Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN...
-
date post
21-Dec-2015 -
Category
Documents
-
view
226 -
download
3
Transcript of Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN...
![Page 1: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/1.jpg)
presented by Hasan SÖZER 1
PUBLIC ACCESS MOBILITY LAN:EXTENDING THE WIRELESS INTERNET INTO THELAN ENVIRONMENT
JUN LISTEPHEN B.WEINSTEIN
JUNBIAO ZHANGNAN TU
NEC USA INC.
![Page 2: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/2.jpg)
presented by Hasan SÖZER 2
Outline Introduction PamLAN Architecture & Protocol
Components Security Issues Mobility Management Conclusion
![Page 3: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/3.jpg)
presented by Hasan SÖZER 3
Introduction Aim is to meet
Ubiquitous access High data rate Local services
Need for Wireless LAN environments
![Page 4: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/4.jpg)
presented by Hasan SÖZER 4
Introduction (cont’d) Architectural guidelines for WLAN
environments Large-scale IP-based Supporting mobile/portable
appliances
![Page 5: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/5.jpg)
presented by Hasan SÖZER 5
Introduction (cont’d) IP-level service
Independence from wireless medium access technology
Multi-segment LAN Supporting handoffs
Based on wired LAN environment Wireless access points are imbeded
![Page 6: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/6.jpg)
presented by Hasan SÖZER 6
Introduction (cont’d) Recent developments in
Cellular systems Wireless LAN technologies
Most WLANs are Either private (i.e. For companies) Or available through subscription
![Page 7: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/7.jpg)
presented by Hasan SÖZER 7
PamLAN IP-based Public Access Mobility LAN Supports Internet Access via WLANs
Multiple air interfaces Multiple virtual operators Location dependent services Local IP mobility QoS (within wired network)
![Page 8: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/8.jpg)
presented by Hasan SÖZER 8
PamLAN Stakeholders:
Network operators Hotel, airport, ...
Third-party service providers (like ISPs)
Franchises obtained from PamLAN operator
Also called: virtual operators End users
![Page 9: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/9.jpg)
presented by Hasan SÖZER 9
PamLAN May have multiple LAN segments
Airports, hotels, universities, ... Can be built on existing LANs
By adding wireless access points
![Page 10: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/10.jpg)
presented by Hasan SÖZER 10
PamLAN vs. Cellular Systems Even 3G mobile communication
systems would not be sufficient for evolving Internet applications 384 kb/s outdoors, 2 Mb/s indoors
downstream burst rates Intrinsic problem: providing continuous
coverage in reserved spectrum Investment/Capacity scalability???
![Page 11: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/11.jpg)
presented by Hasan SÖZER 11
PamLAN vs. Cellular Systems WLANs have free spectrum Problem: Potential interfarence
i.e. IEEE 802.11b & Bluetooth Property owners may be agreed or
enforced on compatibility
![Page 12: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/12.jpg)
presented by Hasan SÖZER 12
Promises of PamLAN Addresses problems in current WLANs
Lack of public access Being tied down to a single access point Single air interface
Not a breakthrough in technological capacities
Combination of available technologies
![Page 13: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/13.jpg)
presented by Hasan SÖZER 13
PamLAN : Usage of WLAN WLANs
Has cost/performance advantages when compared with cellular mobile systems
Likely to be the prefered technology in future for Internet appliance communication sessions
![Page 14: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/14.jpg)
presented by Hasan SÖZER 14
Architecture PamLAN/VOLAN/VLAN hierarchy
PamLAN: multiple virtual operators VOLAN: Virtual Operator LAN
Extends VLAN capabilities across subnetworks
VLAN: Virtual LAN Implements user group feaures Simulates a physical LAN on a
multisegment LAN environment
![Page 15: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/15.jpg)
presented by Hasan SÖZER 15
Architecture (cont’d) Switched Ethernet LAN Access Points
Supporting IEEE, Bluetooth, Cellular, ...
IP-based access router with proxies Gateway routers
Internet access through IP-tunneling
![Page 16: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/16.jpg)
presented by Hasan SÖZER 16
Architecture (cont’d)
![Page 17: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/17.jpg)
presented by Hasan SÖZER 17
Architecture (cont’d) QoS is supported by Ethernet Switches
CSMA/CD + full duplex (no contention) Integration of Cellular IP & Mobile IP for
supporting mobility MPLS (Multi-Protocol Label Switching)
Brings QoS across multiple LAN segments
![Page 18: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/18.jpg)
presented by Hasan SÖZER 18
Related Protocols & Standards IEEE VLAN standard 802.1Q
12 bit VLAN ID imbedded within 4 byte section of Ethernet header determines membership
IEEE 802.1p header for QoS 3 bit section in IEEE 802.1Q header
that differentiate 8 frame priorities
![Page 19: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/19.jpg)
presented by Hasan SÖZER 19
Large Scale PamLAN For single VLAN QoS can be easily
supported For large scale WLANs?
Intermediate routers work at layer 3 Layer 2 information is lost
Source & destination addresses must be used for VOLAN membership
Intermediate routers must know all IP addresses for VLAN mapping
![Page 20: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/20.jpg)
presented by Hasan SÖZER 20
Large Scale PamLAN (cont’d) Solution: MPLS
Simple & efficient Access points & Internet gateways
handle VOLAN provisioning Intermediate routers are shielded
from details VLAN for grouping traffic per
VOLAN MPLS for whole PamLAN
![Page 21: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/21.jpg)
presented by Hasan SÖZER 21
MPLS (Multi-Protocol Label Switching) Tunnels traffic between gateways &
access points Intermediate routers only examine MPLS
labels, which imposes a path Forwarding Equivalence Class (FEC)
Formed based on VOLAN membership & QoS
FEC is inserted in MPLS label Used for 802.1p priority within VLAN
![Page 22: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/22.jpg)
presented by Hasan SÖZER 22
MPLS (cont’d)
![Page 23: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/23.jpg)
presented by Hasan SÖZER 23
MPLS (cont’d) Traffic engineered paths can be set
up among access points and Internet gateways according to service contracts between PamLan & virtual operators
![Page 24: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/24.jpg)
presented by Hasan SÖZER 24
Protocol Stack
![Page 25: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/25.jpg)
presented by Hasan SÖZER 25
Security Issues Mutual Authentication Secure Channel Establishement Authorization
Filtering at the access point
![Page 26: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/26.jpg)
presented by Hasan SÖZER 26
Mutual Authentication RADIUS (Remote Authentication Dial-
In User Service) IP-based authentication (~802.11
proposal) 5 Basic Steps:
Obtaining IP (DHCP) Login session
access point: relay agent to virtual operator Challenge-responce protocol for authentication PKC for securing channel
![Page 27: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/27.jpg)
presented by Hasan SÖZER 27
Mutual Authentication (cont’d)
![Page 28: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/28.jpg)
presented by Hasan SÖZER 28
Securing Channel After authentication
User’s profile is transfered to the access point including his/her public key
Access point sends session key encrypted under the corresponding public key
IPSEC together with ESP can be used for security at IP layer depending on user requests
![Page 29: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/29.jpg)
presented by Hasan SÖZER 29
Authorization Control Based on user credentials, packets
can be filtered at the access point
![Page 30: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/30.jpg)
presented by Hasan SÖZER 30
Accounting 3 possible charging policies
Flat-fee based Per-session Usage based
Avoidance dispute by digital signature
![Page 31: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/31.jpg)
presented by Hasan SÖZER 31
Mobility Issues Mobility should be supported at
layer 3 Multiple subnetworks within PamLAN
Micromobility Roaming within PamLAN
![Page 32: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/32.jpg)
presented by Hasan SÖZER 32
Mobility Issues (cont’d) Possible approaches
Cellular IP: refreshing router contents can be a burden for too many users
MPLS based: only end points have to update location
Old, new access points and Internet gateway need to be informed
![Page 33: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/33.jpg)
presented by Hasan SÖZER 33
Mobility Issues (cont’d) Fast handoff
No repetative authentication Move user profile from old access
point to the new one Access point re-establishes
connection with virtual operator Access point sends old session key
and new session key encrypted under user’s public key
![Page 34: Presented by Hasan SÖZER1 PUBLIC ACCESS MOBILITY LAN: EXTENDING THE WIRELESS INTERNET INTO THE LAN ENVIRONMENT JUN LI STEPHEN B.WEINSTEIN JUNBIAO ZHANG.](https://reader035.fdocuments.us/reader035/viewer/2022062216/56649d545503460f94a319e6/html5/thumbnails/34.jpg)
presented by Hasan SÖZER 34
Conclusion Sequre Extensible Multiple services Multiple air interfaces
? Are all appliances capable of handling PKC opreations