Académique Documents
Professionnel Documents
Culture Documents
Abstract—Session Initiation Protocol (SIP) has been adopted as: the service provider needs to check the user account
by telecom Next Generation Networks (NGN) and 3rd balance before accepting a service request. Also the service
Generation Partnership Project’s IP Multimedia Subsystem provider needs to monitor the customer’s transactions to
(IMS). Charging is one of the most fundamental components of take the proper action when the customer account balance is
any commercial SIP service.
Service providers have to employ an online charging
about to reach zero. Secondly, online charging mechanism
mechanism to support the prepaid payment model and to allows service providers to create flexible pricing policies
create flexible pricing policies that interwork with customers in that interwork with customers in real-time, to achieve
real-time, to achieve marketing targets while improving marketing targets while improving customer experience. For
customer experience. example, the service provider can provide an extra option to
In this paper, we discuss the requirements of online the user for free while the session is running if the session
charging mechanisms for SIP services, investigate the existing charge reaches a certain threshold.
online charging mechanisms for SIP services namely AAA- SIP background. SIP [6] is an application layer signaling
based and SIP-based, and compare between them according to protocol specified by the Internet Engineering Task Force
their security, performance, supported charging services, and
supported service access types.
(IETF) [7]. SIP is mainly designed for initiation,
Our contributions are: (1) comparing between AAA-based modification, and termination of interactive sessions.
and SIP-based online charging mechanisms, (2) checking the SIP can operate with other application layer protocols
vulnerability of the AAA-based online charging mechanism to including Real-Time Transport Protocol (RTP) [8] and
charging attacks implemented by R. Zhang et al. on Vonage Session Description Protocol (SDP) [9] to provide various
and AT&T VoIP service providers, (3) identifying new security real-time multimedia services [10], such as Voice over
attacks against the latest SIP-based online charging mechanism Internet Protocol (VoIP), multi-party conferences, Internet
–SIPCoin–. Protocol Television (IPTV), and instant messaging (IM).
Currently, due to its many favorable features including
Index Terms—AAA, charging, micro-payment, SIP simplicity and extensibility, SIP has been adopted by
telecom Next Generation Networks (NGN). NGN is a
1. Introduction packet-based network able to provide services including
By 2012, ABI Research expects that almost half of all telecommunications services. Also 3rd Generation
telecom users will be using at least one SIP service. This Partnership Project (3GPP) [11] adopts SIP at IP
will generate over $150 billion in service revenue annually Multimedia Subsystem (IMS). IMS is an architectural
[1]. Charging is one of the most fundamental components of framework for delivering internet protocol multimedia
any commercial SIP service. Indeed, accurate charging will services.
boost the trustworthiness and popularity of SIP services. In this paper, we discuss the requirements of online
Moreover, charging plays an important role in charging mechanisms for SIP services, investigate the
merchandising and marketing by enabling a wide variety of existing online charging mechanisms namely AAA-based
services such as marketing promotions. and SIPCoin –the latest SIP-based mechanism–, and
In some places, especially the developing countries, the compare between them according to their security;
prepaid model is the dominant payment model [2]. performance; supported charging services; and supported
According to Informa Telecoms & Media, during 2007 and service access types.
into 2008, the market for prepaid mobile services has The AAA-based online charging mechanism is based on
continued to grow more than twice as fast as the postpaid the Authentication, Authorization and Accounting (AAA)
market. At the end of 2007, there were 2.33 billion prepaid architecture and consists of the Diameter SIP application
subscriptions in the world, generated revenues of $241.9 and the Diameter credit-control application. While SIPCoin
billion. Informa Telecoms & Media predicts that by 2013 is a peer-to-peer online charging mechanism based on SIP
there will be 3.93 billion prepaid subscriptions, generating and the hash-chain micro-payment technique.
revenues of $382.2 billion [3]. We can summarize the comparison of the two charging
An online charging mechanism charges customers in real- mechanisms in the following points. (1) Both AAA-based
time where charging information can affect, in real-time, the and SIPCoin mechanisms are vulnerable to attacks by
service offered and therefore a direct interaction of the untrusted intermediate parties in absence of end-to-end
charging mechanism with the service control is required [4]. security, but they have their end-to-end security techniques
The telecom industry has achieved overwhelming success to mitigate such attacks. (2) SIPCoin has higher efficiency
through commercial applications of the online charging and scalability than AAA-based mechanism. (3) AAA-based
mechanism [5]. mechanism supports more charging services than SIPCoin.
The benefits of online charging are twofold. Firstly, (4) AAA-based mechanism supports only subscription-
service providers have to employ an online charging based service access type, while SIPCoin supports both
mechanism to support the prepaid model requirements such subscription-based and pay-per-use service access types.
International Journal of Electrical & Computer Sciences IJECS-IJENS Vol:10 No:02 61
The rest of this paper is organized as the following. 3. AAA-based online charging mechanism for
Section 2 discusses the requirements of online charging SIP services
mechanisms for SIP services. In Section 3, we investigate
the AAA-based online charging mechanism. Section 4 In this section, we summarize previous work towards
investigates SIPCoin, the latest SIP-based online charging building online charging mechanism for SIP services based
mechanism. A comparison between the two online charging on the Authentication, Authorization and Accounting
mechanisms, according to their security, performance, (AAA) architecture. The AAA-based online charging
supported charging services, and supported service access mechanism consists of the Diameter SIP application and the
types can be found in Section 5. Finally, Section 6 Diameter credit-control application, in what follows we
concludes the paper. present both of them.
IETF AAA working group puts standards for
2. Requirements of online charging authentication, authorization and accounting solutions for
mechanisms for SIP services Internet [18]. They presented Diameter Base protocol [19] –
also referred to as Diameter–, the IETF standard for AAA in
In this section, we will discuss the requirements of online
IP networks and Internet [20], which is defined in RFC
charging mechanisms for SIP services.
3588. The 3GPP has selected Diameter to provide AAA
Real-time. First, Online charging mechanism must be
functionalities.
real-time with negligible delay as SIP services are based on
Diameter is defined as a base protocol which is used in
real-time multimedia communication [12].
conjunction with a set of applications. It is designed as a
Secure. Second, R. Zhang et al. presented four attacks on
peer-to-peer protocol and uses the client/server architecture
SIP-based VoIP systems that target either charge users for
for message exchange between Diameter nodes [21].
sessions established by attackers, or overcharge users for
Diameter addresses the issues of the previously used AAA
their sessions [13].
protocol, Remote Authentication Dial In User Service
Flexible charging mechanism. Third, service providers
(RADIUS) [22].
should support flat rate, time, volume, and session-based
The AAA working group presented the Authentication,
charging [14]. For example, most VoIP providers use simple
Authorization and Accounting requirements for SIP in RFC
pricing models where calls over Internet are charged using
3702 [23]. Then the Diameter SIP application was presented
flat rate and calls that terminate in Public Switched
in RFC 4740 [24]. The Diameter SIP application discusses
Telephone Network (PSTN) are charged in a time-based
how a SIP implementation can use the AAA architecture to
fashion, while other services such as E-Learning services
support authentication, authorization and accounting.
may be charged in a session-based fashion.
Although the Diameter SIP application supports only SIP
Scalable. Fourth, scalability can be improved by
user agents and proxies that use HTTP digest authentication
eliminating the need for establishing a direct trust-
[25], it can be extended to adopt other authentication
relationship between the customer and the service provider
mechanisms supported by SIP [1] such as IP Security
[14]. As the customer may use different services provided
(IPSec) [26], Secure Multipurpose Internet Mail Extensions
by different providers, then for more efficiency and
(S/MIME) [27], Transport Layer Security (TLS) [28] and
scalability, it is recommended to use a trusted third party for
Datagram Transport Layer Security (DTLS) [29].
the customer and the service provider rather than forcing the
Diameter SIP application can collect charging
service provider to establish a direct trust-relationship with
information while the SIP session is running but cannot
each one of its customers.
provide online charging. To address this issue, the Diameter
Optimized for low-valued transactions [14]. Fifth, service
Credit-Control application implements online charging for a
providers provide access to SIP services through
variety of end user services [17].
subscription and pay-per-use. Customers usually prefer pay-
per-use to pay only for their usage and to have freedom to 3.1 Architecture model
move from one service provider to another [15].
Pay-per-use systems require support of low-valued In this subsection, we present the architecture model of
transactions. Credit cards or e-checks cannot be used for the AAA-based online charging mechanism for SIP
low-valued transactions; they add a time delay and increase services.
the processing costs. Therefore, Micro-payment techniques As depicted in Figure1, the startup is when the end user
are the proper choice; they are designed especially for requests a service from the service provider. The service
payments of small amounts ranging from one cent to several provider authenticates and authorizes the user through the
dollars [16]. AAA server using the Diameter SIP application. When
Get offer prior to session establishment. Sixth, SIP is able online charging is required, the credit-control client interacts
to provide different real-time multimedia services with with the credit-control server using the Diameter credit-
different options. A customer needs to get an offer from the control application. Details of this interaction will be
service provider prior to session establishment [14], and presented in the next subsection.
based on his account balance or a service-specific criterion The credit-control server keeps track of users’ accounts.
approves the offer with certain options or rejects it Upon request from the credit-control client, the credit-
completely. control server reserves a quota of service units from the
Ability to debit as well as credit the user account. user’s account and reports the granted service units to the
Seventh, there are services such as gaming and advertising credit-control client. The credit-control client monitors the
that may credit as well as debit the user account [17]. usage of granted service units, requests more units when the
granted units are about to be exhausted and reports to the
credit-control server the actual number of used units to debit
from the user's account.
International Journal of Electrical & Computer Sciences IJECS-IJENS Vol:10 No:02 62
End End At expiry of the granted quota, the credit-control client
User User sends an update request to the credit-control server to report
the used units and request new quota (9). The credit-control
Diameter SIP &
server debits the used units from the user's account, reserves
Service Provider Credit-Control AAA Server
new quota and reports back to the credit-control client (10).
applications
At session termination (24 and 25), the credit-control
Credit-Control Diameter Credit- Billing client sends a termination request containing the used units
Client Control application System to the credit-control server (26). The credit-control server
debits the used units from the user's account, terminates the
Diameter Credit- Credit-Control credit-control session and acknowledges the credit-control
Control application Server client (27).
Figure1. Architecture model for AAA-based mechanism (This Graceful Service Termination. While session is running,
figure is a modified version of Figure1 in [17], to be adapted to
SIP services.) the credit-control server debits the used units from the user's
account, and reserves a new quota, if the user's account
The service fee may be calculated by the credit-control balance reaches zero, then the new quota is reported back to
client and included in the credit request or left to the credit- the credit-control client combined with an indicator that this
control server to calculate it. is the final quota and the action to be taken after exhaust of
3.2 Message flow this final quota, in this example, the action is to redirect the
user to the Top-Up server to replenish his account (12).
Figure2 presents the message flow for the Diameter SIP At expiry of the final allocated quota, the credit-control
application and Diameter credit-control application to client sends an update request to the credit-control server to
provide authentication and authorization; advice of charge; report the used units (13), and puts the session on hold (14).
session credit-control; and graceful service termination [17]. The credit-control server debits the used units from the
Authentication and Authorization. User sends a Register user's account and sends to the credit-control client the
request to the configured SIP registrar (1). The SIP proxy validity time that represents how long does the user have to
sends a request using the Diameter SIP
application to the AAA server to Caller SIP Proxy / Registrar AAA Server
Top-Up
Callee Credit-Control
authenticate and authorize the user (2). Credit-Control Client Server Server
Advice of Charge (AoC). Caller 1. Register 2. Authentication
sends a service request (3). SIP proxy & Authorization
detects that the caller is subscribed to 3. Invite
AoC service, then sends a diameter 4. Credit-Control Request (Price Enquiry)
credit-control request including session 5. Credit-Control Answer (Cost)
information to the credit-control server
to rate the requested service (4). The 6. Credit-Control Request (Initial)
credit-control server sends the service 7. Credit-Control Answer (Granted-Units)
cost to the SIP proxy (5). The SIP
proxy sends the caller an AoC web 8. Invite
page contains the session information
9. Credit-Control Request (Update, Used-Units)
collected from SIP signaling and
Session Description Protocol (SDP) 10. Credit-Control Answer (Granted-Units)
attributes, the cost information, and a
11. Credit-Control Request (Update, Used-Units)
button to accept or reject the service.
Session Credit-Control. When the 12. Credit-Control Answer (Final-Unit, Redirect)
SIP proxy receives a service request –
and after the caller accepts the service 13. Credit-Control Request (Update, Used-Units)
cost if he is subscribed to AoC service– 14. Put on hold
and the online charging is required, the 15. Credit-Control Answer (Validity Time)
credit-control client sends a request to 16. Invite 17. Invite
the credit-control server to initiate a 18. Replenish account
credit-control session (6). The session-
initiation request contains session 19. Bye
20. Bye
information collected from SIP
signaling and SDP attributes. The 21. Credit-Control Request (Update)
credit-control server checks the user's 22. Credit-Control Answer (Granted-Units)
account balance, rates the service –if 23. Put off hold
service fee has not been reported at the
credit-control client request–, and 24. Bye
reserves quota of service units from the 25. Bye
user's account. The granted quota is 26. Credit-Control Request (Termination, Used-Units)
reported back to the SIP proxy (7), and 27. Credit-Control Answer
then the SIP proxy forwards the service
request to callee (8). Figure2. Simplified message flow for Diameter SIP application and Diameter credit-control
application to provide online charging.
International Journal of Electrical & Computer Sciences IJECS-IJENS Vol:10 No:02 63
replenish his account (15). Customer Service Provider Payment Provider
SIP proxy starts a session between the user and the Top- 1. Invite
Up server where user is to be asked for a credit card number 2. Offer
and an amount of money to replenish his account (16, 17,
and 18). After account replenish or at expiry of validity 3. Withdrawal Request
time, the credit-control client sends an update request to 4. Withdrawal Response
check whether the account has been replenished or not (21).
5. Withdrawal
If account has been replenished, the credit-control server Response
reports back the granted units and the SIP proxy puts the 6. Initial Payment
session off hold (22 and 23); otherwise SIP proxy terminates
the session. SIP Service