Moby Dick Consolidated System Integration Plan

D0103v1.doc Version 1 6.7.2003
4.5.6 Auditing
Auditing objectives need to be determined in advance in order to be able to specify the auditing and
logging requirements. Auditing requirements determine what tasks to be accomplished to meet the
auditing objectives, whereas logging requirements determine which events need to be logged by whom
and when. The auditing objective of MobyDick is to detect violation of Service Level Guarantees (SLGs)
between a customer and a provider. An SLG is the part of Service Level Agreement (SLA) which
specifies a provider’s commitment on quality level of services it will deliver.
Furthermore it is assumed that MobyDick auditing objectives do NOT include following goals:
• Detection of security breaches
• Detection of failure in design and implementation of MobyDick entities
• Detection of AAAC’s policies violation. AAAC policies represent the provider’s policies in
determining the behavior of AAAC entities in performing authentication, authorization,
accounting, and charging.
It is important to note here, that security breaches, failure in design and/or implementation, and policies
violation may lead to SLG violation.
4.5.6.1 MobyDick SLG
A MobyDick Service Level Agreement (SLA) reflects the contract between a customer and MobyDick
service provider. This section does not describe the whole detail of SLA, but only the guarantees
specified within an SLA, termed SLG.
Three commitments are specified within Moby Dick:
? Entity Availability
? Success of User Registration
? Success of Service Authorization
Entity Availability defines the guaranteed availability of Moby Dick key entities (in particular AAAC
Clients and QoS Managers) in unit of time or in percentage within each period of a pre-defined length.
The usual period is a calendar month or a billing period.
Success of User Registration defines the guaranteed successful of a valid registration request with a valid
NAI and credentials within minute, at least after retries of ‘approximately uniform’ interval, if
the user is currently in the home domain.
Success of Service Authorization defines the guaranteed acceptance of a valid service request from a
registered home user within minutes, at least after retries of ‘approximately uniform’ interval. In
Moby Dick, services offered to customers are network transport services. These services enable IPv6
packets to be transported with a certain QoS within the operator network. The QoS parameters in Moby
Dick are restricted to bandwidth and a priority number. The network transport services are characterized
by any combination of the CoA/HomeAddr, DestAddr, and DSCP. A particular service in Moby Dick is
implicitly requested with the arrival of the first packet marked with the corresponding DSCP.
Different situations and conditions can lead to violations of the abovementioned commitments:
? Implementation errors of one or more of the involving entities.
? Configuration errors of one or more of the involving entities.
? Data communication errors.
? The respective entities are compromised.
? The database which holds the required information e.g., user profile, is corrupted.
? Network is overloaded
The entity unavailability does not include unavailability due to:
? scheduled maintenance
? failures of users’ own devices and/or applications
? force majeure
D0103v1.doc 135 / 168