Diameter is an authentication, authorization, and accounting protocol for computer networks. The Diameter base protocol is defined by RFC ( Obsoletes: RFC ) and .. RFC , Diameter Network Access Server Application. RFC (part 1 of 4): Diameter Network Access Server Application. Diameter Network Access Server Application (NASREQ, RFC ). • Diameter Base Accounting (RFC ). • Diameter Extensible Authentication Protocol.

Author: Kigasar Tojazahn
Country: Maldives
Language: English (Spanish)
Genre: Spiritual
Published (Last): 16 December 2015
Pages: 366
PDF File Size: 2.65 Mb
ePub File Size: 12.58 Mb
ISBN: 489-4-41932-606-2
Downloads: 27223
Price: Free* [*Free Regsitration Required]
Uploader: Zoloshura

Diameter Session Reauthentication or Reauthorization. Other useful information describing the “Quality” of the document:. Additionally, the following terms and acronyms are used in this application: Depending on the Auth-Request-Type AVP, the Diameter protocol allows authorization-only requests that contain no authentication information from the client.

RFC – Diameter Network Access Server Application

This is achieved by including the RADIUS attribute space to eliminate the need to perform many attribute translations. The name is a play on words, derived from the RADIUS protocol, which is the predecessor a diameter is twice the radius.

Standards Track Cisco Systems Inc. When combined with the Diameter Base protocol, Transport Profile, and Extensible Authentication Protocol specifications, this application specification satisfies typical network access services requirements.

Adding a new optional AVP does not require a new diametwr. The Diameter protocol requires that relaying and proxying agents maintain transaction state, which is used for failover purposes.


It is set when resending requests not yet acknowledged as an indication of a possible duplicate due to a link failure. Diameter Network Access Server Application.

Received answers that do not match a known Hop-by-Hop Identifier are ignored by the Diameter agent. It is possible for tfc single session to be authorized first and then for an authentication request to follow. Retrieved from ” https: You can help by adding to it. This capability goes beyond the Call Check capabilities described in section 5.

Diameter Diamefer Termination When a NAS receives an indication that a user’s session is being disconnected by the client e.

ITU-T A.5 reference justification

The End-to-End Identifier is not modified by Diameter agents of any kind, and the same value in the corresponding request is used in the answer. When set the AVP Code belongs to the specific eiameter code address space. The server will respond with an AAA message to specify the new service parameters.

If an AVP with the ” M ” bit set is received by a Diameter client, server, diametre, or translation agent and either the AVP or its value is unrecognized, the message must be rejected. The RFC defines an authorization and an accounting state machine. If cleared, the message is an answer. Distribution of this memo is unlimited.


ITU-T work programme

Retrieved 12 October Other for any supplementary information:. The authorization AVPs are further broken down by service type. Current information, if any, about IPR issues: Clear description of the referenced document: Diameter is an authentication, diajeter, and accounting protocol for computer networks.

References within the referenced RFCs are listed under item 8.

VPN Virtual Private Network – In this document, this term ddiameter used to describe access services that use tunneling methods. After that the transport connection can be disconnected. Clear description of the referenced document:.

Diameter (protocol)

This page was last edited on 19 Octoberat The ” T ” Potentially re-transmitted message bit — This flag is set after a link failover procedure, to aid the removal of duplicate requests. The Hop-by-Hop Identifier is an unsigned bit integer field in network byte order that is used to match the requests with their answers as the same value in the request is used in the response.

It is not clear whether these translations can be accomplished without adding significant security rcc.