+(1st+Slide).jpg)
The 3GPP AAA reference points used by the different non-3GPP (trusted or non-trusted) IP accesses included in EPS; it will also cover H2 reference point defined in I-WLAN mobility
AAA Enhanced Function - PDN GW's associated AAA Server
- The PDN Gateway may interact with a AAA server over the SGi interface.
- AAA Server could be a RADIUS or Diameter Server in an external PDN network, as defined in TS 29.061.
- This AAA Server is logically separate from the HSS and the 3GPP AAA Server
Reference Points and Interfaces:
· STa - between a trusted non-3GPP IP access and the 3GPP AAA Server/Proxy.
· SWa - between an un-trusted non-3GPP IP access and the 3GPP AAA Server/Proxy.
· SWm - between the 3GPP AAA Server/Proxy and the ePDG.
· SWd - between the 3GPP AAA Proxy and 3GPP AAA Server.
· SWx - between the 3GPP AAA Server and the HSS.
· S6b - between the 3GPP AAA Server/Proxy and the PDN GW.
· H2 - between the 3GPP AAA Server and the HA.
Further information refers to
https://docs.google.com/fileview?id=F.2b2e34f1-c856-4859-b57e-f4cab5002c57&hl=en
· SWx - between the 3GPP AAA Server and the HSS.
· S6b - between the 3GPP AAA Server/Proxy and the PDN GW.
· H2 - between the 3GPP AAA Server and the HA.
1). STa : trusted non-3GPP IP access --- 3GPP AAA Server/Proxy
- It connects the Trusted non-3GPP IP Access with the 3GPP AAA Proxy (or Proxy/Server). and transports access authentication, authorization, mobility parameters and charging-related information in a secure manner. The STa reference point shall be used to authenticate and authorize the UE.
§- The STa reference point may also be used to transport PMIPv6, MIPv4 FA-CoA mode related mobility parameters in a case the UE attaches to the EPC using the S2a reference point.
§Additionally the STa reference point may also be used to transport DSMIPv6 related mobility parameters in case the UE attaches to the EPC using the S2c reference point. In particular, in this case the STa reference point may be used for conveying the Home Agent IP address or FQDN from the AAA server to the gateway of the trusted non-3GPP access for Home Agent discovery based on DHCPv6.
2). SWa : un-trusted non-3GPP IP access --- 3GPP AAA Server/Proxy
- It connects the Untrusted non-3GPP IP Access with the 3GPP AAA Proxy (or Proxy/Server). and transports access authentication, authorization and charging-related information in a secure manner.
- The SWa reference point is optionally used to authenticate and authorize the UE for the access to the EPS. It is up to the non-3GPP operator’s policy.
3). SWm: 3GPP AAA Server/Proxy --- ePDG
- This reference point is located between 3GPP AAA Proxy (or Proxy/Server) and ePDG and is used for AAA signaling (transport of mobility parameters, tunnel authentication and authorization data).
§- The SWm reference point shall be used to authenticate and authorize the UE.
§- The SWm reference point is also used to transport PMIPv6 related mobility parameters in a case the UE attaches to the EPC via the S2b and SWn reference points (i.e. IP Mobility Mode Selection information).
§- Additionally the SWm reference point may also be used to transport DSMIPv6 related mobility parameters in case the UE attaches to the EPC using the S2c reference point.
§In particular, in this case the SWm reference point may be used for conveying the Home Agent IP address or FQDN from the AAA server to the ePDG for Home Agent discovery based on IKEv2
4). SWd : 3GPP AAA Proxy --- 3GPP AAA Server.
- It connects the 3GPP AAA Proxy, possibly via intermediate networks, to the 3GPP AAA Server.
§The functionality of the SWd reference point is to transport AAA messages similar to those provided with the following exceptions:
§* Carrying charging signalling per user;
§* Carrying keying data for the purpose of radio interface integrity protection and encryption;
§* Carrying authentication data for the purpose of tunnel establishment, tunnel data authentication and encryption, for the case in which the ePDG is in the VPLMN;
§* Carrying mapping of a user identifier and a tunnel identifier sent from the ePDG to the 3GPP AAA Proxy through the 3GPP AAA Server;
§* Used for purging a user from the access network for immediate service termination;
§* Enabling the identification of the operator networks amongst which the roaming occurs;
§* Providing access scope limitation information to the access network based on the authorised services for each user (for example, IP address filters);
§* If QoS mechanisms are applied: carrying data for AN QoS capabilities/policies (e.g. the supported 3GPP QoS profiles) within authentication request from 3GPP AAA Proxy to 3GPP AAA Server
5). SWx : 3GPP AAA Server and the HSS
- This reference point is located between 3GPP AAA Server and HSS and is used for transport of authentication, subscription and PDN connection related data.
§- The SWx reference point is used to authorize the UE and to transport PMIPv6 related mobility parameters in the chained tunnel cases.
§- The SWx is used to authenticate and authorize the UE when the S2a, S2b or S2c reference points are used to connect to EPC. This reference point is also used to update the HSS with the PDN-GW address information.
6). S6b : 3GPP AAA Server. --- PDN-GW
- The S6b reference point is defined between the 3GPP AAA Server and the PDN-GW. The definition of the reference point and its functionality is given in 3GPP TS 23.402.
§- When the UE attaches to the EPC using the S2c reference point, the S6b reference point is used to authenticate and authorize the UE, and update the PDN-GW address to the 3GPP AAA server and HSS.
§- When the UE attaches to the EPC using the S2a reference point in the PMIPv6 mode, the S6b reference point is used to update the 3GPP AAA server or the 3GPP AAA proxy with the PDN-GW address information. Furthermore, this reference point may be used to retrieve and update other mobility related parameters including static QoS profiles for non-3GPP accesses.
§- The S6b reference point is also used to authenticate and authorize the incoming MIPv4 Registration Request in the case the UE attaches to the EPC over the S2a reference point using MIPv4 FACoA procedures.
§- The S6b reference point is used by the 3GPP AAA Server in the case the UE attaches to the EPC using the S2c reference point to indicate to the PDN GW that a PDN GW reallocation shall be performed. This indication triggers the actual Home Agent reallocation procedure as specified in 3GPP TS 24.303.
- The S6b reference point is also used to download subscriber and equipment trace information to the PDN GW.
7). H2 : 3GPP AAA Server --- HA
§- The H2 should be a subset of S6b.
§- This reference point defines the interface between HA and 3GPP AAA infrastructure (3GPP AAA server or 3GPP AAA proxy) and is used to transport authentication, authorization and charging-related information in a secure manner.
https://docs.google.com/fileview?id=F.2b2e34f1-c856-4859-b57e-f4cab5002c57&hl=en
沒有留言:
張貼留言