DIAMETER

:''For the geometric term, see Diameter
'DIAMETER' is a computer networking protocol for AAA (Authentication, Authorization and Accounting). It is a successor to RADIUS.

Contents
Upgrade from RADIUS
Protocol description
Packet format
Commands
Attribute-Value Pairs (AVP)
State machines
Message flows
Applications
External links

Upgrade from RADIUS


The name is a pun on the RADIUS protocol, which is the predecessor (a diameter is twice the radius). Diameter is not directly backwards compatible, but provides an upgrade path for RADIUS. The main differences are :

★ it uses reliable transport protocols (TCP or SCTP, not UDP)

★ it can use network or transport level security (IPsec or TLS)

★ it has transition support for RADIUS

★ it has larger address space for AVPs (Attribute Value Pairs) and identifiers (32-bit instead of 8-bit)

★ it is a client-server protocol, with exception of supporting some server-initiated messages as well

★ both stateful and stateless models can be used

★ it has dynamic discovery of peers (using DNS SRV and NAPTR)

★ it has capability negotiation

★ it supports application layer acknowledgements, defines failover methods and state machines (RFC 3539)

★ it has error notification

★ it has better roaming support

★ it is more easily extended; new commands and attributes can be defined

★ it is aligned on 32 bit boundaries

★ it has basic support for user-sessions and accounting

Protocol description


The Diameter Base Protocol is defined by RFC 3588, and defines the minimum requirements for an AAA protocol. ''Diameter Applications'' can extend the base protocol, by adding new commands and/or attributes. An application is not a program, but a protocol based on Diameter. Diameter security is provided by IPSEC or TLS, both well-regarded protocols.
Packet format

DIAMETER_packet_format.png

Commands

Each command is assigned a command code, which is used for both requests and answers.
Command-NameAbbr.Code
Abort-Session-RequestASR274
Abort-Session-AnswerASA274
Accounting-RequestACR271
Accounting-AnswerACA271
Capabilities-Exchange-RequestCER257
Capabilities-Exchange-AnswerCEA257
Device-Watchdog-RequestDWR280
Device-Watchdog-AnswerDWA280
Disconnect-Peer-RequestDPR282
Disconnect-Peer-AnswerDPA282
Re-Auth-RequestRAR258
Re-Auth-AnswerRAA258
Session-Termination-RequestSTR275
Session-Termination-AnswerSTA275

Attribute-Value Pairs (AVP)

DIAMETER AVP Layout.png

Attribute-NameCodeData Type
Acct-Interim-Interval85Unsigned32
Accounting-Realtime-Required483Enumerated
Acct-Multi-Session-Id50UTF8String
Accounting-Record-Number485Unsigned32
Accounting-Record-Type480Enumerated
Accounting-Session-Id44OctetString
Accounting-Sub-Session-Id287Unsigned64
Acct-Application-Id259Unsigned32
Auth-Application-Id258Unsigned32
Auth-Request-Type274Enumerated
Authorization-Lifetime291Unsigned32
Auth-Grace-Period276Unsigned32
Auth-Session-State277Enumerated
Re-Auth-Request-Type285Enumerated
Class25OctetString
Destination-Host293DiamIdent
Destination-Realm283DiamIdent
Disconnect-Cause273Enumerated
E2E-Sequence300Grouped
Error-Message281UTF8String
Error-Reporting-Host294DiamIdent
Event-Timestamp55Time
Experimental-Result297Grouped
Experimental-Result-Code298Unsigned32
Failed-AVP279Grouped
Firmware-Revision267Unsigned32
Host-IP-Address257Address
Inband-Security-Id299Unsigned32
Multi-Round-Time-Out272Unsigned32
Origin-Host264DiamIdent
Origin-Realm296DiamIdent
Origin-State-Id278Unsigned32
Product-Name269UTF8String
Proxy-Host280DiamIdent
Proxy-Info284Grouped
Proxy-State33OctetString
Redirect-Host292DiamURI
Redirect-Host-Usage261Enumerated
Redirect-Max-Cache-Time262Unsigned32
Result-Code268Unsigned32
Route-Record282DiamIdent
Session-Id263UTF8String
Session-Timeout27Unsigned32
Session-Binding270Unsigned32
Session-Server-Failover271Enumerated
Supported-Vendor-Id265Unsigned32
Termination-Cause295Enumerated
User-Name1UTF8String
Vendor-Id266Unsigned32
Vendor-Specific-Application-Id260Grouped

State machines

Message flows

Applications


A ''Diameter Application'' is not a software application, but a protocol based on the DIAMETER Base protocol (defined in RFC 3588). Each application is defined by an application identifier and can add new command codes and/or new mandatory AVPs. Adding a new optional AVP does not require a new application.
Examples of Diameter applications :

★ Diameter Mobile IPv4 Application (MobileIP, RFC 4004)

★ Diameter Network Access Server Application (NASREQ, RFC 4005)

★ Diameter Extensible Authentication Protocol Application (RFC 4072)

Diameter Credit-Control Application (DCCA, RFC 4006)

★ Diameter Session Initiation Protocol Application (RFC 4740)

★ various applications in the 3GPP IP Multimedia Subsystem

★ 3GPP GBA (Generic Bootstrapping Architecture): Bootstrapping Server Function

External links



★ http://www.cisco.com/en/US/products/ps6638/products_data_sheet09186a00804fe332.html Cisco page outlining differences between RADIUS and DIAMETER

★ http://sourceforge.net/projects/openblox/ Open Source Java IMS optimised Full Diameter solution

This article provided by Wikipedia. To edit the contents of this article, click here for original source.

psst.. try this: add to faves
Featured Companies
Vacation By VVacation By V
DIAMETER Videos
Circles Radius Diameter & Pi Math Learning Upgrade
SOLAR PARABOLIC MIRROR SOLAR DISH 65" diameter 165cm
Circles: Radius, Diameter and Circumference
Microwaving a Jumbo Size 15" Diameter Plasma Globe
Watch Video on Radius, Chord, Diameter, and Secant
more DIAMETER videos →
Newest Companies
Vision 2000 Travel Group, VancouverVision 2000 Travel Group, Vancouver
Hotel Valley Ho (Cafe ZuZu, VH Spa)Hotel Valley Ho (Cafe ZuZu, VH Spa)
Scottsdale CVBScottsdale CVB
Interpro Travel Services Inc.Interpro Travel Services Inc.
traverse jamaicatraverse jamaica
Pelican Executive SuitesPelican Executive Suites
Travelonly - Dave CorlessTravelonly - Dave Corless
Time Out for Touring Inc.Time Out for Touring Inc.
Heavenly Paradise GetawaysHeavenly Paradise Getaways
Travelonly - Allan JenkinsTravelonly - Allan Jenkins
discover more →
©2009 TripAtlas.com