Inter-domain Authentication and Authorization Mechanisms for Roaming SIP Users

Dorgham Sisalem, Jiri Kuthan

Abstract

To enable users to utilize the services of various providers of multimedia services based on the session initiation protocol (SIP), some kind of interaction is required between the foreign provider and the home provider of the users. Such interaction is required for example to allow a user to utilize services provided by a foreign service provider while the user is on travel. In this paper we describe two possible approaches for exchanging authentication, authorization and accounting (AAA) information between foreign and home providers, namely: SIP dependent and independent inter-domain AAA communication. In the SIP dependent scenario, SIP is used as the communication protocol between the interacting providers and for carrying any information that needs to be exchanged between the providers. With the SIP independent scenario a special AAA protocol is used between the domains for exchanging AAA related information. Both approaches will be described in terms of message sequences that would be exchanged and will be analyzed in terms of their efficiency, flexibility and security. The here described scenarios present an overview of various efforts currently being followed in the standardization groups and are based on standardized protocols. Our contribution is to provide the details of the currently discussed concepts and compare between them.

References

  1. J. Rosenberg, H. Schulzrinne, G. Camarillo, A. Johnston, J. Peterson, R. Spark, M. Handley, E. Schooler, “Session Initiation Protocol”, RFC3261
  2. 3GPP Technical Specification 3GPP TS 33.102 V3.6.0: "Technical Specification Group Services and System Aspects; 3G Security; Security Architecture (Release 1999)", 3rd Generation Partnership Project, November 2000
  3. Pat R. Calhoun, et al.; ”Diameter Base Protocol”, RFC 3358, September 2003
  4. Rigney, C., Willens, S., Rubens, A. and W. Simpson, "Remote Authentication Dial In User Service (RADIUS)", RFC 2865, June 2000.
  5. H. Schulzrinne, “Dynamic Host Configuration Protocol (DHCP-for-IPv4) Option for Session Initiation Protocol (SIP) Servers” RFC 3361, August 2002
  6. D. Willis, B. Hoeneisen, “Session Initiation Protocol (SIP) Extension Header Field for Service Route Discovery During Registration “, RFC 3608, October 2003
  7. 3GPP Technical Specification 3GPP TS 24.228 " Technical Specification Group Core Network; Signalling flows for the IP multimedia call control based on SIP and SDP", 3GPP, 2003
  8. J. Vollbrecht, P. Calhoun, S. Farrell, L. Gommans, G. Gross, B. de Bruijn, C. de Laat, M. Holdrege, D. Spence: AAA Authorization Framework; IETF, RFC 2904, August 2000.
  9. J. Vollbrecht, P. Calhoun, S. Farrell, L. Gommans, G. Gross, B. de Bruijn, C. de Laat, M. Holdrege, D. Spence: AAA Authorization Application Examples; IETF, RFC 2905, August 2000.
Download


Paper Citation


in Harvard Style

Sisalem D. and Kuthan J. (2004). Inter-domain Authentication and Authorization Mechanisms for Roaming SIP Users . In Proceedings of the 3rd International Workshop on Wireless Information Systems - Volume 1: WIS, (ICEIS 2004) ISBN 972-8865-02-3, pages 89-99. DOI: 10.5220/0002668300890099


in Bibtex Style

@conference{wis04,
author={Dorgham Sisalem and Jiri Kuthan},
title={Inter-domain Authentication and Authorization Mechanisms for Roaming SIP Users},
booktitle={Proceedings of the 3rd International Workshop on Wireless Information Systems - Volume 1: WIS, (ICEIS 2004)},
year={2004},
pages={89-99},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002668300890099},
isbn={972-8865-02-3},
}


in EndNote Style

TY - CONF
JO - Proceedings of the 3rd International Workshop on Wireless Information Systems - Volume 1: WIS, (ICEIS 2004)
TI - Inter-domain Authentication and Authorization Mechanisms for Roaming SIP Users
SN - 972-8865-02-3
AU - Sisalem D.
AU - Kuthan J.
PY - 2004
SP - 89
EP - 99
DO - 10.5220/0002668300890099