Chapter 8. The Security of RADIUS

Previous page
Table of content
Next page

It's a little ironic that I'm devoting a chapter (albeit shorter than the others) to the security shortcomings of the RADIUS protocol, but it's something that needs doing. Unfortunately, RADIUSa protocol designed from the outset to provide security so that only authorized users can take advantage of resources offered to a large group of peoplehas security problems, and some are actually quite serious.

The most prominent security vulnerability is rooted in RADIUS's wide use. It enjoys support from a number of network equipment vendors and is found in nearly all Internet service providers and corporate dial-up implementations . This popularity, however, is a double-edged sword. Security vulnerabilities in the core RADIUS protocol leave thousands upon thousands of systems open to compromise. Further, major changes can't be made to the core protocol, because that would run the risk of breaking compatibility with those same thousands upon thousands of systems that run RADIUS.

In this chapter, I'll discuss these vulnerabilities, offer some workarounds that protect your systems better, and close with a commentary from a security analyst on why users of RADIUS should push for minor protocol changes.


Previous page
Table of content
Next page
Radius
Radius
ISBN: 0596003226
EAN: 2147483647
Year: 2005
Pages: 89
Authors: Jonathan Hassell
BUY ON AMAZON
Agile Project Management: Creating Innovative Products (2nd Edition)
Introducing Microsoft Office InfoPath 2003 (Bpg-Other)
FileMaker Pro 8: The Missing Manual
Cisco IOS Cookbook (Cookbooks (OReilly))
The Lean Six Sigma Pocket Toolbook. A Quick Reference Guide to Nearly 100 Tools for Improving Process Quality, Speed, and Complexity
Microsoft Office Visio 2007 Step by Step (Step By Step (Microsoft))
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy