Professional Documents
Culture Documents
file:///D:/Dropbox/3G-PRODUCT BROUCHER/AAA/AAA_protocol.htm
AAA protocol
From Wikipedia, the free encyclopedia
In computer security, AAA commonly stands for authentication, authorization and accounting.
Contents
1 Authentication 2 Authorization 3 Accounting 4 List of AAA Protocols 5 Usage of AAA servers in CDMA data networks 6 References 7 External links
Authentication
Authentication refers to the process where an entity's identity is authenticated, typically by providing evidence that it holds a specific digital identity such as an identifier and the corresponding credentials. Examples of types of credentials are passwords, one-time tokens, digital certificates, and phone numbers (calling/called).
Authorization
The authorization function determines whether a particular entity is authorized to perform a given activity, typically inherited from authentication when logging on to an application or service. Authorization may be determined based on a range of restrictions, for example time-of-day restrictions, or physical location restrictions, or restrictions against multiple access by the same entity or user. Typical authorization in everyday computer life is for example granting read access to a specific file for authenticated user. Examples of types of service include, but are not limited to: IP address filtering, address assignment, route assignment, quality of Service/differential services, bandwidth control/traffic management, compulsory tunneling to a specific endpoint, and encryption.
Accounting
Accounting refers to the tracking of network resource consumption by users for the purpose of capacity and trend analysis, cost allocation, billing.[1] In addition, it may record events such as authentication and authorization failures, and include auditing functionality, which permits verifying the correctness of procedures carried out based on accounting data. Real-time accounting refers to accounting information that is delivered concurrently with the consumption of the resources. Batch accounting refers to accounting information that is saved until it is delivered at a later time. Typical information that is gathered in accounting is the identity of the user or other entity, the nature of the service delivered, when the service began, and when it ended, and if there is a status to report.
file:///D:/Dropbox/3G-PRODUCT BROUCHER/AAA/AAA_protocol.htm
References
1. ^ Bernard Aboba, Jari Arkko, David Harrington, "Introduction to Accounting Management", RFC 2975, IETF, Oct. 2000.
External links
The webpage of the Authentication, Authorization and Accounting IETF working group (http://tools.ietf.org/wg/aaa/) Retrieved from "http://en.wikipedia.org/wiki/AAA_protocol" Categories: Code division multiple access | Computer security procedures This page was last modified on 25 August 2011 at 11:04. Text is available under the Creative Commons Attribution-ShareAlike License; additional terms may apply. See Terms of use for details.
2 of 3
01/11/2011 23:58
file:///D:/Dropbox/3G-PRODUCT BROUCHER/AAA/AAA_protocol.htm
3 of 3
01/11/2011 23:58