More Related Content
Similar to RADIUS Auth+Messaging for Telemetering (memo) (20)
More from Naoto MATSUMOTO (20)
RADIUS Auth+Messaging for Telemetering (memo)
- 2. Payload Analysis RADIUS/MQTT
# radtest -4 1004.4@username:/username/topic/sensor/hPa/ pass X.X.X.X 1812 testing123
# mosquitto_pub -t /username/topic/sensor/hPa/ -m 1004.4 -u username -P pass -h X.X.X.X
SOURCE: SAKURA Internet Research Center. 02/2016
RADIUS Access-Request (155Bytes)
with encrypted password
RADIUS Access-Accept (62Bytes)
MQTT Connect (117Bytes)
with clear-text password
MQTT Publish (103Bytes)
SYN SYN
ACK
ACK
- 3. RADIUS Auth+Messaging
# radtest -4 1004.4@username:/username/topic/sensor/hPa/ pass X.X.X.X 1812 testing123
Internet Protocol Version 4, Src: X.X.X.X, Dst: X.X.X.X
User Datagram Protocol, Src Port: 47455 (47455), Dst Port: 1812 (1812)
RADIUS Protocol
Code: Access-Request (1)
Packet identifier: 0x5d (93)
Length: 113
Authenticator: 82d4a8f122353236088bb1a580b6e729
Attribute Value Pairs
AVP: l=45 t=User-Name(1): 1004.4@username:/username/topic/sensor/hPa/
AVP: l=18 t=User-Password(2): Encrypted
AVP: l=6 t=NAS-IP-Address(4): X.X.X.X
AVP: l=6 t=NAS-Port(5): 1812
AVP: l=18 t=Message-Authenticator(80): 39d2a414ac6e7da3fe630be84bd14bfc
SOURCE: SAKURA Internet Research Center. 02/2016