RADIUS(Remote Authentication Dial In User Service)
RADIUS is one of the authentication tool. When we can't verify users inside of the system, We can have RADIUS server. Once we send the authentication request to the RADIUS server, then the server authenticates it and replies the result.
RADIUS works on wireless networking, mail services and verious type of networks with UDP protocol.
RADIUS has three main functions, called AAA (is the meaning of Authentication, Authorization, Accounting).
Authentication means authenticate users who accesses the network.
Authorization is the meaning of giving the authority to the user who uses the network.
and Accounting is the meaning of measuring the time of call, and accounting it to the user. (get a charge from the user.)
Let's see this table.
RADIUS Client ------- Access Request ---------------------> RADIUS server
<-----------------------Access Accept-------
<-----------------------Access Reject -------
<-----------------------Access Challenge ---- (one of those three)
First, the client send RADIUS request with Username/Password or certifications.
and get the response from the RADIUS server among those three:
Access Accept : Accept the access of user
Access Challenge : Require the PIN or Token beside of the information already get from the client.
Access Reject : Reject the access because of failure.
And this is the table for Accounting.
RADIUS Client ------- Accounting Request ---------------------> RADIUS Server
<---------------------Accounting Response-------
RADIUS Server checks the time of usage.
'Information Security > Information.Security' 카테고리의 다른 글
| VoIP attack (0) | 2012.05.24 |
|---|---|
| SHA (Secure Hash Algorithm) (0) | 2012.04.16 |
| Install Asterisk with TLS (1) | 2012.04.16 |
| Openssl- How to set the ciphers? (0) | 2012.04.16 |
| Openssl (0) | 2012.04.16 |