NationMaster - Encyclopedia: Diameter

FACTOID # 77: Moldova has one of the smallest artillery forces in Europe, and the highest rate in the world of death by powered lawnmower. Coincidence? Surely not.

Interesting mortality facts »

Home

Encyclopedia

WHAT'S NEW

RELATED ARTICLES

People who viewed "Diameter" also viewed:

RECENT ARTICLES

More Recent Articles »

SEARCH ALL

FACTS & STATISTICS Advanced view

Search encyclopedia, statistics and forums:

(* = Graphable)

Encyclopedia > Diameter

DIAMETER is a computer networking protocol for AAA (Authentication, Authorization and Accounting). It is a successor to RADIUS. In computer security, AAA stands for â€œauthentication, authorization and accountingâ€. Authentication Authentication refers to the confirmation that a user who is requesting services is a valid user of the network services requested. ... Remote Authentication Dial In User Service (RADIUS) is an AAA (authentication, authorization and accounting) protocol for applications such as network access or IP mobility. ...

1 Upgrade from RADIUS
2 Protocol description
3 Applications
4 External links

Upgrade from RADIUS

The name is a pun on the RADIUS protocol, which is the predecessor (a diameter is twice the radius). Diameter is not directly backwards compatible, but provides an upgrade path for RADIUS. The main differences are : Remote Authentication Dial In User Service (RADIUS) is an AAA (authentication, authorization and accounting) protocol for applications such as network access or IP mobility. ... This article or section does not cite its references or sources. ...

it uses reliable transport protocols (TCP or SCTP, not UDP)
it can use network or transport level security (IPsec or TLS)
it has transition support for RADIUS
it has larger address space for AVPs (Attribute Value Pairs) and identifiers (32-bit instead of 8-bit)
it is a client-server protocol, with exception of supporting some server-initiated messages as well
both stateful and stateless models can be used
it has dynamic discovery of peers (using DNS SRV and NAPTR)
it has capability negotiation
it supports application layer acknowledgements, defines failover methods and state machines (RFC 3539)
it has error notification
it has better roaming support
it is more easily extended; new commands and attributes can be defined
it is aligned on 32 bit boundaries
it has basic support for user-sessions and accounting

The Transmission Control Protocol (TCP) is one of the core protocols of the Internet protocol suite. ... In the field of computer networking, the IETF Signaling Transport (SIGTRAN) working group defined the Stream Control Transmission Protocol (SCTP) as a transport layer protocol in 2000. ... User Datagram Protocol (UDP) is one of the core protocols of the Internet protocol suite. ... IPsec (IP security) is a suite of protocols for securing Internet Protocol (IP) communications by authenticating and/or encrypting each IP packet in a data stream. ... Transport Layer Security (TLS) and its predecessor, Secure Sockets Layer (SSL), are cryptographic protocols that provide secure communications on the Internet for such things as web browsing, e-mail, Internet faxing, instant messaging and other data transfers. ... Remote Authentication Dial In User Service (RADIUS) is an AAA (authentication, authorization and accounting) protocol for applications such as network access or IP mobility. ... Client/Server is a network application architecture which separates the client (usually the graphical user interface) from the server. ... It has been suggested that this article be split into multiple articles. ... An SRV record or Service record is a category of data in the Internet Domain Name System specifying information on available services. ... NAPTR stands for Naming Authority Pointer and is a newer type of DNS record that supports regular expression based rewriting. ... Roaming is a general term in wireless telecommunications that refers to the extending of connectivity service in a location that is different from the home location where the service was registered. ...

Protocol description

The Diameter Base Protocol is defined by RFC 3588, and defines the minimum requirements for an AAA protocol. Diameter Applications can extend the base protocol, by adding new commands and/or attributes. An application is not a program, but a protocol based on Diameter. Diameter security is provided by IPSEC or TLS, both well-regarded protocols. IPsec (IP security) is a suite of protocols for securing Internet Protocol (IP) communications by authenticating and/or encrypting each IP packet in a data stream. ... Transport Layer Security (TLS) and its predecessor, Secure Sockets Layer (SSL), are cryptographic protocols that provide secure communications on the Internet for such things as web browsing, e-mail, Internet faxing, instant messaging and other data transfers. ...

Packet format

Image:DIAMETER_packet_format.png Image File history File links No higher resolution available. ...

Commands

Each command is assigned a command code, which is used for both requests and answers.

Command-Name	Abbr.	Code
Abort-Session-Request	ASR	274
Abort-Session-Answer	ASA	274
Accounting-Request	ACR	271
Accounting-Answer	ACA	271
Capabilities-Exchange-Request	CER	257
Capabilities-Exchange-Answer	CEA	257
Device-Watchdog-Request	DWR	280
Device-Watchdog-Answer	DWA	280
Disconnect-Peer-Request	DPR	282
Disconnect-Peer-Answer	DPA	282
Re-Auth-Request	RAR	258
Re-Auth-Answer	RAA	258
Session-Termination-Request	STR	275
Session-Termination-Answer	STA	275

Attribute-Value Pairs (AVP)

Image:DIAMETER AVP Layout.png Image File history File links No higher resolution available. ...

Attribute-Name	Code	Data Type
Acct-Interim-Interval	85	Unsigned32
Accounting-Realtime-Required	483	Enumerated
Acct-Multi-Session-Id	50	UTF8String
Accounting-Record-Number	485	Unsigned32
Accounting-Record-Type	480	Enumerated
Accounting-Session-Id	44	OctetString
Accounting-Sub-Session-Id	287	Unsigned64
Acct-Application-Id	259	Unsigned32
Auth-Application-Id	258	Unsigned32
Auth-Request-Type	274	Enumerated
Authorization-Lifetime	291	Unsigned32
Auth-Grace-Period	276	Unsigned32
Auth-Session-State	277	Enumerated
Re-Auth-Request-Type	285	Enumerated
Class	25	OctetString
Destination-Host	293	DiamIdent
Destination-Realm	283	DiamIdent
Disconnect-Cause	273	Enumerated
E2E-Sequence	300	Grouped
Error-Message	281	UTF8String
Error-Reporting-Host	294	DiamIdent
Event-Timestamp	55	Time
Experimental-Result	297	Grouped
Experimental-Result-Code	298	Unsigned32
Failed-AVP	279	Grouped
Firmware-Revision	267	Unsigned32
Host-IP-Address	257	Address
Inband-Security-Id	299	Unsigned32
Multi-Round-Time-Out	272	Unsigned32
Origin-Host	264	DiamIdent
Origin-Realm	296	DiamIdent
Origin-State-Id	278	Unsigned32
Product-Name	269	UTF8String
Proxy-Host	280	DiamIdent
Proxy-Info	284	Grouped
Proxy-State	33	OctetString
Redirect-Host	292	DiamURI
Redirect-Host-Usage	261	Enumerated
Redirect-Max-Cache-Time	262	Unsigned32
Result-Code	268	Unsigned32
Route-Record	282	DiamIdent
Session-Id	263	UTF8String
Session-Timeout	27	Unsigned32
Session-Binding	270	Unsigned32
Session-Server-Failover	271	Enumerated
Supported-Vendor-Id	265	Unsigned32
Termination-Cause	295	Enumerated
User-Name	1	UTF8String
Vendor-Id	266	Unsigned32
Vendor-Specific-Application-Id	260	Grouped

State machines

Message flows

Applications

A Diameter Application is not a software application, but a protocol based on the DIAMETER Base protocol (defined in RFC 3588). Each application is defined by an application identifier and can add new command codes and/or new mandatory AVPs. Adding a new optional AVP does not require a new application. This article does not cite any references or sources. ...

Examples of Diameter applications :

Diameter Mobile IPv4 Application (MobileIP, RFC 4004)
Diameter Network Access Server Application (NASREQ, RFC 4005)
Diameter Extensible Authentication Protocol Application (RFC 4072)
Diameter Credit-Control Application (DCCA, RFC 4006)
Diameter Session Initiation Protocol Application (RFC 4740)
various applications in the 3GPP IP Multimedia Subsystem
3GPP GBA (Generic Bootstrapping Architecture): Bootstrapping Server Function

Diameter Credit-Control Application, DCCA in short, is a DIAMETER application used for credit control. ... The IP Multimedia Subsystem (IMS) is an architectural framework for delivering internet protocol (IP) multimedia to mobile users. ... BSF Positioning A Bootstrapping Server Function (BSF) is an element in the Cellular network which delivers functions to authenticate user equipment for additional services as Mobile TV and others. ...

External links

http://www.cisco.com/en/US/products/ps6638/products_data_sheet09186a00804fe332.html Cisco page outlining differences between RADIUS and DIAMETER
http://sourceforge.net/projects/openblox/ Open Source Java IMS optimised Full Diameter solution

Categories: Articles with sections needing expansion | Authentication methods | Internet protocols | Internet standards | Software stubs

Results from FactBites:

Circumference (530 words)
	is the ratio of the circumference of a circle to the diameter.
	The diameter of a circle is 3 centimeters.
	The diameter of a nickel is 2 centimeters.

PlanetMath: diameter (83 words)
	The diameter of a circle or a sphere is the length of the segment joining a point with the one symmetrical respect to the center.
	The diameter is equal to twice the radius.
	This is version 17 of diameter, born on 2002-02-15, modified 2002-02-23.

More results at FactBites »

COMMENTARY

Share your thoughts, questions and commentary here

Want to know more?
Search encyclopedia, statistics and forums:

Feeds | Contact
The Wikipedia article included on this page is licensed under the GFDL.
Images may be subject to relevant owners' copyright.
All other elements are (c) copyright NationMaster.com 2003-5. All Rights Reserved.
Usage implies agreement with terms, 1022, m

Contents

Upgrade from RADIUS GA_googleFillSlot("encyclopedia_square");