 276-285, 287, 291-300, 480, 483 and 485-486. See ...
... namespace is used to identify Diameter commands. The values 0-255 are reserved for RADIUS backward compatibility, and are defined as "RADIUS Packet ...
... RADIUS backward compatibility, and are defined as "RADIUS Packet Type Codes" in [RADTYPE]. Values 256- 16,777,213 are for permanent, standard commands, allocated by IETF ...


14. References
... IANA, "RADIUS Types", http://www.iana.org/assignments/radius-types ...
... Chiba, M., Dommety, G., Eklund, M., Mitton, D. and B. Aboba, "Dynamic Authorization Extensions to Remote Authentication Dial In User Service (RADIUS)", RFC 3576, July 2003. ...
... Rigney, C., "RADIUS Accounting", RFC 2866, June 2000. ...
... Rigney, C., Willats, W. and P. Calhoun, "RADIUS Extensions", RFC 2869, June 2000. ...
... Rigney, C., Willens, S., Rubens, A. and W. Simpson, "Remote Authentication Dial In User Service (RADIUS)", RFC 2865draft, June 2000. ...


18. Appendix C. Duplicate Detection
... rebooted. - Duplicates received from RADIUS gateways. Since the retransmission ...
... gateways. Since the retransmission behavior of RADIUS is not defined within [RADIUS], the likelihood of duplication will vary according to the ...

1 - 2 - 3 - 6 - 7 - 8 - A - B - C - D - E - F - G - H - I - K - L - M - N - O - P - Q - R - S - T - U - V - W

Google
Web
RFC-Ref
RFC-Ref.org
Frontpage
Global Index
RFC
Sister Sites
Chess-Ref.org
Law-Ref.org
InChI.info
Zvon.org