Search RFCs
RFC 7360
Datagram Transport Layer Security (DTLS) as a Transport Layer for RADIUS,September 2014
Cite this RFC:TXT | XML | BibTeX
DOI: https://doi.org/10.17487/RFC7360
Discuss this RFC: Send questions or comments to the mailing listradext@ietf.org
Other actions:Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 7360
Abstract
The RADIUS protocol defined in RFC 2865 has limited support forauthentication and encryption of RADIUS packets. The protocoltransports data in the clear, although some parts of the packets canhave obfuscated content. Packets may be replayed verbatim by anattacker, and client-server authentication is based on fixed sharedsecrets. This document specifies how the Datagram Transport LayerSecurity (DTLS) protocol may be used as a fix for these problems. Italso describes how implementations of this proposal can coexist withcurrent RADIUS systems.
For the definition ofStatus,seeRFC 2026.
For the definition ofStream, seeRFC 8729.