 |
|
|
|
|
|
|
|
|
|
|
|
|
|
 |
|
||||||||||||
 |
 |
 |
|
||||||||||
 |
|
||||||||||||
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
|
||
 |
 |
 |
 |
|
|||||||||
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
 |
 |
 |
 |
|
News from OSC Radiator supports SecureOTP Open System Consultants (OSC) has successfully tested Radiator with the SecureOTP server from SecureMetric. SecureMetric (www.securemetric.com) offers a range of authentication tokens and technologies. SecureOTP is their token-based 1 or 2 factor authentication system, offering both time and event based tokens, with or without PINs. The Secure Metric OTP Server includes a RADIUS server, and Radiator can be used to proxy some or all requests to the SecureMetric OTP Server RADIUS Server. Our software now includes a sample Radiator configuration file and detailed instructions about how to install and configure the SecureOTP demo server that comes with 2 sample tokens. Radiator supports WiKID 2 Factor authentication We have recently completed interoperation testing between Radiator and the WiKID Enterprise RADIUS Server. WiKID is 2 Factor authentication system from WiKID Systems (http://www.wikidsystems.com/). The WiKID Strong Authentication System is a patented
dual-source, software-based two-factor authentication system designed
to be less expensive and more extensible than hardware tokens. We have added a sample configuration system to the Radiator
distribution showing how you can proxy a selected realm to WiKID, while
authenticating other realms locally within Radiator (this is a common
technique for migrating users from one token system to another). New Radiator RADIUS implementation
at Monash University handles peak loads and future
demands Open System Consultants (OSC) has recently completed a major project for Monash University in Australia to redesign the university network access control system. Monash has eight campuses including one in Malaysia and one in South Africa, and a centre in Prato, Italy. An energetic and dynamic university, Monash is committed to quality education and research and in 2009 had over 56,500 enrolled students and 7,200 staff. The Radiator RADIUS server from OSC is the central component of the University's system which controls access to the wireless network on Monash's Australian campuses. The system is also used to control external remote VPN access, guest access for visiting Eduroam users and contractors, and user credential verification for internet access as part of the 802.1x wireless authentication and via a web portal on the wired network. The Monash campus networks comprise some 1100 wireless access points and 45,000 ethernet wired ports. The Radiator system must be capable of sustaining peak RADIUS request rates of 6000 per minute during the morning rush as students and staff arrive at the beginning of each day. User credentials are stored in both SUN ONE Directory Server and Microsoft Active Directory, and an SQL database is used to store RADIUS accounting records and to maintain a list of current active network sessions. There are two hardware Cisco load balancers distributing the RADIUS requests across four Radiator hosts, each running multiple instances of Radiator. Each Radiator host has a "front end" instance and multiple duplicated "back end" instances to provide controlled parallel processing of the AD and LDAP lookups. Eduroam RADIUS requests are proxied to the Australian Eduroam servers. The Radiator hosts are dual CPU VMware virtual machines running Redhat Enterprise Linux. Open System Consultants successfully redesigned the Monash network authentication service within the 10 day contract period. The new service can now handle the morning point authentication loads, is capable of being easily scaled in the future through the increase of servers to the farm and additional EAP types are now supported. This new Radiator RADIUS implementation will allow
Monash to support a greater number of PDA's, smart phones and presents
an opportunity to begin the migration of their wired network to 802.1x
network authentication. Myles Fenton,
Project Manager, Network Infrastructure Services, Monash University, Australia Radiator now supports OATH TOTP Radiator RADIUS server now supports TOTP, a new open specification time-based one-time-password protocol, recently developed by OATH (Initiative for Open AuTHentication, http://www.openauthentication.org) TOTP is a time-based authentication protocol, and is designed for use in time-based 2 factor tokens and other similar authentication processes. It uses the well-known SHA-1 hash function, along with a secret key and a timestamp. The specification is completely open and free and is the result of community collaboration with OATH. Radiator's new TOTP authentication module supports optional
PIN/static password, brute force attack detection and many other configurable
features. Radiator's TOTP joins the OATH HOTP (event-based
one-time-password) support that already ships with Radiator, and reinforces
OSC's support for open specification authentication protocols. Radiator helps link PNG to Eduroam global federation
Open System Consultants has joined forces with AARNet, Australia’s Academic and Research Network and Queensland University of Technology (QUT) to connect Papua New Guinea with the Internet via satellite to the rest of the world. The wireless network connects to the eduroam federation and is designed to provide roaming network access across PNG's research and education networks. The geographical spread and remoteness of institutions on PNG's network requires its internet connections to be made by satellite. "The collaboration and contributions in kind from AARNet, Queensland University of Technology and Open System Consultants will advance research and education opportunities between Papua New Guinea and the rest of the world," said AARNet CEO, Chris Hancock. For more information, please see http://www.aarnet.edu.au/News/2010/02/01/AARNet-eduroam-Papua-New-Guinea.aspx RAmin user management now supports YubiKey tokens RAdmin is OSC's web-based RADIUS User Management package for Radiator RADIUS server and it now supports YubiKey One-Time-Password tokens from Yubico (www.yubico.com). YubiKeys can be imported into RAdmin, allocated to users and then Radiator can authenticate those users using their token for authentication credentials. All the user management functions to do with users and tokens are available in RAdmin including static passwords if required. Adding new YubiKeys is particularly straight-forward - a single click will initialise and import a new token into RAdmin. Radiator, RAdmin and YubiKeys together provide the complete,
flexible, inexpensive and secure One or Two Factor token authentication
solution. Integrating a hotspot with a proprietary hotel
PMS - Radiator saves the day once again OSC Agent AIR Networks integrated a hotel hotspot setup based on a MikroTik RouterOS gateway where guests log in using their room number and reservation code, with access being billed to the room. The proprietary hotel Property Management System (PMS) did not have any built in modules to communicate with hotspot gateways so -together with the PMS developers- they adapted Radiator to communicate with the PMS for authentication and accounting using CSV files. "Having used Radiator before, our first choice was to implement it again, but we looked around anyway to see if there was a simpler way of doing the integration. In the end, Radiator gave us the simplest, lightest and most scalable solution we could build. Ironically, such a simple setup was only possible using Radiator. Other RADIUS servers get lost in their own complexity, in fact most of them cannot handle plaintext/CSV files!" Andrea Coppini, AIR Networks, Malta. Radiator RADIUS selected for Wi-Fi Alliance certification
program Open System Consultants is delighted to announce that Radiator RADIUS server has been selected by the Wi-Fi Alliance® as part of its Wi-Fi CERTIFIED™ test suite. Wi-Fi® technology has
become a mission critical part of many enterprise networks and the WiFi
Alliance Wi-Fi CERTIFIED program provides a widely-recognized designation
of interoperability and quality for Wi-Fi Radiator is now an important part of the Wi-Fi CERTIFIED testing process, and products that pass the Wi-Fi CERTIFIED program are proven to work with Radiator as well as other Wi-Fi CERTIFIED devices and software. "The inclusion of Radiator RADIUS Server in the test suite provides assurance that Wi-Fi CERTIFIED solutions work in the widest variety of network environments. Radiator's selection by the WiFi Alliance is a testament to our commitment to interoperability and portability.", says Mike McCauley, Chief Technologist at Open System Consultants. There are now seven EAP types included in WPA2 Enterprise testing: EAP-TLS, EAP-TTLS/MSCHAPv2, PEAPv0/EAP-MSCHAPv2, PEAPv1/EAP-GTC, EAP-SIM, EAP-FAST and EAP-AKA. For more see: http://wi-fi.org/pressroom_overview.php?newsid=817 Wi-Fi® and Wi-Fi Alliance® are registered
trademarks of the Wi-Fi Alliance; Wi-Fi CERTIFIED™ is a trademark
of the Wi-Fi Alliance. Radiator supports HOTP OSC is pleased to announce that Radiator RADIUS server now supports HOTP (An HMAC-Based OTP Algorithm - RFC 4226). This public specification for doing One time password authentication has been developed by the industry body OATH (Open AuTHentication) who have specified a number of open technologies for authentication. With HOTP support comes the benefits of open specifications, easy integration with existing RADIUS infrastructure and compatibility with a number of token and other methods of authentication. YubiKey and Radiator RADIUS server deliver flexible,
cost-effective, standards based, 2 factor authentication OSC is delighted to announce that Radiator RADIUS server supports YubiKey - a revolutionary USB authentication key, so small that it easily fits on a key ring. Developed by Yubico, it is very easy to use: a one time password is automatically typed at the press of a button, and it works across any type of client (PC, Mac, Linux) without any driver installation or configuration. OSC's chief technologist, Mike McCauley predicts: "Yubico's
commitment to open standards and inexpensive tokens will revolutionise
the 2 factor authentication industry". Radiator and YubiKey provide
secure authentication and single sign-on in a wide variety of environments
in the most affordable manner to date. See the demo. 11 years of continuous growth as Radiator 4.4 released
OSC is pleased to announce release 4.4 of Radiator RADIUS server. Over its 11 year history, Radiator has achieved a global reputation as the most flexible and configurable RADIUS server available. From humble beginnings when the reference manual was only 50 pages, Radiator now includes the latest developments for WiMAX and 802.1X support and leading edge technologies such as RadSec, EAP-FAST, EAP-PSK - all clearly and concisely detailed in 350 pages. To see what's been added to the software lately, check the revision history. Radiator is the RADIUS server of choice for 1000s of Carrier class, Enterprise, Corporate, Academic, Public and Private Business customers in every region of the world. See an illustrative list of Customers. Open System Consultants representative
for XpressConnect Network Access Wizard XpressConnect (TM) is a lightweight, dissolving wizard, customised by the network administrator, which automates the configuration process, resolves software conflicts, and assists the user in accessing their secure network. As an industry-first solution developed by Cloudpath Networks, XpressConnect offers scalable, sustainable support of secure networks. XpressConnect is ideal for universities, organisations
and institutions where timely and secure network access is a constant
demand: "Cloudpath Networks is pleased to have Open System
Consultants as a partner and as the representative for our technology
in the Australia and New Zealand region." Click here for more information. Open System Consultants Now
Certified with Latest Version of RSA SecurID System Open System Consultants has completed the RSA Secured certification between the Radiator RADIUS Server product and the RSA SecurID® two-factor authentication system from RSA®, The Security Division of EMC (NYSE: EMC). "This certification renews our technical partnership and increases security for our mutual customers with new features, a broader range of authentication methods, and additional platform support," according to OSC's Chief Technologist Mike McCauley. Radiator RADIUS server's new authentication module now leverages the newest version of RSA Authentication Manager (Version 7.1), the software engine that powers RSA SecurID, and continues interoperability with the previous version of RSA Authentication Manager (Version 6.1). The Radiator RADIUS server's new authentication module now interoperates with the RSA Authentication Manager v7.1 Web Services API for two-factor authentication capabilities, including RSA On-Demand Authentication for delivery of One-Time Passwords by email or SMS and using customisable security questions. The new Radiator AuthByRSAAM module supports all functionality of the RSA SecurID system, running on all platforms for wired, wireless, dialup and VPN networks. Radiator is as certified "RSA SecurID ready". "We are pleased that Open System has achieved interoperability between the latest version of RSA SecurID technology and their Radiator RADIUS Server product as it is more critical than ever for our customers to increase the security and integrity of their valuable information," said D.J. Long, Senior Director, Corporate Development at RSA. "Our organizations are committed to mitigating risk to sensitive information throughout its lifecycle to ensure that it is always an asset and not a liability." About the RSA Secured Partner Program RSA, Secured, and SecurID are registered trademarks or
trademarks of RSA Security, Inc. in the U.S. and/or other countries. EMC
is a registered trademark of EMC Corporation. All other company and product
names may be trademarks of their respective owners. Radiator is certified RSA "SecureID ready".
Radiator available as a Solaris Package Radiator RADIUS server is now available as a Solaris package. This makes for easy installation of Radiator on any Solaris platform. Solaris 8, 9 and 10, SPARC and Intel, 32-bit and 64-bit platforms are supported. The Solaris package is available to licensees and evaluators on the Radiator downloads page. OSC is a member of the Sun[sm] Partner Advantage Program and Radiator is Solaris Ready.
More WiMAX features supported
by Radiator Radiator RADIUS server has supported WiMAX authentication and key generation and WiMAX DCHP server key generation for some time. We have now added support for 2 new features: RadSec now supported by LANCOM
access points Open System Consultants (OSC) developed RadSec in 2005 in response to the well-known vulnerabilities of RADIUS authentication and transportation over WANs and the internet. LANCOM Systems has now released support for RadSec in LANCOM devices both in client and server mode. According to Jan Buis, LANCOM Director International Sales, "RadSec was implemented to obtain better security support between these network elements. These high-end security needs came in particular from industries such as Industrial, Outdoor networks, Automotive and Banking/Financials." To overcome, RADIUS' rather weak protection and privacy,
RadSec builds a cryptographically secure tunnel between RADIUS client
and server. The tunnel is built with proven technologies (SSL/TLS, X.509
certificates) and provides: With the implementation of RadSec in LANCOM's network components, Radiator RADIUS server ensures the critical business need for secure network access and transport. LANCOM Systems GmbH is the leading German vendor of business-standard wireless LAN technology for indoor & outdoor use, and of secure internet access and multiple-site networking solutions based on fixed and mobile technologies. More information at: www.lancom.EU
or www.lancom-systems.com eduroam expands across Canada
After a successful pilot project within British Columbia universities (BCNET), Canada eduroam is evolving into a cooperative Canada-wide service that links to a growing global eduroam community of over 450 institutions across 25 countries in Europe, Asia and Australia. BCNET has been using Radiator RADIUS server to bring eduroam to British Columbia since 2005 and it now maintains Canada eduroam's national radius servers on behalf of the umbrella organisation CUCCIO-CDPIUC. In May 2008, Canada eduroam was connected to master RADIUS servers around the world and since then, higher education institutions across British Columbia, Alberta, Saskatchewan and Ontario are joining up. With Radiator RADIUS server and RadSec ensuring secure
internet access and transportation, it is now possible for Canadian students,
staff, researchers and faculty to access wireless Internet services when
they travel across Canada and abroad without the need for obtaining a
guest account. Radiator supports RSA's Authentication Manager
7.1 Radiator has a new authentication module that supports RSA Authentication Manager V7.1. This version has many new features and a broader range of authentication methods: - the traditional token-based 2 factor passwords The new Radiator AuthByRSAAM module supports all these features, running on all platforms for wired, wireless, dialup and VPN networks. The new module extends and enhances the features previously offered by AuthByACE and AuthByRSAMOBILE allowing an even wider range of configurable authentication methods. Radiator is certified RSA "SecureID ready". With RadSec, Radiator ensures secure, reliable
RADIUS authentication for eduroam federation Eduroam (EDUcation ROAMing) allows students and staff visiting other participating institutions to get network access simply by using the same username and password from their home institution. With RadSec, Radiator ensures reliable transportation and security of authentication data throughout the eduroam RADIUS federation. Eduroam is in operation extensively throughout Europe and increasingly in Canada and Australia. AARNet (Australia's Academic and Research Network) is using Radiator with RadSec to demonstrate the convenience of eduroam for administering guests' and visitors' access to the host's network. James Sankar, Director, Applications & Services,
AARNet says that "your solution offers our team an easy and flexible
solution to take out on the road to promote eduroam." Radiator and RadSec at hands-on Eduroam/AARNet
workshop OSC is participating in a wireless/eduroam configuration workshop conducted by AARNet to encourage greater awareness, adoption and use of eduroam throughout Austalia. Mike McCauley will demonstrate Radiator RADIUS server and RadSec at a hands-on technical session where participants configure their own wireless access point and Radiator to work within a simulated RADIUS federation. Details at http://www.aarnet.edu.au/Article/EventDetail.aspx?p=65&id=73 Radiator certified with Micros-Fidelio's
Opera OSC is pleased to announce the certification of Radiator RADIUS server by Micros-Fidelio for their Property Management System (PMS) Opera. Opera is one of the most widely used property management systems in hotels, restaurants, cruise ships and other hospitality points of sale. Radiator has undergone intensive vendor testing and has achieved compatibility certification from Micros-Fidelio. Using the guest's Room Number or Guest Number for example, Radiator provides authentication for and accounting data on internet use and other online guest services. With this new support, system integrators and engineers
can build hotspot and guest wireless and broadband services for direct
billing to one of the most widely used hotel management and billing systems
in the world. Radiator bundles with Arch Red Guest Server for
easy administration of temporary network access Open System Consultants (OSC) and Arch Red Oy, Finland, announce a new partnership between OSC's Radiator RADIUS server and Arch Red Guest Server. This product bundle, where Arch Red Guest Server utilises Radiator RADIUS server, provides easy administration of temporary network access for small or large numbers of guest users such as contractors and visitors to your WLAN network. The Guest Server offers three possible roles for adding guests: easy, basic and administrator - with differing privileges and user interfaces to cater for different user groups. Guest accounts are added via a web-based interface or a selection of office program formats. "Arch Red chose Radiator as our RADIUS server component because of its excellent interoperability and feature set as well as its exemplary support and flexibility to be adapted and connected to various different authentication systems and environments." CTO Karri Huhtanen, Arch Red Oy, Finland.
Radiator once again the core RADIUS server at Interop Las Vegas April 27 - May 2, 2008 As in previous years, Radiator RADIUS server once again provides the main RADIUS router in the Interop iLabs at Interop Las Vegas April/May 2008, directing RADIUS requests to a number of other free and commercial RADIUS servers used for specific demonstrations. The iLabs is a test site for the IT infrastructure industry's newest technologies and provides practical education and information to the Interop community on standards-based networking technologies. The flexibility of Radiator enables the seemless integration of multiple authentication and network devices in this multi-vendor environment. Radiator demonstrates cross-platform TNC support at Interop April/May 2008 Radiator RADIUS server demonstrates Trusted Network Connect (TNC) standard cross-platform support with XSupplicant client software at Interop Las Vegas April/May 2008. TNC is the emerging standard for assessing the security of network clients before they can connect to a network. This is of great value to Network administrators from educational institutions, government organisations and corporations who have to ensure secure access to their networks. OSC joins Sun Partner Advantage Program OSC is a member of the Sun[sm] Partner Advantage Program
and Radiator RADIUS server is Solaris Ready. Participation in the Sun
Partner Advantage Program entitles ISVs such as OSC to a wide range of
Sun offerings that support product porting and migration, technical assistance
and joint marketing. For more details, see http://partneradvantage.sun.com/ Radiator works with Coova - the open source captive portal for wireless hotspot management Febrary 2008 OSC has successfully tested the CoovaAP hotspot against
Radiator RADIUS server. CoovaAP is a self contained RADIUS capable Wireless
Access Point and captive portal - and its open source. For those interested
in hotspots and captive portals, especially with RADIUS authentication
check out coova.org 10th Anniversary Release - Radiator 4.0 with web
based GUI 10 years after Radiator was first launched, OSC is delighted to announce Radiator RADIUS Server Release 4.0. Over those years, Radiator has achieved a global reputation as the most flexible and configurable RADIUS server available. This 10th anniversary version contains some significant new features. The new web based configuration and monitoring GUI provides a point and click interface to configure all aspects of Radiator 4.0. It can also be used to monitor intervals, get logs, diagnose problems and retrieve statistics. Now it's even easier to get up and running with Radiator especially for those not as comfortable with command line and text configuration files. Radiator 4.0 also includes alpha WiMAX support, improved duplicate detection and support for EAP-FAST. For all the details, see the history file at: http://www.open.com.au/radiator/history.html OSC announces support for WiMAX in Radiator
WiMAX is an exciting new broadband wireless technology and OSC is delighted to announce support for WiMAX in the upcoming Radiator RADIUS server 4.0 release. "OSC is proud to be part of the wireless broadband revolution" says Chief Technologist Mike McCauley. "Radiator will play a significant part in bringing WiMAX to many carriers and vendors around the world". WiMAX is a complete mobile data system that provides high speed mobile voice and data to metropolitan and regional customers. WiMAX includes mobile and fixed stations and infrastructure for authentication, roaming and accounting. More information from WiMAX Forum Radiator finds the Winner in phone-in competitions
In our series on interesting Radiator RADIUS server applications is a story about a telephone caller prize system which is used by television and radio stations for things like "if you are the 15th caller, You Win!!". The front end is a Cisco router with IVR (interactive voice response) capabilities, configured to answer calls and prompt the caller for the answer to the question or whatever, then forward a RADIUS request with a specially formatted username attribute to Radiator. Radiator is configured with Handlers to match the specially formatted usernames (a different format for each competition), and in each Handler is a custom AuthBy module with a number of special parameters that describe the particular competion. The custom AuthBy module was developed by the customer, based on the example AuthBy modules provided with Radiator. The system has been in use for a number of years
and works perfectly! OSC wins Cold Coast Business Excellence Award
OSC is delighted to receive another award, this one from the Gold Coast Business Excellence Awards, which recognises the strength and integrity of the Gold Coast business sector and rewards those who contribute to its success. The award acknowledges the significant achievement of OSC in selling its flagship product Radiator RADIUS server and other software and services to telecommunications and other public and private network service providers around the world.
For more information: OSC wins ICT Export Award OSC today received the Premier of Queensland's Export Award in the ICT (Information Communication Technology) category for the Gold Coast Region for 2007. The award recognises the outstanding success of OSC's flagship product Radiator RADIUS server and other software and services exported from the Gold Coast, Australia to all regions throughout the world. "We are delighted to receive this award" said Managing Director Mike McCauley, "which reinforces our position as a major supplier of software to the world market." For more information: http://www.export.qld.gov.au/dsdweb/v3/guis/templates/content/gui_cue_cntnhtml.cfm?id=58165 Radiator supports EAP-FAST The latest release of Radiator RADIUS server includes support for EAP-FAST - an EAP authentication protocol invented by Cisco. It is similar to TTLS and PEAP, in that it establishes a TLS tunnel over RADIUS, and through the tunnel, inner EAP authentication protocols (such as EAP-MSCHAPV2 or EAP-GTC) can be used to authenticate the user. In contrast to TTLS and PEAP, there is a mechanism for establishing and distributing Protected Access Credentials (PACs) from a RADIUS server to 802.1X supplicants. These PACs are basically reusable keys to allow EAP-FAST sessions to be reestablished securely. RADSEC protocol submitted to IETF The RADSEC protocol takes another step closer to becoming an industry standard. The protocol developed by Mike McCauley, OSC's Chief Technologist has been submitted for IETF (Internet Engineering Task force) standardisation. The draft specification is complete and it has been presented to the IETF RADIUS Extension Working Group with a working demonstration on a device containing a RADSEC client. Mike saw a growing need for the reliable transport and security of authentication data across the internet and developed RadSec as a new feature of Radiator® RADIUS Server. Since then it has been recognised by IP carriers, global roaming partners and open campus projects as a necessary development so that they can proxy RADIUS requests over insecure networks like the internet with confidence. For more information about RadSec, read the whitepaper. New FreeRADIUS compatible module The latest release of Radiator RADIUS server includes an AuthBy FREERADIUSSQL module which works with standard FreeRADIUS SQL databases. This makes for easy migration from FreeRADIUS to Radiator without having to alter the user database or accounting systems. There are a number of freely available user database packages e.g. daloRADIUS that Radiator can inter-operate with. FreeRADIUS users who wish to move to a supported commercial RADIUS server will now find it much quicker and easier. For more information, please email info@open.com.au Mike McCauley Invited Expert on Trusted Computing
Group Mike McCauley, OSC's Chief Technologist, has joined Trusted Computing Group (TCG) as an invited expert. Mike works with the Trusted Network Connect (TNC) working group which is developing open specifications for network security and end point integrity. These specifications will provide network access control which allows network devices to be checked for health and compliance with network security requirements. The working group's membership is made up of representatives from Juniper Networks, Hewlett-Packard, IBM, Microsoft, Intel, Nortel Networks and more. See TCG's website for more details. Mike is keen to ensure the specifications are open and accessible to all operating systems and platforms. He has also developed LIBTNC, an open source library that integrates with the TNC server and client software. Read the whitepaper for more information. OSC's Mike McCauley a founding member of OpenSEA
Alliance OSC's Chief Technologist Mike McCauley is a founding member of the newly formed OpenSEA Alliance. The name stands for Open Secure Edge Access and the group is dedicated to the development and promotion of open source solutions for networking and security. As a developer of both full and open source software as well as an active campaigner of open network access protocols and standards, this is a cause very close to Mike's heart. "The OpenSEA Alliance will promote the proliferation of open source software in the critical areas of networking security and interoperability and is an important and necessary development for the entire industry" says Mike. Read the OpenSEA Press Release for more details. Radiator once again the core RADIUS router at Interop Las Vegas May 21 to 24, 2007 As in previous years, Radiator Radius server once again provided the main RADIUS router in the Interop iLabs at Interop Las Vegas May 2007. With its reliability and flexibility, Radiator handled all authentication requests and directed them to a range of other free and commercial RADIUS servers used for specific demonstrations at iLabs. Radiator and libtnc demonstrated multi-platform TNC support at Interop May 2007 Radiator Radius server and libtnc demonstrated multi-platform Trusted Network Connect (TNC) support with XSupplicant client software at Interop Las Vegas May 2007. Open System Consultants (OSC) has developed libtnc, an open source implementation of TNC open standards for trusted network access control and endpoint integrity. libtnc is an open source library that integrates with the TNC server and client software. See the whitepaper for more information. Radiator features at Interop Las Vegas May 21 to 24, 2007 Radiator will be used extensively to support the Interop iLab education effort at Interop Las Vegas in a number of ways - Radiator will be used as the main RADIUS router in the Interop iLabs, directing Radius requests to a number of other free and commercial RADIUS servers used for specific demonstrations. Radiator is also part of a demonstration of multi-platform TNC support with Radiator, XSupplicant and libtnc. OSC staff will be in attendance at Interop iLabs. Existing Radiator customers can collect their free tshirt at the Interop iLabs booth during the Interop Las Vegas trade show. Version 3.17.1 of Radiator released This version contains some significant new features, and a number of fixes. Amongst the new features are a new load-balancing module that works with EAP TLS, PEAP and TTLS. A number of other minor features and bug fixes were also added. Version 3.17 of Radiator released March 26, 2007 This version contains some significant new features,
and a number of fixes. Amongst the new features are support for authenticating
from Apple Directory Server and Apple Password Server on Mac OSX Server,
permitting Radiator to authenticate wireless and 802.1X users against
native OSX Server user administration tools. Support for a number of new
EAP protocols such as EAP-PSK and EAP-PAX were added. A number of other
minor features and bug fixes were also added. New support for Apple OSX Server authentication
Apple Mac OSX fans will probably like to know that with the kind permission of Aim Systems Inc, Radiator now supports Apple Directory Server + Apple Password Server authentication on OSX Server. The New AuthBy LDAP_APS module allows you to find users by LDAP in Apple Directory Server and to authenticate their password using Apple Password Server. PAP, MSCHAPV2, TTLS-PAP, TTLS-MSCHAPV2 and PEAP-MSCHAPV2 are all supported. This means that Radiator can now be used to authenticate wireless and 802.1X users against standard OSX user administration tools, allowing you to migrate all your OSX security using a common password and infrastructure. Radiator can run directly on the Apple Directory Server + Apple Password Server host or on any remote host (including any Linux or Unix host). The Apple Directory Server could be on the same host as the Apple Password Server or a different one. The new support is included in the latest Radiator patch set and will be included in the forthcoming base release. More press releases... DIAMETER support now available with Radiator RADIUS server Radiator can now act as a DIAMETER to RADIUS gateway. This means that authentication networks can utilise the greater reliability and security provided by DIAMETER within an existing RADIUS infrastructure. The new ServerDIAMETER module allows Radiator to serve DIAMETER authentication requests by converting them to RADIUS requests which can be served internally by Radiator's huge range of authentication methods or proxied to another RADIUS server. Replies are converted to DIAMETER and sent back to the originating DIAMETER node. RADIUS is currently the industry standard for network Authentication, Authorisation and Accounting (AAA) and enormous investment has been made in computer network infrastructure and maintenance by governments, NGOs and commercial organisations throughout the world. But conventional RADIUS traffic can be insecure or easily breached. DIAMETER (RFC 3588, 4005, 4072) is the next generation replacement of the RADIUS protocol and is designed to address these security and reliability shortcomings. "With Radiator, our customers can now handle DIAMETER compatible devices without having to upgrade their entire authentication system", according to OSC's chief technologist, Mike McCauley. "This gives them the flexibility to take advantage of the greater security provided by DIAMETER and send sensitive authentication data over insecure networks with confidence". More Open System Consultants hosts RadiusExpert Wiki OSC, the developer of world-renown Radiator (R) RADIUS server, has established a free resource for the RADIUS user community to collect and share information about configuring and implementing RADIUS protocol devices and software. RADIUS (Remote Authentication Dial-In User Service) is the authentication protocol widely used by ISPs and corporate networks. RadiusExpert:Community Portal at http://www.open.com.au/wiki/index.php/Main_Page will become the repository for all the information that often resides only in the heads of system administrators who manage and maintain the security access and authentication requirements of their networks. "We are providing a public collection point for the invaluable knowledge out there that represents the practical how-to of RADIUS implementation," said Mike McCauley, Chief Technologist from OSC. Anyone can find information about such topics as configuring various RADIUS devices, load balancing with RADIUS servers and wireless authentication tips in the RadiusExpert:Community Portal and contributions from the user community are encouraged. More Open System Consultants develops open source implementation of Trusted Network
Connect standards TNC is an open, non-proprietary architecture that enables the application and enforcement of security requirements for endpoints connecting to a network. The specifications are being developed by Trusted Computing Group (TCG) an industry group formed to develop, define and promote open standards for hardware-enabled trusted computing and security technologies. OSC's Chief Technologist Mike McCauley demonstrated LIBTNC during Interop at Las Vegas in May, 2006 using OSC's Radiator RADIUS server and Xsupplicant, an open source 802.1X client from the Open1x project. The LIBTNC project site is at http://sourceforge.net/projects/libtnc/ More Radiator RADIUS server core component at InteropNet Labs (iLabs) 2005 iLabs is the world's only real-time live interoperability test bed for the latest networking technologies. Radiator was the core component for all RADIUS requests sent through the iLabs network. Radiator then proxied the requests to the appropriate device across the network. This is the second year Radiator was nominated because of its reliability, flexibility and sound reputation in the telecommunications industry. As a vendor neutral product, it interoperates readily with all client hardware and software platforms, operating systems and databases. "iLabs tests the latest security related products against any devices and software that people show up with" said Mike McCauley, chief technologist from OSC, "Radiator has again proven itself up to the challenge". More Open System Consultants Teams with Performance Technologies to Provide GSM
Authentication Secure, Reliable RADIUS. RADIUS is the industry standard for AAA but conventional RADIUS traffic is insecure as usernames and attributes are all in plain text or weakly encrypted. If an insecure network such as the internet is used for transporting this data then eavesdroppers can readily gather sensitive information that could compromise an organisation's security. Furthermore, conventional RADIUS uses the unreliable User Datagram Protocol (UDP) which can lose or drop valuable accounting information. RadSec solves these problems by using industry standard TLS (Transport Layer Security) encryption and a reliable stream protocol with mutual authentication of RADIUS servers. This means that IP carriers, global roaming partners and open campus projects can proxy RADIUS requests over insecure networks like the internet with confidence. The authentication data cannot be tampered with, cannot be sniffed and cannot be lost or misdirected. More For more information about RadSec, read the whitepaper. Radiator Radius server is "Vasco-Ready" Radiator Radius server now authenticates VASCO's Digipass tokens - small hand-held devices that display a one-time time-based password. Radiator uses this password to authenticate access to wired, wireless and dialup networks. Radiator runs on a wide range of hardware/software platforms and operating systems. More Australian Software Vendor Announces Secure
Wireless Authentication Wireless network operators are increasingly concerned about the security of their networks. MAC address authentication and static WEP keys are now seen as too weak for hostile wireless environments. The growing range of 802.1X wireless authentication protocols with dynamic WEP keys enables operators to provide much higher security levels than were previously possible. More Premier computer software site www.perl.com features an interview with Mike
McCauley about Radiator. Open System Consultants Pty Ltd. announced today the release of Radar - a real-time,
interactive graphical tool for remotely monitoring one or more Radiator
Radius servers. Radiator not vulnerable to common Radius security problem Open System Consultants Teams with RSA Security to
Enhance Radiator OSC signs OEM agreement with Encotone Ltd Israel.
Enhancements to world class Radius server add valuable new features. Flexible Radius Server lets ISPs solve authentication problems on any platform. Network
inventory and management system released CATool ™ Private Certificate Authority Software Simplifying Certificate Management for Enterprises and Network Providers. MELBOURNE, Australia - September 21st, 2003 - Organisations looking to ensure another layer of access security for their computer networks will benefit from a new program called CATool. CATool manages the generation of private certificates and allows the CA administrator to issue and recall certificates as required. CATool runs on any Unix based operating system with any web browser and is designed to allow the task of administering certificates to be done easily, at low cost and in house. The program generates private server and client PKI (Public Key Infrastructure) certificates for a variety of applications using the proven integrity of OpenSSL. More |
 |
|
