radius capabilities
play

RADIUS Capabilities A short presentation (with math) Alan DeKok - PowerPoint PPT Presentation

Jul 09, 2023 •165 likes •272 views

RADIUS Capabilities A short presentation (with math) Alan DeKok Infoblox, Inc. IETF 64 Capabilities presentation Goals Establish a common set of requirements for capabilities. Establish a common set of terminology for capabilities. Focus

  1. RADIUS Capabilities A short presentation (with math) Alan DeKok Infoblox, Inc. IETF 64

  2. Capabilities presentation Goals Establish a common set of requirements for capabilities. Establish a common set of terminology for capabilities. Focus on requirements, independent of representation and implementation. End up with requirements that can be manipulated symbolically. IETF 64 2 DeKok

  3. Capabilities presentation Requirements for RADIUS Capabilities are advertised in packets. No existing clients or servers send capabilities in a packet. Capability aware systems must be inter- operable with existing systems. Capabilities may traverse capability-unaware intermediaries. Multi-round capability negotiation is itself a capability that can be negotiated. IETF 64 3 DeKok

  4. Capabilities presentation Base Assumptions Client and server each have a set of individual capabilities: C = { c i } Goal is to agree on the intersection of capabilities: C Interoperable = C Client ∩ C Server Capabilities are further divided into mandatory and supported sets M and S : M I = M C ∩ M S S I = S C ∩ S S IETF 64 4 DeKok

  5. Capabilities presentation Compatibility Requirements Both client and server have C ⊇ { c RADIUS } i.e. capabilities include at least normal RADIUS. If no capabilities are in a packet, capability- aware systems must use M = S = { c RADIUS } This lets newer systems use the same capability algorithms for all conversations. IETF 64 5 DeKok

  6. Capabilities presentation Proposal for Negotiation Negotiation is one round of advertising. Client sends M c and S c to server. Server has it's own M S and S S . Server decides on M I and S I . If M I ≠ M S , the server rejects the request . Otherwise, it sends M I and S I to client. Further exchanges (if any) are based on mutually agreed upon capabilities. IETF 64 6 DeKok

  7. Capabilities presentation Additional Requirements Mandatory is subset of supported M ⊆ S This makes later analysis easier . Supported is subset of full capabilities S ⊆ C i e not all capabilities have to be advertised . . If M = S = { c RADIUS }, that information does not have to be advertised in a packet. IETF 64 7 DeKok

  8. Capabilities presentation Summary The requirements presented here try to satisfy all parties. Mathematical approach helps to minimize communication issues. Mathematical approach helps to simplify analysis, using standard tools (sets, intersection, etc). Mathematical approach may help to ensure correctness of design and implementation. IETF 64 8 DeKok

  9. Capabilities presentation Recommendations Establish WG opinion on assumptions and approach presented here. Work out differences with Emile's presentation. Continue with mathematical approach. Derive additional relationships. IETF 64 9 DeKok

  10. Capabilities presentation Additional notes Capabilities must be tied to a client-server relationship Client -> Proxy -> Server Server says: Who sent the capability? Client or Proxy? Client says: Who ACK'd the capability? Proxy or server? Client must advertise more than { c RADIUS }, otherwise it is indistinguishable from existing implementations. IETF 64 10 DeKok

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

is proportional to the radius Consider a circle and an arc of the same radius. Let the

is proportional to the radius Consider a circle and an arc of the same radius. Let the

D AY 132 S IMILARITY BETWEEN RADIUS AND LENGTH OF AN ARC I NTRODUCTION Similarity is a concept used to compare two quantities or entities that are proportional. We have used it in triangles and quadrilaterals to proof quite a number of

132 views • 11 slides
Bounded Radius Routing Perform bounded PRIM algorithm Under = 0, = 0.5, and =

Bounded Radius Routing Perform bounded PRIM algorithm Under = 0, = 0.5, and =

Bounded Radius Routing Perform bounded PRIM algorithm Under = 0, = 0.5, and = Compare radius and wirelength Radius = 12 for this net Practical Problems in VLSI Physical Design Bounded Radius Routing (1/16) BPRIM Under

542 views • 16 slides
N B-2 P.Q. BLOOMFIELD AVENUE B-2 R-1 R-1 D E 200' RADIUS V A U S N E Y P L SCALE

N B-2 P.Q. BLOOMFIELD AVENUE B-2 R-1 R-1 D E 200' RADIUS V A U S N E Y P L SCALE

HOPPER AVE 200' RADIUS R-1 R-1 PARALLEL ST HARRISON ST N B-2 P.Q. BLOOMFIELD AVENUE B-2 R-1 R-1 D E 200' RADIUS V A U S N E Y P L SCALE 1" = 80' AERIAL PHOTOGRAPHY W/ ZONING MAP REFERENCES: TAKEN FROM NJGIN

426 views • 3 slides
K. Ishida RIKEN Proton Radius Puzzle Zemach radius and hyperfine splitting p Plan of our

K. Ishida RIKEN Proton Radius Puzzle Zemach radius and hyperfine splitting p Plan of our

J-PARC Symposium 2019 Tsukuba, 25 Sep 2019 Laser spectroscopy of the 1s hyperfine splitting energy of muonic hydrogen for the determination of proton Zemach radius K. Ishida RIKEN Proton Radius Puzzle Zemach radius and hyperfine splitting

617 views • 27 slides
diameter, radius, discrete radius D : M M R distance function, S M , | S | <

diameter, radius, discrete radius D : M M R distance function, S M , | S | <

diameter, radius, discrete radius D : M M R distance function, S M , | S | < diam D ( S ) := max x , y S D ( x , y ) (diameter of S ) rad D ( S ) := min m M max x S D ( x , m ) (radius of S ) drad D ( S ) :=

352 views • 22 slides
Vacuum Part 2. It Still Sucks Calculating Conductance a is radius (ID) F o is for

Vacuum Part 2. It Still Sucks Calculating Conductance a is radius (ID) F o is for

Vacuum Part 2. It Still Sucks Calculating Conductance a is radius (ID) F o is for orifice, F t is for tube L/a is ratio of length/radius (ID) Divide by 2 for each right-angle bend Vacuum Materials Stainless type 304

514 views • 14 slides
NGN OAM Capabilities NGN OAM Capabilities Dinesh Mohan CTO S r. Advisor, Nortel I TU-T W

NGN OAM Capabilities NGN OAM Capabilities Dinesh Mohan CTO S r. Advisor, Nortel I TU-T W

I nternational Telecom m unication Union ITU-T NGN OAM Capabilities NGN OAM Capabilities Dinesh Mohan CTO S r. Advisor, Nortel I TU-T W orkshop NGN and its Transport Netw orks Kobe, 2 0 -2 1 April 2 0 0 6 NGN OAM Activities Update

777 views • 15 slides
Redirection Capabilities in SIP Redirection Capabilities in SIP

Redirection Capabilities in SIP Redirection Capabilities in SIP

Redirection Capabilities in SIP Redirection Capabilities in SIP draft-bharatia-sipping-redirect-00.txt Authors: J. Bharatia, S. Sen, R. Yuhanna, S. Orton, M. Watson Presenter: Mark Watson mwatson@nortelnetworks.com General Motivation SIP

478 views • 5 slides
Todays exercises 7.1: Covering Radius Example 7.2: Random Covering Code 7.3: Exact

Todays exercises 7.1: Covering Radius Example 7.2: Random Covering Code 7.3: Exact

Exercise Session 10 17.05.2016 slide 1 Todays exercises 7.1: Covering Radius Example 7.2: Random Covering Code 7.3: Exact Radius In Class: Exam Questions from SAT14 Hamming Balls and k -SAT Algorithms Chidambaram Annamalai

388 views • 9 slides
Financial Complexity Physical Capabilities Process Capabilities Other Issues

Financial Complexity Physical Capabilities Process Capabilities Other Issues

Financial Complexity Physical Capabilities Process Capabilities Other Issues Upfront Costs - Financing (PPAs, Tax Credits, ESCOs) Split Incentive Alternatives - Virtual Net Metering Where to start? Intelligent

640 views • 8 slides
h p . m o c . g n i l l e S e r P . w w w LOCATION 100 500 m radius h p

h p . m o c . g n i l l e S e r P . w w w LOCATION 100 500 m radius h p

h p . m o c . g n i l l e S e r P . w w w LOCATION 100 500 m radius h p . m o c . g n i l l e S e r P . w w w F O R S A L E S PRESENTATION AS OFJAN2018 This information is proprietary to

372 views • 25 slides
Thistle Capabilities AtBC What is Thistle? Why Thistle? Capabilities Commercial

Thistle Capabilities AtBC What is Thistle? Why Thistle? Capabilities Commercial

Thistle Capabilities AtBC What is Thistle? Why Thistle? Capabilities Commercial Capabilities Thistle Home Thistle is Market Ready Service Targets Benefits to AtBC Thistle Team & Workflow What is Thistle?

522 views • 12 slides
Shielding & Atomic Radius, Ions & Ionic Radius Chemistry AP Periodic Table Periodic

Shielding & Atomic Radius, Ions & Ionic Radius Chemistry AP Periodic Table Periodic

Shielding & Atomic Radius, Ions & Ionic Radius Chemistry AP Periodic Table Periodic Table Elements in same column have similar properties Column # (IA-VIIIA) gives # valence electrons All elements in column end in same ns x np y

354 views • 32 slides
Capabilities Capabilities Indexing and Publishing Indexing and Publishing Jason M. Coposky

Capabilities Capabilities Indexing and Publishing Indexing and Publishing Jason M. Coposky

Capabilities Capabilities Indexing and Publishing Indexing and Publishing Jason M. Coposky June 25-28, 2019 @jason_coposky iRODS User Group Meeting 2019 Executive Director, iRODS Consortium Utrecht, Netherlands 1 iRODS Capabilities

667 views • 23 slides
Circle Drawing Parametric equation radius R , center at origin is a parameter in [0..2) x

Circle Drawing Parametric equation radius R , center at origin is a parameter in [0..2) x

Circle Drawing Parametric equation radius R , center at origin is a parameter in [0..2) x = R*cos y = R*sin Algorithm based on the parametric equation: def drawCircleParam(radius, color): step = ??? for alpha in [0 : 2*M_PI] by

462 views • 16 slides
A hydrogen-filled TPC as an active target for a proton-radius measurement at CERN Oleg Kiselev

A hydrogen-filled TPC as an active target for a proton-radius measurement at CERN Oleg Kiselev

A hydrogen-filled TPC as an active target for a proton-radius measurement at CERN Oleg Kiselev GSI Darmstadt Imperial College London, 15.05.2019 GSI Helmholtzzentrum fr Schwerionenforschung GmbH Proton radius puzzle J. J. Krauth et al.,

707 views • 39 slides
The C++ Class What is a class ? Constructors & . . . January 4, 2016 Overload Operators

The C++ Class What is a class ? Constructors & . . . January 4, 2016 Overload Operators

The C++ Class What is a class ? Constructors & . . . January 4, 2016 Overload Operators Interface vs . . . Brian A. Malloy Naming Convention Makefiles Problems Template Classes Slide 1 of 35 Go Back Full

668 views • 35 slides
Deterministic Analyses of Optional Processes Jeffrey Heinz Rutgers University November 22, 2019

Deterministic Analyses of Optional Processes Jeffrey Heinz Rutgers University November 22, 2019

Deterministic Analyses of Optional Processes Jeffrey Heinz Rutgers University November 22, 2019 Rutgers U. | 2019/11/22 J. Heinz | 1 Part I What am I talking about? Rutgers U. | 2019/11/22 J. Heinz | 2 Deterministic transformations in

1.08k views • 68 slides
Krein - de Branges theory in spectral analysis Alexei Poltoratski Texas A&M October 23, 2013

Krein - de Branges theory in spectral analysis Alexei Poltoratski Texas A&M October 23, 2013

Krein - de Branges theory in spectral analysis Alexei Poltoratski Texas A&M October 23, 2013 Alexei Poltoratski (Texas A&M) Krein - de Branges theory in spectral analysis October 23, 2013 1 / 24 Kreins systems 0 1

499 views • 24 slides
Kat - the language of calculations Mikus Vanags Parameter declaration explicitly function(x)

Kat - the language of calculations Mikus Vanags Parameter declaration explicitly function(x)

Kat - the language of calculations Mikus Vanags Parameter declaration explicitly function(x) {return x;} Parameter declaration implicitly function() {return x;} Solution without redundant x syntactic code parts 2 Parameter order in Order

262 views • 10 slides
Protocol Analysis 17-654/17-764 Analysis of Software Artifacts Kevin Bierhoff Take-Aways

Protocol Analysis 17-654/17-764 Analysis of Software Artifacts Kevin Bierhoff Take-Aways

Protocol Analysis 17-654/17-764 Analysis of Software Artifacts Kevin Bierhoff Take-Aways Protocols define temporal ordering of events Can often be captured with state machines Protocol analysis needs to pay attention to

602 views • 33 slides
5.9 GHz Transportation Safety Band Testing Criticality of Spectrum Availability With No

5.9 GHz Transportation Safety Band Testing Criticality of Spectrum Availability With No

5.9 GHz Transportation Safety Band Testing Criticality of Spectrum Availability With No Interference The Safety Band allocation is critical for transportation safety supports the vision of advancing toward a fully connected and

318 views • 12 slides
Heuristic List Scheduler for Time-Triggered traffic in Time- Sensitive Networks Maryam Pahlevan,

Heuristic List Scheduler for Time-Triggered traffic in Time- Sensitive Networks Maryam Pahlevan,

Heuristic List Scheduler for Time-Triggered traffic in Time- Sensitive Networks Maryam Pahlevan, Nadra Tabassam and Roman Obermaisser University of Siegen Siegen, Germany Background- Time Sensitive Networking Standard Ethernet Provides

442 views • 16 slides
Predicting Fault Numbers via Testing Marc Roper Dept. Computer and Information Sciences

Predicting Fault Numbers via Testing Marc Roper Dept. Computer and Information Sciences

Predicting Fault Numbers via Testing Marc Roper Dept. Computer and Information Sciences University of Strathclyde Glasgow, U.K. Marc Roper Dept. Computer and Information Sciences University of Strathclyde Glasgow, U.K. Predicting Fault Numbers

269 views • 16 slides

More recommend