The commercialization of the Internet has led to a large variety of business models based on Internet technology. Therefore, the demand for standardized and efficient solutions in support of reliable, secure, open, and flexible remote and mobile service accesses has increased. Existing authentication, authorization, and accounting systems still consider dedicated cases, but lack a generic approach. More general AAA services can be built by extending existing mechanisms and protocols for access scenarios other than dialup or PPP connections. While this work is performed mainly by the IETF AAA Working Group, another approach proposed by the IRTF AAAArch Research Group is termed AAA Architecture. This article surveys the state of the art in AAA and develops a new generic policy-based approach, A/sup x/, for AAA services and beyond, considering flexible levels of various services in an Internet service model, ranging from connectivity to content services.
[1]
David Mitton,et al.
Authentication, Authorization, and Accounting: Protocol Evaluation
,
2001,
RFC.
[2]
Burkhard Stiller,et al.
A survey on AAA mechanisms, protocols, and architectures and a policy-based approach beyond: Ax
,
2001
.
[3]
Glen Zorn,et al.
DIAMETER Framework Document
,
2001
.
[4]
Allan C. Rubens,et al.
Remote Authentication Dial In User Service (RADIUS)
,
1997,
RFC.
[5]
Tatyana Ryutov,et al.
Representation and evaluation of security policies for distributed system services
,
2000,
Proceedings DARPA Information Survivability Conference and Exposition. DISCEX'00.
[6]
Leon Gommans,et al.
Generic AAA Architecture
,
2000,
RFC.
[7]
Jim Boyle,et al.
Accept-Ranges : bytes Content-Length : 55967 Connection : close Content-Type : text / plain Internet Draft
,
2012
.