AAA refers to Authentication (to prove identity), Authorization (to give permission) and Accounting (to log an audit trail).
It is a framework used to control and track access within a computer network.
Common network protocols providing this functionality include TACACS+, RADIUS,[1] and Diameter.[2][3]
In some cases, the term AAA has been used to refer to protocol-specific information. For example, Diameter uses the URI scheme AAA, which stands for Authentication, Authorization and Accounting, and the Diameter-based Protocol AAAS, which stands for Authentication, Authorization and Accounting with Secure Transport.[4] These protocols were defined by the Internet Engineering Task Force in RFC 6733 and are intended to provide an Authentication, Authorization, and Accounting (AAA) framework for applications, such as network access or IP mobility in both local and roaming situations.[5]
While the term AAA has been used in such a narrow context, the concept of AAA is more widely used within the industry. As a result, it is incorrect to refer to AAA and Diameter as being one and the same.
AAA servers in CDMA data networks are entities that provide Internet Protocol (IP) functionality to support the functions of authentication, authorization and accounting. The AAA server in the CDMA wireless data network architecture is similar to the HLR in the CDMA wireless voice network architecture.
Types of AAA servers include the following:
Current AAA servers communicate using the RADIUS protocol. As such, TIA specifications refer to AAA servers as RADIUS servers. However, future AAA servers are expected to use a successor protocol to RADIUS known as Diameter.[citation needed]
The behavior of AAA servers (radius servers) in the CDMA2000 wireless IP network is specified in TIA-835.
Original source: https://en.wikipedia.org/wiki/AAA (computer security).
Read more |