第1页 / 共207页
第2页 / 共207页
第3页 / 共207页
第4页 / 共207页
第5页 / 共207页
第6页 / 共207页
第7页 / 共207页
第8页 / 共207页
Hotspot_2-0_(R2)_Technical_Specification_v1.2.pdf
Table of Contents
List of Figures
List of Tables
1. Overview
1.1 Scope
1.2 References
1.3 Definitions, abbreviations and acronyms
1.3.1 Definitions
1.3.2 Abbreviations and Acronyms
2. Hotspot 2.0 Device, Operator and Service Provider requirements
2.1 Required AP Capabilities
2.2 Required Mobile Device Capabilities
2.3 Requirements for Hotspot Operators
2.4 Requirements for Service Providers
3. Element and frame definitions
3.1 Element definitions
3.1.1 HS2.0 Indication element
3.1.2 OSU Server-only authenticated layer 2 Encryption Network element
3.1.3 WFA anonymous client 802.1X AKM
3.2 Frame definitions
3.2.1 WNM-Notification Request frames
3.2.1.1 Subscription Remediation subelement
3.2.1.2 Deauthentication Imminent Notice subelement
4. Hotspot 2.0 ANQP-elements
4.1 HS Query List element
4.2 HS Capability List element
4.3 Operator Friendly Name element
4.4 WAN Metrics element
4.5 Connection Capability element
4.6 NAI Home Realm Query element
4.7 Operating Class Indication element
4.8 OSU Providers List element
4.8.1 OSU Provider subfield
4.8.1.1 OSU Friendly Name
4.8.1.2 OSU Server URI
4.8.1.3 OSU Method list
4.8.1.4 Icons Available
4.8.1.5 OSU_NAI
4.8.1.6 OSU Service Description
4.9 Icon Request element
4.10 Icon Binary File element
5. Hotspot procedures and protocols
5.1 Layer 2 traffic inspection and filtering
5.2 Downstream forwarding of group-addressed frames by the AP
5.3 Proxy ARP service
5.4 SSID configuration procedures for hotspots offering online sign up
5.4.1 Open OSU ESS
5.4.2 OSEN OSU ESS
5.5 Hotspot procedures for free public hotspots
6. Mobile device procedures
6.1 Discovery state procedures
6.1.1 Home SP identification and connecting to Home SP hotspot
6.1.2 Mobile device support for user preferences
6.2 Registration state procedures
6.3 Provisioning state procedures
6.4 Access state procedures
6.4.1 Subscription expiry
6.4.2 Expiry of the subscription update timer
6.4.3 Expiry of the policy update timer
6.4.4 EAP authentication failure
6.4.5 Association failure
6.5 Filtering frames encrypted using the GTK
7. Online sign up and certificate management
7.1 Overview and goals
7.2 Trust model
7.3 Public key certificate types
7.3.1 Certificate Authority trust root certificates
7.3.2 OSU server certificate
7.3.2.1 Composition of OSU server certificate
7.3.2.2 Processing of OSU server certificate
7.3.3 AAA server certificate
7.3.3.1 Composition of AAA server certificate
7.3.3.2 Processing of AAA server certificate
7.3.4 AAA server certificate used with WFA Anonymous EAP-TLS
7.3.4.1 Composition of AAA server certificate used with WFA Anonymous EAP-TLS
7.3.4.2 Processing of AAA server certificate used with WFA Anonymous EAP-TLS
7.3.5 Subscription remediation server certificate
7.3.5.1 Composition of subscription remediation server certificate
7.3.5.2 Processing of subscription remediation server certificate
7.3.6 Policy server certificates
7.3.6.1 Composition of policy server certificate
7.3.6.2 Processing of policy server certificate
7.4 Message overview for online sign up
7.5 OSU operational requirements
7.6 Certificate enrollment and provisioning
7.6.1 Simple PKI enrollment using EST
7.6.2 Restricted use of HS2.0 client certificate
7.6.3 Processing of mobile device credentials
7.6.4 Certificate enrollment message flow
7.7 Anonymous EAP-TLS
8. Subscription provisioning
8.1 Overview
8.1.1 Subscription access restrictions
8.1.2 Subscription credential provisioning options
8.1.3 Subscription remediation
8.1.4 Subscription management web content
8.1.5 Policy provisioning and update
8.2 Mobile device management tree
8.3 Provisioning using OMA DM
8.3.1 Overview
8.3.2 Subscription provisioning
8.3.2.1 Provisioning username and password credentials
8.3.2.2 Provisioning certificate credentials
8.3.2.3 Provisioning using mobile device provided certificates
8.3.3 Subscription management
8.3.3.1 Machine remediation when a mobile device has username and password credentials
8.3.3.2 User remediation when a mobile device has username and password
8.3.3.3 User remediation when a mobile device has certificate credentials
8.3.3.4 Updating a certificate credential
8.3.3.5 Updating a certificate credential when the UsernamePassword node is present
8.3.4 Policy provisioning
8.3.4.1 Policy provisioning and update with username and password credentials
8.3.4.2 Policy provisioning and update with certificate credentials
8.4 Provisioning using SOAP XML
8.4.1 Overview
8.4.2 Subscription provisioning
8.4.2.1 Provisioning username and password credentials
8.4.2.2 Provisioning certificate credentials
8.4.2.3 Provisioning using mobile device provided certificates
8.4.3 Subscription management
8.4.3.1 Machine remediation when a mobile device has username and password credentials
8.4.3.2 User remediation when a mobile device has username and password credentials
8.4.3.3 Machine remediation when a mobile device has certificate credentials
8.4.3.4 User remediation when a mobile device has certificate credentials
8.4.3.5 Updating a certificate credential
8.4.3.6 Updating a certificate credential when UsernamePassword node is Present
8.4.4 Policy provisioning
8.4.4.1 Policy provisioning and update with username and password credentials
8.4.4.2 Policy provisioning and update with certificate credentials
8.5 Provisioning of a mobile device that has a SIM card
8.5.1 Initial subscription metadata and policy provisioning using OMA DM
8.5.2 Initial subscription metadata and policy provisioning using SOAP XML
9. Management objects
9.1 PerProviderSubscription MO
9.1.1 Graphical representation
9.1.2 Node descriptions
9.2 DevDetail MO vendor specific extensions
9.2.1 Graphical representation
9.2.2 Node descriptions
Annex A : Messages and definitions
A.1 OMA DM messages and definitions
A.1.1 Generic Alert (informative)
A.1.2 Exec command (informative)
A.1.3 Add command (informative)
A.1.4 Replace command (informative)
A.1.5 Status Management element (informative)
A.1.6 OMA DM elements (normative)
A.2 OMA DM messages – examples (informative)
A.2.1 DM package 1 (mobile device to server)
A.2.2 DM package 2 (server to mobile device)
A.2.3 DM package 3 (mobile device to server)
A.2.4 DM package 4 – Exec:getCertificate (server to mobile device)
A.2.5 DM package 3 (mobile device to server)
A.2.6 DM package 4 (server to mobile device)
A.3 SOAP XML messages and definitions
A.3.1 The sppPostDevData SOAP method
A.3.2 The sppPostDevDataResponse SOAP method
A.3.3 The sppUpdateResponse SOAP Method
A.3.4 The sppExchangeComplete SOAP Method
A.3.5 The getCertificate XML Instance Document
A.3.6 Web Services Description Language (WSDL)
Annex B : Example GAS Query using ANQP Query List and HS Query List (informative)
B.1 Example 1: 3GPP Cellular Network and the Operator Friendly Name
B.2 Example 2: Icon Request
Annex C : SP policy network connection (informative)
C.1 Example Network Selection Flowchart
C.2 Example Network Selection Scenarios
C.2.1 Network Selection Scenarios Connecting to a Home Network
C.2.1.1 Scenario #1
C.2.1.2 Scenario #2
C.2.1.3 Scenario #3
C.2.2 Network Selection Scenarios in which OI is required
C.2.2.1 Scenario #4
C.2.3 Network Selection Scenarios with Home SP Policy
C.2.3.1 Scenario #5
C.2.3.2 Scenario #6
Annex D : Wi-Fi Alliance Vendor-Specific RADIUS attributes (informative)
D.1 Wi-Fi Alliance Vendor-Specific RADIUS attribute sub-type formats
D.1.1 HS2.0 subscription remediation needed
D.1.2 HS2.0 AP version
D.1.3 HS2.0 mobile device version
D.1.4 HS2.0 deauthentication request
D.1.5 HS2.0 session information URL
Annex E : Standardized OSU registration flow (normative)
E.1 General
E.2 OSU Registration Flow
E.3 OSU Registration Schema
E.3.1 The RegistrationProtocol element
E.3.2 ServerGroup element group
E.3.2.1 LoginCouponOption element
E.3.2.2 LoginUsernameOption element
E.3.2.3 SubscriptionPlans element
E.3.2.4 BillingOptions element
E.3.2.5 BillingRoomNumberOption element
E.3.2.6 TermsAndConditions element
E.3.2.7 ServerExtensions element
E.3.3 ClientGroup element group
E.3.3.1 LoginUsernameInfo element
E.3.3.2 LoginCouponInfo element
E.3.3.3 SubscriptionPlanSelection element
E.3.3.4 BillingInfo
E.3.3.5 BillingHotelRoomInfo element
E.3.3.6 ClientExtensions element
E.3.4 The StatusGroup element
E.3.4.1 StatusCode element
E.3.4.2 StatusText element
E.4 XML schema
E.5 Example transaction 1
Hotspot 2.0 (Release 2)
Technical Specification
Version 1.2
This document is the specification for the
Wi-Fi Alliance Wi-Fi CERTIFIED Passpoint™ (Release 2) program,
a solution for next generation Wi-Fi® hotspots.
WI-FI ALLIANCE PROPRIETARY – SUBJECT TO CHANGE WITHOUT NOTICE
This document may be used with the permission of Wi-Fi Alliance under the terms set forth herein.
By your use of the document, you are agreeing to these terms. Unless this document is clearly designated as an
approved specification, this document is a work in process and is not an approved Wi-Fi Alliance specification. This
document is subject to revision or removal at any time without notice. Information contained in this document may be used
at your sole risk. Wi-Fi Alliance assumes no responsibility for errors or omissions in this document. This copyright
permission does not constitute an endorsement of the products or services. Wi-Fi Alliance trademarks and certification
marks may not be used unless specifically allowed by Wi-Fi Alliance.
Wi-Fi Alliance has not conducted an independent intellectual property rights ("IPR") review of this document and the
information contained herein, and makes no representations or warranties regarding IPR, including without limitation
patents, copyrights or trade secret rights. This document may contain inventions for which you must obtain licenses from
third parties before making, using or selling the inventions.
Wi-Fi Alliance owns the copyright in this document and reserves all rights therein. A user of this document may duplicate
and distribute copies of the document in connection with the authorized uses described herein, provided any duplication in
whole or in part includes the copyright notice and the disclaimer text set forth herein. Unless prior written permission has
been received from Wi-Fi Alliance, any other use of this document and all other duplication and distribution of this
document are prohibited. Unauthorized use, duplication, or distribution is an infringement of Wi-Fi Alliance’s copyright.
NO REPRESENTATIONS OR WARRANTIES (WHETHER EXPRESS OR IMPLIED) ARE MADE BY WI-FI ALLIANCE
AND WI-FI ALLIANCE IS NOT LIABLE FOR AND HEREBY DISCLAIMS ANY DIRECT, INDIRECT, PUNITIVE, SPECIAL,
INCIDENTAL, CONSEQUENTIAL, OR EXEMPLARY DAMAGES ARISING OUT OF OR IN CONNECTION WITH THE
USE OF THIS DOCUMENT AND ANY INFORMATION CONTAINED IN THIS DOCUMENT.
Used with the permission of Wi-Fi Alliance under the terms as stated in this document.
© 2016 Wi-Fi Alliance. All Rights Reserved.
Wi-Fi Alliance Hotspot 2.0 (Release 2) Technical Specification - Version 1.2
Document History
Version
Date
Status
Comments
1.0
1.1
2014-08-08 Final
Public release version
2015-02-03 Final
- Editorial fixes to section 1.2 (References)
1.2
2016-12-08 Final
Merged in:
- Update to Figure 83
Hotspot_2-0_(R2)_Technical_Specification_v1-
1-0-optional-omadm-draft2.docx
Hotspot_2-0_(R2)_Technical_Specification_v1-
1-0-sta-filtering.docx
Updates for optional ICON processing
Used with the permission of Wi-Fi Alliance under the terms as stated in this document.
© 2016 Wi-Fi Alliance. All Rights Reserved.
Page 2 of 207
Wi-Fi Alliance Hotspot 2.0 (Release 2) Technical Specification - Version 1.2
Table of Contents
Table of Contents ............................................................................................................................ 3
List of Figures .................................................................................................................................. 7
List of Tables ................................................................................................................................. 11
1. Overview .................................................................................................................................... 12
1.1 Scope .................................................................................................................................. 12
1.2 References .......................................................................................................................... 12
1.3 Definitions, abbreviations and acronyms ............................................................................ 15
1.3.1 Definitions .................................................................................................................... 15
1.3.2 Abbreviations and Acronyms ....................................................................................... 17
2. Hotspot 2.0 Device, Operator and Service Provider requirements ........................................... 19
2.1 Required AP Capabilities .................................................................................................... 19
2.2 Required Mobile Device Capabilities .................................................................................. 20
2.3 Requirements for Hotspot Operators .................................................................................. 22
2.4 Requirements for Service Providers ................................................................................... 23
3. Element and frame definitions ................................................................................................... 24
3.1 Element definitions .............................................................................................................. 24
3.1.1 HS2.0 Indication element ............................................................................................. 24
3.1.2 OSU Server-only authenticated layer 2 Encryption Network element ......................... 26
3.1.3 WFA anonymous client 802.1X AKM........................................................................... 27
3.2 Frame definitions ................................................................................................................. 28
3.2.1 WNM-Notification Request frames .............................................................................. 28
4. Hotspot 2.0 ANQP-elements ..................................................................................................... 32
4.1 HS Query List element ........................................................................................................ 34
4.2 HS Capability List element .................................................................................................. 35
4.3 Operator Friendly Name element ........................................................................................ 35
4.4 WAN Metrics element ......................................................................................................... 36
4.5 Connection Capability element ........................................................................................... 37
4.6 NAI Home Realm Query element ....................................................................................... 39
4.7 Operating Class Indication element .................................................................................... 40
4.8 OSU Providers List element ................................................................................................ 40
4.8.1 OSU Provider subfield ................................................................................................. 41
4.9 Icon Request element ......................................................................................................... 44
4.10 Icon Binary File element.................................................................................................... 44
5. Hotspot procedures and protocols............................................................................................. 46
5.1 Layer 2 traffic inspection and filtering ................................................................................. 46
5.2 Downstream forwarding of group-addressed frames by the AP ......................................... 46
5.3 Proxy ARP service .............................................................................................................. 47
5.4 SSID configuration procedures for hotspots offering online sign up ................................... 48
5.4.1 Open OSU ESS ........................................................................................................... 48
5.4.2 OSEN OSU ESS .......................................................................................................... 48
5.5 Hotspot procedures for free public hotspots ....................................................................... 49
Used with the permission of Wi-Fi Alliance under the terms as stated in this document.
© 2016 Wi-Fi Alliance. All Rights Reserved.
Page 3 of 207
Wi-Fi Alliance Hotspot 2.0 (Release 2) Technical Specification - Version 1.2
6. Mobile device procedures .......................................................................................................... 50
6.1 Discovery state procedures................................................................................................. 50
6.1.1 Home SP identification and connecting to Home SP hotspot ..................................... 50
6.1.2 Mobile device support for user preferences ................................................................ 51
6.2 Registration state procedures ............................................................................................. 51
6.3 Provisioning state procedures ............................................................................................. 51
6.4 Access state procedures ..................................................................................................... 52
6.4.1 Subscription expiry....................................................................................................... 52
6.4.2 Expiry of the subscription update timer........................................................................ 52
6.4.3 Expiry of the policy update timer .................................................................................. 53
6.4.4 EAP authentication failure ........................................................................................... 53
6.4.5 Association failure ........................................................................................................ 53
6.5 Filtering frames encrypted using the GTK .......................................................................... 53
7. Online sign up and certificate management .............................................................................. 54
7.1 Overview and goals ............................................................................................................. 54
7.2 Trust model ......................................................................................................................... 55
7.3 Public key certificate types .................................................................................................. 55
7.3.1 Certificate Authority trust root certificates .................................................................... 55
7.3.2 OSU server certificate .................................................................................................. 56
7.3.3 AAA server certificate .................................................................................................. 58
7.3.4 AAA server certificate used with WFA Anonymous EAP-TLS ..................................... 59
7.3.5 Subscription remediation server certificate .................................................................. 60
7.3.6 Policy server certificates .............................................................................................. 61
7.4 Message overview for online sign up .................................................................................. 61
7.5 OSU operational requirements............................................................................................ 63
7.6 Certificate enrollment and provisioning ............................................................................... 64
7.6.1 Simple PKI enrollment using EST ................................................................................ 64
7.6.2 Restricted use of HS2.0 client certificate ..................................................................... 65
7.6.3 Processing of mobile device credentials...................................................................... 65
7.6.4 Certificate enrollment message flow ............................................................................ 66
7.7 Anonymous EAP-TLS ......................................................................................................... 67
8. Subscription provisioning ........................................................................................................... 69
8.1 Overview ............................................................................................................................. 69
8.1.1 Subscription access restrictions .................................................................................. 70
8.1.2 Subscription credential provisioning options ............................................................... 71
8.1.3 Subscription remediation ............................................................................................. 71
8.1.4 Subscription management web content....................................................................... 72
8.1.5 Policy provisioning and update .................................................................................... 73
8.2 Mobile device management tree ......................................................................................... 74
8.3 Provisioning using OMA DM ............................................................................................... 76
8.3.1 Overview ...................................................................................................................... 76
8.3.2 Subscription provisioning ............................................................................................. 76
Used with the permission of Wi-Fi Alliance under the terms as stated in this document.
© 2016 Wi-Fi Alliance. All Rights Reserved.
Page 4 of 207
Wi-Fi Alliance Hotspot 2.0 (Release 2) Technical Specification - Version 1.2
8.3.3 Subscription management ........................................................................................... 83
8.3.4 Policy provisioning ....................................................................................................... 90
8.4 Provisioning using SOAP XML ........................................................................................... 93
8.4.1 Overview ...................................................................................................................... 93
8.4.2 Subscription provisioning ............................................................................................. 96
8.4.3 Subscription management ......................................................................................... 104
8.4.4 Policy provisioning ..................................................................................................... 113
8.5 Provisioning of a mobile device that has a SIM card ........................................................ 116
8.5.1 Initial subscription metadata and policy provisioning using OMA DM ....................... 116
8.5.2 Initial subscription metadata and policy provisioning using SOAP XML ................... 119
9. Management objects ............................................................................................................... 121
9.1 PerProviderSubscription MO............................................................................................. 121
9.1.1 Graphical representation ........................................................................................... 121
9.1.2 Node descriptions ...................................................................................................... 124
9.2 DevDetail MO vendor specific extensions ........................................................................ 145
9.2.1 Graphical representation ........................................................................................... 146
9.2.2 Node descriptions ...................................................................................................... 147
Annex A : Messages and definitions ........................................................................................... 152
A.1 OMA DM messages and definitions ................................................................................. 152
A.1.1 Generic Alert (informative) ........................................................................................ 152
A.1.2 Exec command (informative) ..................................................................................... 152
A.1.3 Add command (informative) ...................................................................................... 153
A.1.4 Replace command (informative) ............................................................................... 153
A.1.5 Status Management element (informative) ............................................................... 154
A.1.6 OMA DM elements (normative) ................................................................................. 154
A.2 OMA DM messages – examples (informative) ................................................................. 156
A.2.1 DM package 1 (mobile device to server) ................................................................... 156
A.2.2 DM package 2 (server to mobile device) ................................................................... 158
A.2.3 DM package 3 (mobile device to server) ................................................................... 159
A.2.4 DM package 4 – Exec:getCertificate (server to mobile device) ................................ 159
A.2.5 DM package 3 (mobile device to server) ................................................................... 160
A.2.6 DM package 4 (server to mobile device) ................................................................... 161
A.3 SOAP XML messages and definitions .............................................................................. 162
A.3.1 The sppPostDevData SOAP method ........................................................................ 162
A.3.2 The sppPostDevDataResponse SOAP method ........................................................ 167
A.3.3 The sppUpdateResponse SOAP Method ................................................................. 175
A.3.4 The sppExchangeComplete SOAP Method .............................................................. 176
A.3.5 The getCertificate XML Instance Document ............................................................. 178
A.3.6 Web Services Description Language (WSDL) .......................................................... 179
Used with the permission of Wi-Fi Alliance under the terms as stated in this document.
© 2016 Wi-Fi Alliance. All Rights Reserved.
Page 5 of 207
Wi-Fi Alliance Hotspot 2.0 (Release 2) Technical Specification - Version 1.2
Annex B : Example GAS Query using ANQP Query List and HS Query List (informative) ........ 180
B.1 Example 1: 3GPP Cellular Network and the Operator Friendly Name ............................. 180
B.2 Example 2: Icon Request.................................................................................................. 181
Annex C : SP policy network connection (informative)................................................................ 182
C.1 Example Network Selection Flowchart ............................................................................. 182
C.2 Example Network Selection Scenarios ............................................................................ 183
C.2.1 Network Selection Scenarios Connecting to a Home Network ................................. 183
C.2.2 Network Selection Scenarios in which OI is required ............................................... 185
C.2.3 Network Selection Scenarios with Home SP Policy .................................................. 186
Annex D : Wi-Fi Alliance Vendor-Specific RADIUS attributes (informative)................................ 189
D.1 Wi-Fi Alliance Vendor-Specific RADIUS attribute sub-type formats ................................ 189
D.1.1 HS2.0 subscription remediation needed ................................................................... 190
D.1.2 HS2.0 AP version ...................................................................................................... 190
D.1.3 HS2.0 mobile device version ..................................................................................... 191
D.1.4 HS2.0 deauthentication request ................................................................................ 192
D.1.5 HS2.0 session information URL ................................................................................ 192
Annex E : Standardized OSU registration flow (normative) ........................................................ 194
E.1 General ............................................................................................................................. 194
E.2 OSU Registration Flow ..................................................................................................... 194
E.3 OSU Registration Schema................................................................................................ 195
E.3.1 The RegistrationProtocol element ............................................................................. 195
E.3.2 ServerGroup element group ...................................................................................... 197
E.3.3 ClientGroup element group ....................................................................................... 201
E.3.4 The StatusGroup element ......................................................................................... 204
E.4 XML schema ..................................................................................................................... 206
E.5 Example transaction 1 ...................................................................................................... 206
Used with the permission of Wi-Fi Alliance under the terms as stated in this document.
© 2016 Wi-Fi Alliance. All Rights Reserved.
Page 6 of 207
Wi-Fi Alliance Hotspot 2.0 (Release 2) Technical Specification - Version 1.2
List of Figures
Figure 1: HS2.0 Indication element format .................................................................................... 24
Figure 2: Hotspot Configuration field format .................................................................................. 24
Figure 3: PPS MO ID field format .................................................................................................. 25
Figure 4: ANQP Domain ID field format ........................................................................................ 26
Figure 5: OSEN element format .................................................................................................... 27
Figure 6: Subscription Remediation subelement format ............................................................... 29
Figure 7: Deauthentication Imminent Notice subelement format .................................................. 30
Figure 8: HS2.0 ANQP-element format ......................................................................................... 32
Figure 9: HS Query List ANQP-element payload format ............................................................... 34
Figure 10: HS Capability List payload format ................................................................................ 35
Figure 11: Operator Friendly Name element payload format ........................................................ 35
Figure 12: Operator Name Duple field .......................................................................................... 35
Figure 13: WAN Metrics element payload format .......................................................................... 36
Figure 14: WAN Info field format ................................................................................................... 36
Figure 15: Connection Capability element payload format ........................................................... 37
Figure 16: ProtoPort Tuple format ................................................................................................. 37
Figure 17: NAI Home Realm Query element payload format ........................................................ 39
Figure 18: NAI Home Realm Name Data format ........................................................................... 39
Figure 19: Operating Class Indication element payload format .................................................... 40
Figure 20: OSU Providers list element payload format ................................................................. 40
Figure 21: OSU Provider subfield format ...................................................................................... 41
Figure 22: OSU Friendly Name Duple field format ........................................................................ 41
Figure 23: Icons Available subfield format .................................................................................... 42
Figure 24: Icon Metadata subfield format ...................................................................................... 43
Figure 25: OSU Service Description Duple field format ................................................................ 44
Figure 26: Icon Request element payload format ......................................................................... 44
Figure 27: Icon Binary File element payload format ...................................................................... 44
Figure 28: Example network architecture for online sign up ......................................................... 54
Figure 29: Message exchange diagram for connection to an OSU server ................................... 62
Figure 30: Certificate enrollment message exchange sequence .................................................. 66
Figure 31: Example Service Provider Network with Subscription Servers .................................... 70
Figure 32: Required Mobile Device Management Tree Structure ................................................. 75
Figure 33: Provisioning username/password credentials and policy using OMA DM ................... 77
Figure 34: Provisioning certificate credentials and policy using OMA DM .................................... 80
Figure 35: Message exchange diagram for negotiating client certificates using OMA DM ........... 82
Used with the permission of Wi-Fi Alliance under the terms as stated in this document.
© 2016 Wi-Fi Alliance. All Rights Reserved.
Page 7 of 207
Wi-Fi Alliance Hotspot 2.0 (Release 2) Technical Specification - Version 1.2
Figure 36: Message exchange diagram for machine remediation of username and password
credentials .............................................................................................................................. 84
Figure 37: Message exchange diagram for user remediation of username and password
credentials .............................................................................................................................. 86
Figure 38: Message exchange diagram for machine remediation of certificate credentials ......... 87
Figure 39: Message exchange diagram for user remediation of certificate credentials ................ 88
Figure 40: Message exchange diagram for updating certificate credentials ................................. 89
Figure 41: Message exchange diagram for updating certificate credentials ................................. 90
Figure 42: Message sequence diagram for SP policy provisioning and update when the mobile
device has username and password credentials ................................................................... 91
Figure 43: Message sequence diagram for SP policy provisioning and update when the mobile
device has certificate credentials ........................................................................................... 93
Figure 44: Message exchange framework for credential provisioning and subscription
management using SOAP XML ............................................................................................. 94
Figure 45: Message exchange diagram for username and password credential provisioning using
SOAP XML ............................................................................................................................. 96
Figure 46: Message exchange diagram for certificate credential provisioning using SOAP XML 99
Figure 47: Message exchange diagram for negotiating client certificate using SOAP XML ....... 102
Figure 48: Message exchange diagram for machine remediation of a subscription using
username and password credentials ................................................................................... 104
Figure 49: Message exchange diagram for user remediation of a subscription using username
and password credentials ..................................................................................................... 107
Figure 50: Message exchange diagram for machine remediation of a subscription using certificate
credentials ............................................................................................................................ 109
Figure 51: Message exchange diagram for user remediation of a subscription using certificate
credentials ............................................................................................................................ 110
Figure 52: Message exchange diagram for certificate re-enrollment .......................................... 111
Figure 53: Message exchange diagram for updating certificate credentials ............................... 113
Figure 54: Message sequence diagram for SP policy provisioning and update when the mobile
device has username and password credentials ................................................................. 114
Figure 55: Message sequence diagram for SP policy provisioning and update when the mobile
device has certificate credentials ......................................................................................... 116
Figure 56: Provision/remediation subscription and policy MO using OMA-DM for the SIM case 117
Figure 57: Provision/remediation subscription and policy MO using SOAP XML for the SIM case
.............................................................................................................................................. 119
Figure 58: Graphical representation of PerProviderSubscription MO part 1 ............................... 122
Figure 59: Graphical representation of PerProviderSubscription MO part 2 ............................... 123
Figure 60: Graphical representation of the Vendor specific extension to the DevDetail Standard
MO ........................................................................................................................................ 146
Figure 61: Example OMA DM Generic Alert ............................................................................... 152
Figure 62: Example OMA DM Exec command for subscription creation .................................... 153
Figure 63: Example OMA DM Add command for subscription creation ...................................... 153
Used with the permission of Wi-Fi Alliance under the terms as stated in this document.
© 2016 Wi-Fi Alliance. All Rights Reserved.
Page 8 of 207
相关推荐
2023年江西萍乡中考道德与法治真题及答案.doc
2012年重庆南川中考生物真题及答案.doc
2013年江西师范大学地理学综合及文艺理论基础考研真题.doc
2020年四川甘孜小升初语文真题及答案I卷.doc
2020年注册岩土工程师专业基础考试真题及答案.doc
2023-2024学年福建省厦门市九年级上学期数学月考试题及答案.doc
2021-2022学年辽宁省沈阳市大东区九年级上学期语文期末试题及答案.doc
2022-2023学年北京东城区初三第一学期物理期末试卷及答案.doc
2018上半年江西教师资格初中地理学科知识与教学能力真题及答案.doc
2012年河北国家公务员申论考试真题及答案-省级.doc
2020-2021学年江苏省扬州市江都区邵樊片九年级上学期数学第一次质量检测试题及答案.doc
2022下半年黑龙江教师资格证中学综合素质真题及答案.doc
