Wi-Fi Security With RADIUS When setting up a Wi-Fi network at home, you typically set up an SSID and password, accept the defaults for any other options, and be done with it. (In some cases, these are done for you by your servi... Network Security Protocols
RADIUS design for internet service providers (ISPs) More than almost any other business, internet service providers (ISPs) need to provide their customers with fast, reliable internet connection to their computer network. Any downtime can be catastroph... Network Security Best Practices
Network design for multi-site RADIUS systems Some organizations and network operators such as ISPs can use a central RADIUS service for all of their RADIUS needs. This configuration is possible when there are a small number of users, or system l... Network Security Best Practices
Separating Authentication from your RADIUS Accounting server Many ISP networks and enterprise environments handle both Authentication and Accounting functions through the same RADIUS servers anddatabases. While this configuration works well for small and low-lo... Network Security Best Practices Network Security Protocols
DHCP enhancements in FreeRADIUS 3 for high performance As part of our contributions to the FreeRADIUS community, InkBridge Networkstook on the task of overhauling its DHCP support. The result is the same highly flexible and configurable DHCP server, but n... Network Security Protocols
Does FreeRADIUS include a DHCP server? We are happy to announce that FreeRADIUS 3 is now fully compliant with the base DHCP standards . Previous versions supported the base DORA exchange, but lacked some features such as handling Decline p... Network Security Protocols
RADIUS Insecurity RADIUS is almost thirty years old, and uses cryptography based on MD5. Given that MD5 has been broken for over a decade, what are the implications for RADIUS? Why is RADIUS still using MD5? RADIUS sti... Network Security Protocols
Announcing SRADIUS RADIUS has used MD5 for security for almost thirty years. It is time to use a modern alternative: SRADIUS! We just released an Internet-Draft which defines “Secure RADIUS”, or “SRADIUS”. We also have ... Network Security Protocols
Introducing RADIUS 1.1 RADIUS has a problem. The name of the problem is MD5. The MD5 hash algorithm was defined in 1991, and was used in RADIUS in 1993. However, MD5 is no longer secure. It is a bit of a miracle that RADIUS... Network Security Best Practices Network Security Protocols
Why you should separate historical data from live data ISPs and telecoms are often legally required to keep user sessiondata for long periods of time. However, keeping these records can result in enormous databases tables which significantlyaffect the per... Network Security Best Practices Network Security Protocols
Authorized users only: Why use RADIUS and 802.1x to control network access? RADIUS can be an alternative to implementing 802.1x for network access control in complex enterprise environments. Controlling which users and what devices are on your network has become significantly... Network Security Best Practices
Making RADIUS More Secure As we’ve previously discussed, there are several insecure elements in RADIUS. We are currently working in the IETF (Internet Engineering Task Force) to close those gaps and improve security for everyo... Network Security Protocols