draft-ietf-pana-statemachine-02.txt   draft-ietf-pana-statemachine-03.txt 
PANA Working Group V. Fajardo PANA Working Group V. Fajardo
Internet-Draft Y. Ohba Internet-Draft Y. Ohba
Expires: April 21, 2006 TARI Expires: April 23, 2006 TARI
R. Lopez R. Lopez
Univ. of Murcia Univ. of Murcia
October 18, 2005 October 20, 2005
State Machines for Protocol for Carrying Authentication for Network State Machines for Protocol for Carrying Authentication for Network
Access (PANA) Access (PANA)
draft-ietf-pana-statemachine-02 draft-ietf-pana-statemachine-03
Status of this Memo Status of this Memo
By submitting this Internet-Draft, each author represents that any By submitting this Internet-Draft, each author represents that any
applicable patent or other IPR claims of which he or she is aware applicable patent or other IPR claims of which he or she is aware
have been or will be disclosed, and any of which he or she becomes have been or will be disclosed, and any of which he or she becomes
aware will be disclosed, in accordance with Section 6 of BCP 79. aware will be disclosed, in accordance with Section 6 of BCP 79.
Internet-Drafts are working documents of the Internet Engineering Internet-Drafts are working documents of the Internet Engineering
Task Force (IETF), its areas, and its working groups. Note that Task Force (IETF), its areas, and its working groups. Note that
skipping to change at page 1, line 37 skipping to change at page 1, line 37
and may be updated, replaced, or obsoleted by other documents at any and may be updated, replaced, or obsoleted by other documents at any
time. It is inappropriate to use Internet-Drafts as reference time. It is inappropriate to use Internet-Drafts as reference
material or to cite them other than as "work in progress." material or to cite them other than as "work in progress."
The list of current Internet-Drafts can be accessed at The list of current Internet-Drafts can be accessed at
http://www.ietf.org/ietf/1id-abstracts.txt. http://www.ietf.org/ietf/1id-abstracts.txt.
The list of Internet-Draft Shadow Directories can be accessed at The list of Internet-Draft Shadow Directories can be accessed at
http://www.ietf.org/shadow.html. http://www.ietf.org/shadow.html.
This Internet-Draft will expire on April 21, 2006. This Internet-Draft will expire on April 23, 2006.
Copyright Notice Copyright Notice
Copyright (C) The Internet Society (2005). Copyright (C) The Internet Society (2005).
Abstract Abstract
This document defines the conceptual state machines for the Protocol This document defines the conceptual state machines for the Protocol
for Carrying Authentication for Network Access (PANA). The state for Carrying Authentication for Network Access (PANA). The state
machines consist of the PANA Client (PaC) state machine and the PANA machines consist of the PANA Client (PaC) state machine and the PANA
skipping to change at page 2, line 50 skipping to change at page 2, line 50
Authenticator . . . . . . . . . . . . . . . . . . . . 31 Authenticator . . . . . . . . . . . . . . . . . . . . 31
7.1.3. Delivering EAP Messages from EAP Authenticator to 7.1.3. Delivering EAP Messages from EAP Authenticator to
PAA . . . . . . . . . . . . . . . . . . . . . . . . . 31 PAA . . . . . . . . . . . . . . . . . . . . . . . . . 31
7.1.4. EAP Authentication Result Notification from EAP 7.1.4. EAP Authentication Result Notification from EAP
Authenticator to PAA . . . . . . . . . . . . . . . . . 31 Authenticator to PAA . . . . . . . . . . . . . . . . . 31
7.2. Variables . . . . . . . . . . . . . . . . . . . . . . . . 32 7.2. Variables . . . . . . . . . . . . . . . . . . . . . . . . 32
7.3. Procedures . . . . . . . . . . . . . . . . . . . . . . . . 34 7.3. Procedures . . . . . . . . . . . . . . . . . . . . . . . . 34
7.4. PAA State Transition Table . . . . . . . . . . . . . . . . 34 7.4. PAA State Transition Table . . . . . . . . . . . . . . . . 34
8. Mobility Optimization Support . . . . . . . . . . . . . . . . 49 8. Mobility Optimization Support . . . . . . . . . . . . . . . . 49
8.1. Common Variables . . . . . . . . . . . . . . . . . . . . . 49 8.1. Common Variables . . . . . . . . . . . . . . . . . . . . . 49
8.2. PaC Mobility Optimization State Machine . . . . . . . . . 49 8.2. PaC Mobility Optimization State Machine . . . . . . . . . 50
8.2.1. Variables . . . . . . . . . . . . . . . . . . . . . . 49 8.2.1. Variables . . . . . . . . . . . . . . . . . . . . . . 50
8.2.2. Procedures . . . . . . . . . . . . . . . . . . . . . . 50 8.2.2. Procedures . . . . . . . . . . . . . . . . . . . . . . 50
8.2.3. PaC Mobility Optimization State Transition Table 8.2.3. PaC Mobility Optimization State Transition Table
Addendum . . . . . . . . . . . . . . . . . . . . . . . 50 Addendum . . . . . . . . . . . . . . . . . . . . . . . 50
8.3. PAA Mobility Optimization . . . . . . . . . . . . . . . . 53 8.3. PAA Mobility Optimization . . . . . . . . . . . . . . . . 53
8.3.1. Procedures . . . . . . . . . . . . . . . . . . . . . . 53 8.3.1. Procedures . . . . . . . . . . . . . . . . . . . . . . 53
8.3.2. PAA Mobility Optimization State Transition Table 8.3.2. PAA Mobility Optimization State Transition Table
Addendum . . . . . . . . . . . . . . . . . . . . . . . 53 Addendum . . . . . . . . . . . . . . . . . . . . . . . 53
9. Implementation Considerations . . . . . . . . . . . . . . . . 55 9. Implementation Considerations . . . . . . . . . . . . . . . . 55
9.1. PAA and PaC Interface to Service Management Entity . . . . 55 9.1. PAA and PaC Interface to Service Management Entity . . . . 55
9.2. Multicast Traffic . . . . . . . . . . . . . . . . . . . . 55 9.2. Multicast Traffic . . . . . . . . . . . . . . . . . . . . 55
skipping to change at page 35, line 9 skipping to change at page 35, line 9
7.4. PAA State Transition Table 7.4. PAA State Transition Table
------------------------------ ------------------------------
State: OFFLINE (Initial State) State: OFFLINE (Initial State)
------------------------------ ------------------------------
Initialization Action: Initialization Action:
USE_COOKIE=Set|Unset; USE_COOKIE=Set|Unset;
EAP_PIGGYBACK=Set|Unset; EAP_PIGGYBACK=Set|Unset;
SEPARATE=Set|Unset; SEPARATE=Set|Unset;
if (USE_COOKIE==Unset && EAP_PIGGYBACK==Set) if (EAP_PIGGYBACK==Set)
SEPARATE=Unset; SEPARATE=Unset;
1ST_EAP=Unset; 1ST_EAP=Unset;
ABORT_ON_1ST_EAP_FAILURE=Set|Unset; ABORT_ON_1ST_EAP_FAILURE=Set|Unset;
CARRY_LIFETIME=Set|Unset; CARRY_LIFETIME=Set|Unset;
CARRY_DEVICE_ID=Set|Unset; CARRY_DEVICE_ID=Set|Unset;
CARRY_NAP_INFO=Set|Unset; CARRY_NAP_INFO=Set|Unset;
CARRY_ISP_INFO=Set|Unset; CARRY_ISP_INFO=Set|Unset;
CARRY_PPAC=Set|Unset; CARRY_PPAC=Set|Unset;
PROTECTION_CAP_IN_PSR=Set|Unset; PROTECTION_CAP_IN_PSR=Set|Unset;
PROTECTION_CAP_IN_PBR=Set|Unset; PROTECTION_CAP_IN_PBR=Set|Unset;
skipping to change at page 49, line 16 skipping to change at page 49, line 16
The state machines outlined in preceeding sections provide only PANA The state machines outlined in preceeding sections provide only PANA
base protocol functionality. In order to support PANA mobility base protocol functionality. In order to support PANA mobility
optimization outlined in [I-D.ietf-pana-mobopts], additions and optimization outlined in [I-D.ietf-pana-mobopts], additions and
changes to the PaC and PAA state machines is required. The additions changes to the PaC and PAA state machines is required. The additions
and changes provides only basic mobility optimization and is not and changes provides only basic mobility optimization and is not
explicit on integration of other mobility functionality such as explicit on integration of other mobility functionality such as
context-transfer mechanisms. However, it does provide enough context-transfer mechanisms. However, it does provide enough
flexibility to accomodate future inclusion of such mechanisms. flexibility to accomodate future inclusion of such mechanisms.
The model depicted by [I-D.ietf-pana-mobopts] generally involves the
PaC changing its point of attachment during an active PANA session.
Mobility optimization is achieved by avoiding a full EAP
authentication sequence during this change. To support this, state
transitions described in this section assume that the PaC state
machine reverts to the OFFLINE state but maintains the session
information including security association from the previous active
session. It is also assumed that the PAA state machine initializes
to the OFFLINE state as normal but must also have access to session
information and security association from the previous active
session. A method of how a PAA session context is transferred can be
found in [I-D.bournelle-pana-ctp].
The variables, procedures and state transition described in this The variables, procedures and state transition described in this
section is designed to be seamlessly integrated into the appropriate section is designed to be seamlessly integrated into the appropriate
base protocol state machines. They should be treated as a mobility base protocol state machines. They should be treated as a mobility
optimization addendum to the base protocol state machine. In this optimization addendum to the base protocol state machine. In this
addendum, no additional states has been defined but some addendum, no additional states has been defined but some
modifications to the base protocol state machine is required. The modifications to the base protocol state machine is required. The
modifications are to accomodate the mobility variables and procedures modifications are to accomodate the mobility variables and procedures
as they relate to existing state transition actions and events. as they relate to existing state transition actions and events.
These modifications to existing state transition are noted in state These modifications to existing state transition are noted in state
transition tables in this section. These modified state transitions transition tables in this section. These modified state transitions
skipping to change at page 53, line 4 skipping to change at page 53, line 14
!eap_piggyback() 1ST_EAP=Unset; !eap_piggyback() 1ST_EAP=Unset;
PANA_SA_RESUMED=Unset; PANA_SA_RESUMED=Unset;
EAP_RespTimerStart(); EAP_RespTimerStart();
TxEAP(); TxEAP();
if (key_available()) if (key_available())
PAN.insert_avp("MAC"); PAN.insert_avp("MAC");
PAN.S_flag=PAR.S_flag; PAN.S_flag=PAR.S_flag;
PAN.N_flag=PAR.N_flag; PAN.N_flag=PAR.N_flag;
Tx:PAN(); Tx:PAN();
SessionTimerStop(); SessionTimerStop();
Rx:PAR && SEPARATE=Set|Unset; WAIT_EAP_MSG Rx:PAR && SEPARATE=Set|Unset; WAIT_EAP_MSG
eap_piggyback() 1ST_EAP=Unset; eap_piggyback() 1ST_EAP=Unset;
PANA_SA_RESUMED=Unset; PANA_SA_RESUMED=Unset;
EAP_RespTimerStart(); EAP_RespTimerStart();
TxEAP(); TxEAP();
SessionTimerStop(); SessionTimerStop();
------------------------+--------------------------+------------
- - - - - - - - (PSR processing with mobility support)- - - - -
- The following state transitions are intended to be added -
- to the OPEN state of the PaC base protocol state machine -
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Rx:PSR && RtxTimerStop(); WAIT_PAA
!PSR.exist_avp PSA.insert_avp
("EAP-Payload") && ("Session-Id");
MOBILITY==Set && SEPARATE=Unset;
resume_pana_sa() && PANA_SA_RESUMED=Set;
PSR.exist_avp PSA.insert_avp("Cookie");
("Cookie") PSA.insert_avp("MAC");
Tx:PSA();
RtxTimerStart();
Rx:PSR && RtxTimerStop(); WAIT_PAA
!PSR.exist_avp PSA.insert_avp
("EAP-Payload") && ("Session-Id");
MOBILITY==Set && PSA.insert_avp("MAC");
resume_pana_sa() && Tx:PSA();
!PSR.exist_avp PANA_SA_RESUMED=Set;
("Cookie")
8.3. PAA Mobility Optimization 8.3. PAA Mobility Optimization
8.3.1. Procedures 8.3.1. Procedures
boolean retrieve_pana_sa(Session-Id) boolean retrieve_pana_sa(Session-Id)
This procedure returns TRUE when a PANA SA for the PANA Session This procedure returns TRUE when a PANA SA for the PANA Session
corresponds to the specified Session-Id has been retrieved, corresponds to the specified Session-Id has been retrieved,
otherwise returns FALSE. otherwise returns FALSE.
skipping to change at page 60, line 5 skipping to change at page 59, line 36
13.2. Informative References 13.2. Informative References
[RFC4058] Yegin, A., Ohba, Y., Penno, R., Tsirtsis, G., and C. Wang, [RFC4058] Yegin, A., Ohba, Y., Penno, R., Tsirtsis, G., and C. Wang,
"Protocol for Carrying Authentication for Network Access "Protocol for Carrying Authentication for Network Access
(PANA) Requirements", RFC 4058, May 2005. (PANA) Requirements", RFC 4058, May 2005.
[I-D.ietf-pana-snmp] [I-D.ietf-pana-snmp]
Mghazli, Y., "SNMP usage for PAA-EP interface", Mghazli, Y., "SNMP usage for PAA-EP interface",
draft-ietf-pana-snmp-04 (work in progress), July 2005. draft-ietf-pana-snmp-04 (work in progress), July 2005.
[I-D.bournelle-pana-ctp]
Bournelle, J., "Use of Context Transfer Protocol (CxTP)
for PANA", draft-bournelle-pana-ctp-03 (work in progress),
June 2005.
Authors' Addresses Authors' Addresses
Victor Fajardo Victor Fajardo
Toshiba America Research, Inc. Toshiba America Research, Inc.
1 Telcordia Drive 1 Telcordia Drive
Piscataway, NJ 08854 Piscataway, NJ 08854
USA USA
Phone: +1 732 699 5368 Phone: +1 732 699 5368
Email: vfajardo@tari.toshiba.com Email: vfajardo@tari.toshiba.com
 End of changes. 10 change blocks. 
30 lines changed or deleted 26 lines changed or added

This html diff was produced by rfcdiff 1.27, available from http://www.levkowetz.com/ietf/tools/rfcdiff/