The Realization of the RADIUS Security Authentication

摘要

Along with the rapid growth of internet, the importance of safe network authentication becomes more evident than ever before. Cryptography mainly cares about secrecy in communication. Encrypting the transmitting data could prevent others from stealing important information, but this only solves the problem on the one hand, as for how to prevent them from destroying important data would be additional problems. Digital signature is a further application beyond data encryption. Digital signature is always companioned with Hash functions, which is a kernel of modern cryptography. Therefore, the network security authentication based on RADIUS protocol, which can be realized by digital signature, is mainly studied in this paper. During the identification process, RADIUS server sends encrypted bytes to the clients in order to verify their identities, and the clients will encrypt the information using these received bytes. And on the basis of the above work, the authentication scheme grounded on RADIUS protocol is proposed. Because it is the one-way encrypting arithmetic, even though the clients' important information is stolen by means of network embezzlement or illegal invasion to the databases, the one will only get the unidentified encrypted codes. The security of the identified information will be effectively guaranteed by digital signature during the network authentication process.