Cisco Cisco Prime Access Registrar 6.0 白書
© 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information.
Page 1 of 20
White Paper
Service Provider Wi-Fi Networks:
Scaling Signaling Transactions
Scaling Signaling Transactions
Summary
Wi-Fi adoption is in the midst of a transition, from being viewed purely as an extension of the fixed broadband
business toward becoming a core capability that is being integrated into end-to-end service provider networks,
delivering data connectivity that can complement conventional cellular data access. The recently introduced Wi-Fi
Alliance (WFA) Wi-Fi CERTIFIED Passpoint certification program (hereafter referred to as Passpoint) enables
smartphone devices to make use of smart card credentials to authenticate themselves to service provider Wi-Fi
networks, addressing one of the key barriers to adoption of Wi-Fi by service providers - ease of use. The use of
Extensible Authentication Protocol for GSM Subscriber Identity Module (EAP-SIM) and EAP for UMTS
Authentication and Key Agreement (EAP-AKA) is seen as an important step in improving the experience of
smartphone users on Wi-Fi networks, bringing them on a par with cellular networks where network selection and
authentication are fully automated and usually hidden from the user, even in roaming scenarios.
However, the wide-scale adoption of Passpoint-certified mobile devices and operation of EAP-SIM and EAP-AKA
brings new scalability challenges to service provider Wi-Fi networks and their mobile network operator (MNO)
partner networks. As a consequence, the GSM Association (GSMA, the industry body representing the MNOs) and
the Wireless Broadband Alliance (WBA, the industry body representing the service provider Wi-Fi operators) have
cooperated on an investigation into the potential for scaling issues associated with the adoption of the Wi-Fi
Alliance’s Passpoint-certified devices that make use of smart card credentials to authenticate themselves to service
Alliance’s Passpoint-certified devices that make use of smart card credentials to authenticate themselves to service
provider Wi-Fi networks.
Cisco provides a comprehensive and proven set of techniques for addressing signaling scale within service
provider Wi-Fi networks. Driven by a need to enhance the user experience when connecting to Wi-Fi networks,
Cisco has already developed and deployed a set of capabilities that will significantly help ease the burden of
signaling when using EAP based authentication in Wi-
Fi networks. Configuration options defined with Cisco’s
authentication, authorization, and accounting (AAA) and EAP server capabilities can be used to address signaling
scaling and enable back-end systems to be protected from any signaling storms.
Using the breadth of techniques being defined by the industry and enabled on Cisco Service Provider Wi-Fi
infrastructure, operators can be confident that their Passpoint deployments will be able to scale to accommodate
the enhanced ease of use that will accompany EAP-SIM/AKA deployments.
Introduction
Many service providers have adopted access strategies that now include the deployment of a large number of Wi-
Fi access points, offering service to a sizable population of users equipped with a range of Wi-Fi-enabled devices.
The recently introduced Passpoint certification program enables smartphone devices to make use of smart card,
also known as universal integrated circuit card (UICC), credentials to authenticate themselves to service provider
Wi-Fi networks, addressing one of the key barriers to adoption of Wi-Fi by service providers - ease of use. The
Passpoint certification program ensures that Wi-Fi devices supporting the Hotspot 2.0 specifications can
successfully interoperate.