1、TIA TELECOMMUNICATIONS SYSTEMS BULLETIN Cellular Digital Packet Data System Specification - Part 1 O 13 Directory Services TSB-87- 1 O 13 Reaffirmed August 9,2002 ODECEMBER 1997 TELECOMMUNICATIONS INDUSTRY ASSOCIATION The Teleconmiunications Industry Association represents the conmiunications sector
2、 of NOTICE TIA Engineering Standards and Publications are designed to serve the public interest through eliminating misunderstandings between manufacturers and purchasers, facilitating interchangeability and improvement of products, and assisting the purchaser in selecting and obtaining with minimum
3、 delay the proper product for his particular need. Existence of such Standards and Publications shall not in any respect preclude any member or nonmember of TIA from manufacturing or selling products not conforming to such Standards and Publications, nor shall the existence of such Standards and Pub
4、lications preclude their voluntary use by those other than TIA members, whether the standard is to be used either domestically or internationally. Standards, Publications and Bulletins are adopted by TIA in accordance with the American National Standards Institute (ANSI) patent policy. By such actio
5、n, TIA does not assume any liability to any patent owner, nor does it assume any obligation whatever to parties adopting the Standard, Publication, or Bulletin. Technical Bulletins are distinguished from TIA Standards or Documents, in that they contain a compilation of engineering data or informatio
6、n useful to the technical community, and represent approaches to good engineering practices that are suggested by the formulating committee. This Bulletin is not intended to preclude or discourage other approaches that similarly represent good engineering practice, or that may be acceptable to, or h
7、ave been accepted by, appropriate bodies. Parties who wish to bring other approaches to the attention of the formulating committee to be considered for inclusion in future revisions of this Bulletin are encouraged to do so. It is the intention of the formulating committee to review this document eve
8、ry five years, but it maybe revised and updated at any time as may be occasioned by changes in technology, industry practice, or government regulations, or for other appropriate reasons. (From Project No. 3-4004, formulated under the cognizance of the TIA TR-45.6 Subcommittee on Adjunct Wireless Pac
9、ket Data Technology.) This Document was reaffirmed by the Telecommunications Industry Association on August 9,2002. Published by OTELECOMMUNICATIONS INDUSTRY ASSOCIATION 1997 Standards and Technology Department 2500 Wilson Boulevard Arlington, VA 22201 U.S.A. PRICE: Please refer to current Catalog o
10、f TIA TELECOMMUNICATIONS INDUSTRY ASSOCIATION STANDARDS AND ENGINEERING PUBLICATIONS or call Global Engineering Documents, USA and Canada (1 -800-854-7 179) International (303-397-7956) or search online at http:/www.tiaonline.org/standards/search-n-order .ch All rights reserved Printed in U.S.A. NOT
11、ICE OF DISCLAIMER AND LIMITATION OF LIABILITY The document to which this Notice is affixed has been prepared by one or more Engineering Committees of the Telecommunications Industry Association (“TIA”). TIA is not the author of the document contents, but publishes and claims copyright to the documen
12、t pursuant to licenses and permission granted by the authors of the contents. TIA Engineering Committees are expected to conduct their affairs in accordance with the TIA Engineering Manual (“Manual”), the current and predecessor versions of which are available at http:/www.tiaonline.orZr/standards/s
13、fZr/engineering manual.ch. TIAS function is to administer the process, but not the content, of document preparation in accordance with the Manual and, when appropriate, the policies and procedures of the American National Standards Institute (“ANSI”). THE USE OR PRACTICE OF CONTENTS OF THIS DOCUMENT
14、 MAY INVOLVE THE USE OF INTELLECTUAL PROPERTY RIGHTS (“IPR), INCLUDING PENDING OR ISSUED PATENTS, OR COPYRIGHTS, OWNED BY ONE OR MORE PARTIES. TIA MAKES NO SEARCH OR INVESTIGATION FOR IPR. WHEN IPR CONSISTING OF PATENTS AND PUBLISHED PATENT APPLICATIONS ARE CLAIMED AND CALLED TO TIAS ATTENTION, A ST
15、ATEMENT FROM THE HOLDER THEREOF IS REQUESTED, ALL IN ACCORDANCE WITH THE MANUAL. TIA TAKES NO POSITION WITH REFERENCE TO, AND DISCLAIMS ANY OBLIGATION TO INVESTIGATE OR INQUIRE INTO, THE SCOPE OR VALIDITY OF ANY CLAIMS OF IPR. ALL WARRANTIES, EXPRESS OR IMPLIED, ARE DISCLAIMED, INCLUDING WITHOUT LIM
16、ITATION, ANY AND ALL WARRANTIES CONCERNING THE ACCURACY OF THE CONTENTS, ITS FITNESS OR APPROPRIATENESS FORA PARTICULAR PURPOSE PARTYS INTELLECTUAL PROPERTY RIGHTS. TIA EXPRESSLY DISCLAIMS ANY AND ALL RESPONSIBILITIES FOR THE ACCURACY OF THE CONTENTS AND MAKES NO REPRESENTATIONS OR WARRANTIES REGARD
17、ING THE CONTENTS COMPLIANCE WITH ANY APPLICABLE STATUTE, RULE OR REGULATION. OR USE, ITS MERCHANTABILITY AND ITS NON-INFRINGEMENT OF ANY THIRD TIA SHALL NOT BE LIABLE FOR ANY AND ALL DAMAGES, DIRECT OR INDIRECT, ARISING FROM OR RELATING TO ANY USE OF THE CONTENTS CONTAINED HEREIN, INCLUDING WITHOUT
18、LIMITATION ANY AND ALL INDIRECT, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES (INCLUDING DAMAGES FOR LOSS OF BUSINESS, LOSS OF PROFITS, LITIGATION, OR THE LIKE), WHETHER BASED UPON BREACH OF CONTRACT, BREACH OF WARRANTY, TORT (INCLUDING NEGLIGENCE), PRODUCT LIABILITY OR OTHERWISE, EVEN IF ADVISED OF
19、 THE POSSIBILITY OF SUCH DAMAGES. THE FOREGOING NEGATION OF DAMAGES IS A FUNDAMENTAL ELEMENT OF THE USE OF THE CONTENTS HEREOF, AND THESE CONTENTS WOULD NOT BE PUBLISHED BY TIA WITHOUT SUCH LIMITATIONS. TIA/EIA TELECOMMUNICATIONS SYSTEMS BULLETIN Cellular Digital Packet Data System Specification - P
20、art 1013 Directory Services TSBS7-1013 DECEMBER 1997 TELECOMMUNICATIONS INDUSTRY ASSOCIATION ,y% Ilrprscr*lqhcuiiMlolsin bpurrglhn wb ic Ekarmk Iidpr(rb AsocUkm INDus1nYASSOCLAT/N NOTICE WEIA Engineering Standards and Publications are designed to serve the public interest through eliminating misunde
21、rstandings between manufacturers and purchasers, facilitating interchangeability and improvement of products, and assisting the purchaser in selecting and obtaining with minimum delay the proper product for his particular need. Existence of such Standards and Publications shall not in any respect pr
22、eclude any member or nonmember of TIA/EIA from manufacturing or selling products not conforming to such Standards and hblications, nor shall the existence of such Siandards and Publications preclude their voluntary use by those other than TIA/EIA members, whether the standard is to be used either do
23、mestically or internationally. Standards, hiblications and Buletins are adopted by EIA in accordance with the American National Standards Institute (ANSI) patent policy. By such action, TUVEIA does not assume any liability to any patent owner, nor does it assume any obligation whatever to parties ad
24、opting the Standard, Publication, or Bulletin. Technical Bulletins are distinguished from WEIA Standards or Interim Standards, in that they contain a compilation of engineering Information Base access the necessary information through peer to peer application communications. The CDPD Directory Servi
25、ce subprofile provides the communications structure to effect this connection. The CDPD Directory Service subprofile comprises the following: o CDPD Directory Access Protocol o Remote Operation Service Element o Association Control Service Element o o The CDPD Directory Service subprofile is depicte
26、d in Figure 1013-4. IS0 Connection Oriented Presentation Protocol IS0 Connection Oriented Session Protocol. - - 1013-7 STD*EIA TSB87-1O13-ENGL 1477 3234b00 Ob01373 4T7 D TIAEIIVTSB-87-1013 Directory Services FIGURE 1013-4 Directory Service Subprofile Directory Access Protocol Application Layer ROSE
27、and ACSE 1 ISO-9072-2 ISO-8650 I 5 180-8823 Presentation Layer EO-83271 Session Layer The Connection Oriented Transport Service (COTS) subprofile specified in IS-732-3001 can be used in combination with the subprofiles specified here. CDPD Directory User Agent This Section specifies general requirem
28、ents for use of DUAs in the CDPD Network. Specific requirements relating to a particular application of the directory are given as a Directory Profile in other Parts of IS-732. 5.1 CDPD Directory User Agent Functionalities CDPD Support Services DUAs use two dimensions to specify required functionali
29、ty: O Supported abstract operations O Supported t-ypes and levels of authentication. 5.1.1 DUA: Supported Abstract Operations The OS1 Directory standard allows DUAS to support one, several or all abstract operations defined for the DAP. A complete list of the DAP abstract operations is given in Tabl
30、e 1013-1. For convenience, the CDPD Support Services provide three bundles of DUA functionality as follows: o A Lookup DUA supports the Read and Abandon operations only 1013-8 CDPD Directory User Agent TIAEIMPSB-87-1013 - o o A Browse DUA supports the Read, Compare, List, Search and Abandon operatio
31、ns only An Administrative DUA supports all DAP abstract operations. TABLE 1013-1 Directory DAP Abstract Operations Supported DUA Abstract Operations I Read I I Compare I List I Search I AddEntry RemoveEntry ModifyEntry ModifyDN Abandon 5.1.2 DUA: Supported Types and Levels of Authentication The OS1
32、Directory standard accommodates two basic t.ypes of authentication: o User authentication o Peer-entity authentication. It also accommodates three security levels at which authentication may be performed: o Identity-only o Simple o Strong. In addition to the two types and the three levels of authent
33、ication, the standard allows peer-entity strong authentication to be one-way (Le., one peer authenticates the identity of the other peer) or two-way (ie., both peers authenticate each other) or three-way. Not all the possible combinations of type, level and direction are appropriate for use between
34、a DUA and a DSA. Only the CDPD Directory Authentication Mode 1 as described in Section 5.1.3 is used in IS-732. The CDPD Directory Authentication Mode 1 is consistent with IGOSS Directory Authentication Mode 1. - 1 o1 3-9 TlAEImSB-87-1 O1 3 Directory Services 5.1.3 5.2 5.2.1 Additional and more secu
35、re CDPD Directory Authentication Modes shall be provided in later releases of this document. CDPD Directory Authentication Mode 1 Authentication Mode 1 is supported by a DUA capable of transmitting DirectoryBind ARGUMENT with SimpleCredentials containing a protected password. A DUA supporting this A
36、uthentication Mode is capable of enabling a DSA, contacted via the DAP, to perform simple authentication of the user based on a protected password. The secure one-way hash algorithm used in authentication services shall be specified in later releases of this document. CDPD DUA Types A CDPD DUA Class
37、 is formed by specifying two parameters as follows: o o The first parameter specifies whether the DUA is Lookup, Browse or Administrative The second parameter specifies the Authentication Modes that must be supported by the DUA. A CDPD Support Services conformant DUA shall, at a minimum, support Aut
38、hentication Mode 1. Specific requirements relating to a given particular application of the directory is given as a Directory Profile in other parts of this specification. The two parameters mentioned above are always included in CDPD Directory Profile specifications. Miscellaneous Conformance Requi
39、rements for CDPD Support Services DUAS All conformant DUA products shall satisfy the following requirements: o o A CDPD Support Services conformant DUA shall, as a minimum, support Authentication Mode 1. A CDPD Support Services conformant DUA shall support character set requirements specified in Par
40、t 11 clause 7.1 of the Workshop Agreements. A CDPD Support Services conformant DUA shail perform normalization of protocol elements containing Universal Coordinated Time according to the rule specified in Part 11 clause A.4.1 of the Workshop Agreements. o 1013-10 CDPD Directory System Agent TIAIEIrn
41、SB47-1 o1 3 - 6 CDPD Directory System Agent 6.1 This section specifies general requirements for use of Directory User Agents in the CDPD Network. Specific requirements relating to a given particular application of the directory is given as a Directory Profile in other Parts (e.g., 1014, 1015) of the
42、 Implementor Guidelines. CDPD Directory System Agent Functionalities 6.2 CDPD Support Services DSA are based on the following: o DSAtypes o Supported types and levels of authentication. CDPD DSA Types 6.2.1 The DSA product taxonomy has two basic categories. The first type, referred to as solitary, i
43、s a DSA designed to support a centralized DIT only and is unable to communicate with any other DSA. The second category, referred to as cooperative, is used to speciQ a bundle of functionality that allows a DSA to be part of a community of DSAs that communicate in various ways to support a distribut
44、ed DIT. A solitary DSA never communicates with any other DSA and hence does not support DSP referrals and knowledge references. When specifjhg a solitary DSA it is necessary to address requirements for extensions to abstract operations, authentication, and access control. A cooperative DSA is able t
45、o cooperate, either directly or indirectly, with other DSAs to provide Directory services that are, to a large extent, independent of how the DIT is distributed. Cooperation may occur directly when a DSA supports the DSP as both a responder and an initiator, and therefore supports the chained mode o
46、f operation. Cooperation may occur indirectly when a DSA supports DAP only or when only the responder role for DSP is supported. An indirectly cooperative DSA generally returns referrals when its local fragment of the DIT is insufficient to complete an operation result. DSA: Supported Types and Leve
47、ls of Authentication Authentication Modes associated with DUA-DSA interaction are compatible with those defined in Section 5.1.3. For example, a DUA supporting Authentication Mode 1 may be used with a DSA that supports Authentication Mode 1. .- 1013-1 1 llA/EIAKCB-87-1013 Directory Senrices 6.2.1.1
48、Authentication Mode 1 Authentication Mode 1 is supported by a DSA capable of performing user authentication, based on DirectoryBind ARGUMENT, using Simplecredentials containing a protected password. 6.2.2 6.2.3 6.2.4 DSA: Supported Attributes and Object Classes A CDPD Support Services conformant DSA
49、 shall support all Selected Attribute Types defined in clause 5 of ISO-9594-61. A conformant DSA shall support all attribute syntaxes defined in clause 6 of ISO-9594-61. A conformant DSA shall support ail matching rules defined in clause 7 of In addition, a conformant DSA shall be configurable to allow new attribute types to be defined by the DSA administrator. A CDPD Support Services conformant DSA shall be configurable to allow new Object Classes or subclasses to be defined by the DSA administrator. Extensibility of supported Object Classes shall include the followi
