Out-of-band

The term out-of-band has different uses in communications and telecommunication. In case of out-of-band control signaling, signaling bits are sent in special order in a dedicated signaling frame. D-channel in ISDN is an example of out-of-band and CCS signaling methods.

The word band originates from the term band as used in radio and other electronic communications.

Contents

[hide]

General Usage

In general language, out-of-band refers to communications which occur outside of a previously established communication method or channel.

Here are two very simple, but illustrative, examples:

Telecommunications

Out-of-band communication is the exchange of call control information in a separate band from the data or voice stream, or on an entirely separate, dedicated channel (as in Common Channel Signaling).

Computing

In computer networking, out-of-band data (called "urgent data" in TCP) looks — to the application — like a separate stream of data from the main data stream. This can be useful for separating two different kinds of data. Note that just because it is called "urgent data" does not mean that it will be delivered any faster or with higher priority than data in the in-band data stream. Also beware that unlike the main data stream, the out-of-band data may be lost if the application cannot keep up with it. "Urgent data" notifies the receiving connection that the separate stream is more important than the main stream. Therefore it must first check the separate stream in order to process the main stream normally.

In computer administration, out-of-band management refers to system console access provided, even in the event of primary network subsystem (hard and/or software) failure. This can be done via a console server or with a remote access card (RAC) which has its own processor, memory, battery, network connection, and access to the system bus.

In personal communications, methods other than e-mail (such as telephone or snail-mail) are sometimes called "out-of-band".[1]

When issuing unscheduled patches, e.g., major patches that aren't released on Patch Tuesday, Microsoft refers to these patches as "out of band." However, these patches are still delivered via the same channels through which scheduled patches are delivered, not via a separate channel (or "band") as their use of the phrase might suggest.

Authentication

In authentication, out-of-band refers to utilizing two separate networks or channels, one of which being different from the primary network or channel, simultaneously used to communicate between two parties or devices for identifying a user. A cellular network is commonly used for out-of-band authentication. An example of out-of-band authentication is when an online banking user is accessing their online bank account with a login and a one time password is sent to their mobile phone via SMS to identify them. The primary channel would be the online login screen where the user enters their login information and the second separate channel would be the cellular network. This added layer of security prevents the likelihood of hackers and malware from compromising access to the complete authentication process, however, this method of authenticating a user is known to be vulnerable to man-in-the-middle (MITM) attacks.

See also

References

  1. ^ The Jargon File "Out-of-band", def. 3

This article was originally based on material from the Free On-line Dictionary of Computing, which is licensed under the GFDL.