Cybersecurity researchers have discovered a critical security vulnerability in RADIUS, a widely used network authentication protocol dating back to the 1990s that’s still in widespread use today.

Overview A vulnerability in the RADIUS protocol allows an attacker allows an attacker to forge an authentication response in cases where a Message-Authenticator attribute is not required or enforced.

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Andrew Harmel-Law and a panel of expert ...

Advanced cryptocurrency solutions for todays blockchain limitations. It's no question that cryptocurrency and the blockchain technology fueling this innovative industry has exploded in recent years.

There's potentially an easy mitigation here, since the access accept response can also provide additional parameters to the RADIUS client, which could be in the form of a VLAN ID, IP Address, Access ...

Developers behind FreeRADIUS, an open source implementation of the networking protocol RADIUS, are encouraging users to update to address an authentication bypass found in the server. Developers ...