| RADIUS协议安全机制研究及改进办法初探 |
| |
| 引用本文: | 兰丽娜,石瑞生.RADIUS协议安全机制研究及改进办法初探[J].信息安全与通信保密,2007(6):118-120. |
| |
| 作者姓名: | 兰丽娜 石瑞生 |
| |
| 作者单位: | 1. 北京邮电大学网络教育学院,北京100876
2. 北电网络(中国)有限公司研发中心,北京100102 |
| |
| 摘 要: | RADIUS协议的安全性是实现Internet网络上AAA功能安全的关键问题之一。文章详细阐述了RADIUS协议特点、报文内容和认证流程;深入分析了RADIUS协议的安全性保护机制:通信双方身份认证,用户口令加密传输;最后指出RADIUS协议在通信可靠性和加密算法安全性方面的不足及改进方法。
|
| 关 键 词: | 身份认证 共享密钥 MD5算法 安全 |
| 文章编号: | 1009-8054(2007)06-0118-03 |
| 修稿时间: | 2006年12月18 |
Research on Security Principle of RADIUS Protocol |
| |
| LAN Lina,SHI Ruisheng.Research on Security Principle of RADIUS Protocol[J].China Information Security,2007(6):118-120. |
| |
| Authors: | LAN Lina SHI Ruisheng |
| |
| Abstract: | The security of the RADIUS protocol is the key for ensuring the AAA function security in Internet.This paper expounds the characteristics,packet contents and authentication procedure of RADIUS protocol,and analyzes in depth the two security principles of RADIUS,(1)prevent the attack from wrong personator by authentication,(2)transfer encrypted password to prevent the password from interception.Finally,it points some flaws of RADIUS protocol,the communication reliability and the MD5 encryption algorithm are not perfect,and also presents the methods to for improvement. |
| |
| Keywords: | RADIUS AAA |
| 本文献已被 CNKI 万方数据 等数据库收录! |
|
