Presentation is loading. Please wait.

Presentation is loading. Please wait.

RadSec Proxy Stig Venaas RadSec Proxy Generic proxy, any number of UDP and/or TLS clients and/or servers Can run on same host as a.

Published byReynard Wilcox Modified over 8 years ago

Similar presentations

Presentation on theme: "RadSec Proxy Stig Venaas RadSec Proxy Generic proxy, any number of UDP and/or TLS clients and/or servers Can run on same host as a."— Presentation transcript:

1 RadSec Proxy Stig Venaas venaas@uninett.no

2 RadSec Proxy Generic proxy, any number of UDP and/or TLS clients and/or servers Can run on same host as a standard RADIUS server to enable RadSec Could possibly also be e.g. a national proxy server if it at some point is determined to be stable enough First prototype available, several features missing No certificate validation Does not forward accounting messages, no status-server Does not do retransmissions on its own but re-forwards retransmitted queries it receives Some attributes (password/key attributes) need to be re-encrypted by proxy, need to check whether any are missing Plan to support dynamic discovery of RadSec peers if desired These features will be added shortly, but would prefer getting a few people to test basic functionality now Also need to test together with other RadSec implementations

3 Testing Could need some alpha testers before making a public release… Please contact me if you are willing to participate in some early testing the coming weeks Have done several tests on my own, e.g.: Laptop with eduroam WPA with EAP-TLS venaas@venaas.no UNINETT AP uninett.no RADIUS.no RADIUS RadSec Proxy venaas.no RADIUS UDP TLS/IPv6

Download ppt "RadSec Proxy Stig Venaas RadSec Proxy Generic proxy, any number of UDP and/or TLS clients and/or servers Can run on same host as a."

Similar presentations

RadSec – A better RADIUS protocol

RadSec – A better RADIUS protocol
© Geodise Project, University of Southampton, 2003. Short Message Service Aims Architecture Tools Future Work.

© Geodise Project, University of Southampton, Short Message Service Aims Architecture Tools Future Work.
Enhancing international roaming performance : NAPTR Records in DNS

Enhancing international roaming performance : NAPTR Records in DNS
Chargeable-User-Identity in eduroam. The problem Current eduroam setup provides per-realm granularity The consequences – if a guest misbehaves the SP.

Chargeable-User-Identity in eduroam. The problem Current eduroam setup provides per-realm granularity The consequences – if a guest misbehaves the SP.
Wireless and Switch Security NETS David Mitchell.

Wireless and Switch Security NETS David Mitchell.
Eduroam – Roam In a Day Louis Twomey, HEAnet Limited HEAnet Conference 2006 9 th November, 2006.

Eduroam – Roam In a Day Louis Twomey, HEAnet Limited HEAnet Conference th November, 2006.
Multihop Federations draft-mrw-abfab-multihop-fed-01.txt Margaret Wasserman

Multihop Federations draft-mrw-abfab-multihop-fed-01.txt Margaret Wasserman
Hands-On Microsoft Windows Server 2003 Networking Chapter 7 Windows Internet Naming Service.

Hands-On Microsoft Windows Server 2003 Networking Chapter 7 Windows Internet Naming Service.
DNS: Revising the Current Protocol Matt Gustafson Matt Weaver CS522 Computer Communications University of Colorado, Colorado Springs.

DNS: Revising the Current Protocol Matt Gustafson Matt Weaver CS522 Computer Communications University of Colorado, Colorado Springs.
Introducing Wimba Pronto* Connect with Blackboard * Please note that currently Pronto is in a “trial status”. To be made available within a course, the.

Introducing Wimba Pronto* Connect with Blackboard * Please note that currently Pronto is in a “trial status”. To be made available within a course, the.
Email By Laura Trawin.

By Laura Trawin.
Microsoft Windows Server 2003 TCP/IP Protocols and Services Technical Reference Slide: 1 Lesson 20 RADIUS and Internet Authentication Service.

Microsoft Windows Server 2003 TCP/IP Protocols and Services Technical Reference Slide: 1 Lesson 20 RADIUS and Internet Authentication Service.
Replay Debugging for Distributed Systems Dennis Geels, Gautam Altekar, Ion Stoica, Scott Shenker.

Replay Debugging for Distributed Systems Dennis Geels, Gautam Altekar, Ion Stoica, Scott Shenker.
PKI Network Authentication Dartmouth Applications Robert Brentrup Educause/Dartmouth PKI Summit July 27, 2005.

PKI Network Authentication Dartmouth Applications Robert Brentrup Educause/Dartmouth PKI Summit July 27, 2005.
Windows 2003 and 802.1x Secure Wireless Deployments.

Windows 2003 and 802.1x Secure Wireless Deployments.
Initiator Where is the XMPP Server? DNS Server DNS SRV Lookup Location of XMPP Server.

Initiator Where is the XMPP Server? DNS Server DNS SRV Lookup Location of XMPP Server.
Connect. Communicate. Collaborate Combining RADIUS with Secure DNS for Dynamic Trust Establishment between Domains Henk Eertink †, Arjan Peddemors †, Roy.

Connect. Communicate. Collaborate Combining RADIUS with Secure DNS for Dynamic Trust Establishment between Domains Henk Eertink †, Arjan Peddemors †, Roy.
Resource Allocation using Java RMI Amrish Kaushik Minal Malde CS599-Grid Computing Project Report USC Computer Science.

Resource Allocation using Java RMI Amrish Kaushik Minal Malde CS599-Grid Computing Project Report USC Computer Science.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 7: Transport Layer Introduction to Networking.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 7: Transport Layer Introduction to Networking.
70-411: Administering Windows Server 2012

70-411: Administering Windows Server 2012

Similar presentations

Ads by Google