![Page 1: TELEFÓNICA I+D Date: 23rd September 2008 Proposal for a Convergent Authentication and Authorisation Infrastructure in NGN © 2008 Telefónica Investigación](https://reader034.vdocuments.us/reader034/viewer/2022051517/5665b4671a28abb57c913cef/html5/thumbnails/1.jpg)
TELEFÓNICA I+DDate: 23rd September 2008
Proposal for a Convergent Authentication andAuthorisation Infrastructure in NGN
© 2008 Telefónica Investigación y Desarrollo, S.A. Unipersonal
![Page 2: TELEFÓNICA I+D Date: 23rd September 2008 Proposal for a Convergent Authentication and Authorisation Infrastructure in NGN © 2008 Telefónica Investigación](https://reader034.vdocuments.us/reader034/viewer/2022051517/5665b4671a28abb57c913cef/html5/thumbnails/2.jpg)
2TELEFÓNICA I+D
© 2008 Telefónica Investigación y Desarrollo, S.A. Unipersonal
MotivationsWhy?
Current fixed platforms require complex user-provisioning processes.
Simplify process and reduce OPEX!!!
User identity is attached to the physical access line.
Enable nomadic services!!!
Mobile and fixed networks have different authentication mechanisms.
Design a convergent Platform!!!
PPP does not support multicast IPTV traffic.
Native support of Triple-Play and Advanced Services!!!
01
![Page 3: TELEFÓNICA I+D Date: 23rd September 2008 Proposal for a Convergent Authentication and Authorisation Infrastructure in NGN © 2008 Telefónica Investigación](https://reader034.vdocuments.us/reader034/viewer/2022051517/5665b4671a28abb57c913cef/html5/thumbnails/3.jpg)
3TELEFÓNICA I+D
© 2008 Telefónica Investigación y Desarrollo, S.A. Unipersonal
EAP/SIM-AKA over 802.1XEAP/SIM-AKA over 802.1Xauthentication platformauthentication platform
Design decisions02
Req. 1: Access LineIndependent User-Identity
Req. 2: Fixed-MobileConvergence
Req. 3: Well-defined andwidely deployed Protocols
Req. 4: Enable Triple-Play Services
![Page 4: TELEFÓNICA I+D Date: 23rd September 2008 Proposal for a Convergent Authentication and Authorisation Infrastructure in NGN © 2008 Telefónica Investigación](https://reader034.vdocuments.us/reader034/viewer/2022051517/5665b4671a28abb57c913cef/html5/thumbnails/4.jpg)
4TELEFÓNICA I+D
© 2008 Telefónica Investigación y Desarrollo, S.A. Unipersonal
System architecture03
![Page 5: TELEFÓNICA I+D Date: 23rd September 2008 Proposal for a Convergent Authentication and Authorisation Infrastructure in NGN © 2008 Telefónica Investigación](https://reader034.vdocuments.us/reader034/viewer/2022051517/5665b4671a28abb57c913cef/html5/thumbnails/5.jpg)
5TELEFÓNICA I+D
© 2008 Telefónica Investigación y Desarrollo, S.A. Unipersonal
04
Procedures Authentication procedure
![Page 6: TELEFÓNICA I+D Date: 23rd September 2008 Proposal for a Convergent Authentication and Authorisation Infrastructure in NGN © 2008 Telefónica Investigación](https://reader034.vdocuments.us/reader034/viewer/2022051517/5665b4671a28abb57c913cef/html5/thumbnails/6.jpg)
6TELEFÓNICA I+D
© 2008 Telefónica Investigación y Desarrollo, S.A. Unipersonal
04
Procedures Authentication procedure
![Page 7: TELEFÓNICA I+D Date: 23rd September 2008 Proposal for a Convergent Authentication and Authorisation Infrastructure in NGN © 2008 Telefónica Investigación](https://reader034.vdocuments.us/reader034/viewer/2022051517/5665b4671a28abb57c913cef/html5/thumbnails/7.jpg)
7TELEFÓNICA I+D
© 2008 Telefónica Investigación y Desarrollo, S.A. Unipersonal
04
Procedures Authentication procedure
![Page 8: TELEFÓNICA I+D Date: 23rd September 2008 Proposal for a Convergent Authentication and Authorisation Infrastructure in NGN © 2008 Telefónica Investigación](https://reader034.vdocuments.us/reader034/viewer/2022051517/5665b4671a28abb57c913cef/html5/thumbnails/8.jpg)
8TELEFÓNICA I+D
© 2008 Telefónica Investigación y Desarrollo, S.A. Unipersonal
04
Procedures Authentication procedure
![Page 9: TELEFÓNICA I+D Date: 23rd September 2008 Proposal for a Convergent Authentication and Authorisation Infrastructure in NGN © 2008 Telefónica Investigación](https://reader034.vdocuments.us/reader034/viewer/2022051517/5665b4671a28abb57c913cef/html5/thumbnails/9.jpg)
9TELEFÓNICA I+D
© 2008 Telefónica Investigación y Desarrollo, S.A. Unipersonal
04
Procedures Authentication procedure
![Page 10: TELEFÓNICA I+D Date: 23rd September 2008 Proposal for a Convergent Authentication and Authorisation Infrastructure in NGN © 2008 Telefónica Investigación](https://reader034.vdocuments.us/reader034/viewer/2022051517/5665b4671a28abb57c913cef/html5/thumbnails/10.jpg)
10TELEFÓNICA I+D
© 2008 Telefónica Investigación y Desarrollo, S.A. Unipersonal
04
Procedures Authentication procedure
![Page 11: TELEFÓNICA I+D Date: 23rd September 2008 Proposal for a Convergent Authentication and Authorisation Infrastructure in NGN © 2008 Telefónica Investigación](https://reader034.vdocuments.us/reader034/viewer/2022051517/5665b4671a28abb57c913cef/html5/thumbnails/11.jpg)
11TELEFÓNICA I+D
© 2008 Telefónica Investigación y Desarrollo, S.A. Unipersonal
ConclusionsPros and Cons
Home Gateway hardware becomes more complex (Smart Card reader)
Convergent QoS Architecture and user location retrieval is not full defined yet.
05 Unified fixed and mobile authentication
platforms (TISPAN & 3GPP).
Zero-provisioning systems.
Advanced services for residential users: nomadism
![Page 12: TELEFÓNICA I+D Date: 23rd September 2008 Proposal for a Convergent Authentication and Authorisation Infrastructure in NGN © 2008 Telefónica Investigación](https://reader034.vdocuments.us/reader034/viewer/2022051517/5665b4671a28abb57c913cef/html5/thumbnails/12.jpg)
12TELEFÓNICA I+D
© 2008 Telefónica Investigación y Desarrollo, S.A. Unipersonal
Contact Information
Telefónica I+D (website: www.tid.es)
Broadband Services Platforms and Architectures Department
Joaquín López Rizaldos ([email protected])
Alejandro Fandiño Orgeira ([email protected])
Alejandro García Henderson ([email protected])
Jose Manuel Palacios Valverde ([email protected])
Francisco Rodríguez García ([email protected])
Francisco González Vidal ([email protected])
![Page 13: TELEFÓNICA I+D Date: 23rd September 2008 Proposal for a Convergent Authentication and Authorisation Infrastructure in NGN © 2008 Telefónica Investigación](https://reader034.vdocuments.us/reader034/viewer/2022051517/5665b4671a28abb57c913cef/html5/thumbnails/13.jpg)
![Page 14: TELEFÓNICA I+D Date: 23rd September 2008 Proposal for a Convergent Authentication and Authorisation Infrastructure in NGN © 2008 Telefónica Investigación](https://reader034.vdocuments.us/reader034/viewer/2022051517/5665b4671a28abb57c913cef/html5/thumbnails/14.jpg)
14TELEFÓNICA I+D
© 2008 Telefónica Investigación y Desarrollo, S.A. Unipersonal
A Backup Material Procedures I: Initial user attachment
![Page 15: TELEFÓNICA I+D Date: 23rd September 2008 Proposal for a Convergent Authentication and Authorisation Infrastructure in NGN © 2008 Telefónica Investigación](https://reader034.vdocuments.us/reader034/viewer/2022051517/5665b4671a28abb57c913cef/html5/thumbnails/15.jpg)
15TELEFÓNICA I+D
© 2008 Telefónica Investigación y Desarrollo, S.A. Unipersonal
A Backup Material Procedures II: Fast re-authentication
![Page 16: TELEFÓNICA I+D Date: 23rd September 2008 Proposal for a Convergent Authentication and Authorisation Infrastructure in NGN © 2008 Telefónica Investigación](https://reader034.vdocuments.us/reader034/viewer/2022051517/5665b4671a28abb57c913cef/html5/thumbnails/16.jpg)
16TELEFÓNICA I+D
© 2008 Telefónica Investigación y Desarrollo, S.A. Unipersonal
A Backup Material Procedures III: Full re-authentication
![Page 17: TELEFÓNICA I+D Date: 23rd September 2008 Proposal for a Convergent Authentication and Authorisation Infrastructure in NGN © 2008 Telefónica Investigación](https://reader034.vdocuments.us/reader034/viewer/2022051517/5665b4671a28abb57c913cef/html5/thumbnails/17.jpg)
17TELEFÓNICA I+D
© 2008 Telefónica Investigación y Desarrollo, S.A. Unipersonal
A Backup Material Procedures IV: User disconnection