This document discusses integrating RADIUS authentication with network measurement and monitoring. It summarizes that currently, network monitoring is done by polling each component separately and management is done by pushing configurations. However, RADIUS could be used for authentication, accounting, and authorization to create a dialog between network components and collect all usage data centrally. This would allow network data to be combined more easily and administrative access to equipment to be controlled through access levels and roles.
Choosing how to get data from your network and into your monitoring & security tools is just as important as the tools themselves. Implementing Network TAPs (Terminal Access Point) is one of today’s best methods for creating permanent, in-line monitoring ports for your packet analyzers, intrusion detection systems (IDS), data retention compliance devices, and other analytic network tools like Wireshark and Snort.
Building secure, privacy aware, quality Wi-Fi coverage via cooperationKarri Huhtanen
Building secure, privacy aware, quality Wi-Fi coverage via cooperation presentation for MindTrek 2015 ( #mtom2015 ) in Tampere, Finland. The presentation covers an idea to build community Wi-Fi networks by joining existing networks via federated RADIUS authentication just like eduroam, but for all organisations, cities, government organisations, operators and companies regardless if they are commercial or not.
What is Network Function Virtualisation (NFV)?Karri Huhtanen
A presentation about what is the concept and the idea behind Network Function Virtualisation (NFV). Includes introduction to NFV and VNF (Virtualised Network Function) architecture, components and interfaces.
Choosing how to get data from your network and into your monitoring & security tools is just as important as the tools themselves. Implementing Network TAPs (Terminal Access Point) is one of today’s best methods for creating permanent, in-line monitoring ports for your packet analyzers, intrusion detection systems (IDS), data retention compliance devices, and other analytic network tools like Wireshark and Snort.
Building secure, privacy aware, quality Wi-Fi coverage via cooperationKarri Huhtanen
Building secure, privacy aware, quality Wi-Fi coverage via cooperation presentation for MindTrek 2015 ( #mtom2015 ) in Tampere, Finland. The presentation covers an idea to build community Wi-Fi networks by joining existing networks via federated RADIUS authentication just like eduroam, but for all organisations, cities, government organisations, operators and companies regardless if they are commercial or not.
What is Network Function Virtualisation (NFV)?Karri Huhtanen
A presentation about what is the concept and the idea behind Network Function Virtualisation (NFV). Includes introduction to NFV and VNF (Virtualised Network Function) architecture, components and interfaces.
Disobey 2024: Karri Huhtanen: Wi-Fi Roaming Security and PrivacyKarri Huhtanen
Karri Huhtanen's presentation about Wi-Fi Roaming Security and Privacy in Disobey 2024 on the 16th of February 2024 ( https://disobey.fi/2024/profile/disobey2024-154-wi-fi-roaming-security-and-privacy ).
Wi-Fi network security presentations are often about breaking the link level (radio) encryption or deploying evil twin Wi-Fi access points to perform man-in-the-middle attacks. This presentation focuses instead to the security and privacy in Wi-Fi roaming, offloading and federated networks, where there are different issues and vectors to utilise or defend against.
Important things to know before buying a router.pdfTech Guru
In today's interconnected world, a reliable and efficient internet connection is crucial for both personal and professional needs. A router plays a vital role in ensuring a seamless and secure network experience. However, with the myriad of options available in the market, choosing the right router can be a daunting task. To help you make an informed decision, we have compiled a list of important things to know before buying a router. Before that we would like to focus on a few basic knowledge of a router. Let’s deep down into it.
Remote Authentication Dial In User Service is a networking protocol that provides centralized Authentication, Authorization, and Accounting (AAA) management for computers to connect and use a network service.
RADIUS is a protocol for carrying information related to authentication, authorization, and configuration
between a Network Access Server that desires to authenticate its links and a shared Authentication
Server.
RADIUS stands for Remote Authentication Dial In User Service.
RADIUS is an AAA protocol for applications such as Network Access or IP Mobility
It works in both situations, Local and Mobile.
It uses Password Authentication Protocol (PAP), Challenge Handshake Authentication Protocol
(CHAP), or Extensible Authentication Protocol (EAP) protocols to authenticate users.
It look in text file, LDAP Servers, Database for authentication.
Four Keys to Securing Distributed Control Systems and the Industrial IoT
Originally aired November 13, 2014
View On-Demand now: http://event.on24.com/r.htm?e=879027&s=1&k=F51E9DE70EB5A3BA7A0ECB9FB2CFCB66&partnerref=rti
Control systems are at the core of critical infrastructure and industrial applications. These include the power grid, medical devices, manufacturing systems, transportation infrastructure, cars and defense systems.
Because of their essential role and the value of the information they exchange, these systems must be protected from both espionage and sabotage. This is becoming even more imperative as the enabling devices are increasingly connected into the Industrial Internet of Things to improve efficiency and availability.
Securing control systems is particularly challenging because security cannot come at the expense of other fundamental requirements, including reliability, real-time performance, autonomy and interoperability.
This webinar will introduce the new Data Distribution Service (DDS) Security standard, the first standard designed to address security for mission-critical real-time systems. It will review how the DDS standard provides authentication, confidentiality and access control while still satisfying demanding reliability and performance requirements. It will also show how DDS Security can be easily incorporated into existing systems regardless of whether or not they already use DDS.
Speaker: David Barnett, Vice President of Products and Markets
Disobey 2024: Karri Huhtanen: Wi-Fi Roaming Security and PrivacyKarri Huhtanen
Karri Huhtanen's presentation about Wi-Fi Roaming Security and Privacy in Disobey 2024 on the 16th of February 2024 ( https://disobey.fi/2024/profile/disobey2024-154-wi-fi-roaming-security-and-privacy ).
Wi-Fi network security presentations are often about breaking the link level (radio) encryption or deploying evil twin Wi-Fi access points to perform man-in-the-middle attacks. This presentation focuses instead to the security and privacy in Wi-Fi roaming, offloading and federated networks, where there are different issues and vectors to utilise or defend against.
Important things to know before buying a router.pdfTech Guru
In today's interconnected world, a reliable and efficient internet connection is crucial for both personal and professional needs. A router plays a vital role in ensuring a seamless and secure network experience. However, with the myriad of options available in the market, choosing the right router can be a daunting task. To help you make an informed decision, we have compiled a list of important things to know before buying a router. Before that we would like to focus on a few basic knowledge of a router. Let’s deep down into it.
Remote Authentication Dial In User Service is a networking protocol that provides centralized Authentication, Authorization, and Accounting (AAA) management for computers to connect and use a network service.
RADIUS is a protocol for carrying information related to authentication, authorization, and configuration
between a Network Access Server that desires to authenticate its links and a shared Authentication
Server.
RADIUS stands for Remote Authentication Dial In User Service.
RADIUS is an AAA protocol for applications such as Network Access or IP Mobility
It works in both situations, Local and Mobile.
It uses Password Authentication Protocol (PAP), Challenge Handshake Authentication Protocol
(CHAP), or Extensible Authentication Protocol (EAP) protocols to authenticate users.
It look in text file, LDAP Servers, Database for authentication.
Four Keys to Securing Distributed Control Systems and the Industrial IoT
Originally aired November 13, 2014
View On-Demand now: http://event.on24.com/r.htm?e=879027&s=1&k=F51E9DE70EB5A3BA7A0ECB9FB2CFCB66&partnerref=rti
Control systems are at the core of critical infrastructure and industrial applications. These include the power grid, medical devices, manufacturing systems, transportation infrastructure, cars and defense systems.
Because of their essential role and the value of the information they exchange, these systems must be protected from both espionage and sabotage. This is becoming even more imperative as the enabling devices are increasingly connected into the Industrial Internet of Things to improve efficiency and availability.
Securing control systems is particularly challenging because security cannot come at the expense of other fundamental requirements, including reliability, real-time performance, autonomy and interoperability.
This webinar will introduce the new Data Distribution Service (DDS) Security standard, the first standard designed to address security for mission-critical real-time systems. It will review how the DDS standard provides authentication, confidentiality and access control while still satisfying demanding reliability and performance requirements. It will also show how DDS Security can be easily incorporated into existing systems regardless of whether or not they already use DDS.
Speaker: David Barnett, Vice President of Products and Markets
Similar to Connecting the Dots: Integrating RADIUS to Network Measurement and Monitoring (20)
Adding OpenRoaming to existing IdP and roaming federation serviceKarri Huhtanen
The first deployment experiences of adding OpenRoaming functionality to existing IdP and roaming federation service. A presentation presented in the OpenRoaming Implementer's call on the 2nd of November 2022.
My presentation in the Radiator Software's webinar about OpenRoaming, how it works, what are its benefits and how Radiator Software can help to deploy it in your business.
Beyond eduroam: Combining eduroam, (5G) SIM authentication and OpenRoamingKarri Huhtanen
A presentation at FUNET Technical Days 2021 about research projects combining (5G) SIM authentication to eduroam Finland and ongoing work and benefits with OpenRoaming global Wi-Fi roaming in roam.fi or eduroam Finland networks.
Routing host certificates in eduroam/govroamKarri Huhtanen
A presentation for govroam stakeholders' meeting about issuing, configuring and deploying such host client certificates, which can be used in roaming federation networks such as eduroam, govroam, roam.fi, openroaming etc.
A presentation for KyLÄ project opening seminar ( https://projects.tuni.fi/kyla/tapahtumat/avausseminaari/ ) about experiences and lessons learned in building cooperative labs, testbeds and networks.
Privacy and traceability in Wi-Fi networksKarri Huhtanen
Tampere Smart City Week 2021 presentation about recent privacy and traceability developments in Wi-Fi networks and especially about MAC address randomisation and its implications.
Updated, extended presentation how to deploy EAP-TLS based certificate authentication and authorisation solution within organisation or enterprise. In addition to EAP-TLS in general, the presentation also covers some features of Radiator RADIUS server software, which are particularly useful when used with certificates and EAP-TLS. The presentation was originally presented in the JISC govroam stakeholder's meeting 23rd of October 2019 in London, United Kingdom.
Security issues in RADIUS based Wi-Fi AAA (aka WPA2 Enterprise AAA) presentation in alumni seminar for Tampere University of Technology information technology, software engineering and telecommunications alumni at Tampere University of Technology, 13th of October 2018.
If you think they are easy, you are (probably) doing them wrong. A presentation about issues with TLS and X.509 certificates for Tampere security people (TreSec, @TreSecCommunity) meetup on 21st of March 2018.
What is Network Function Virtualisation (NFV)?Karri Huhtanen
An updated presentation (v1.2) about what is the concept and the idea behind Network Function Virtualisation (NFV) for Tampere University of Technology Service oriented architectures course. Includes introduction to NFV and VNF (Virtualised Network Function) architecture, components and interfaces.
Building city and nationwide Wi-Fi coverage via cooperationKarri Huhtanen
Building city and nationwide Wi-Fi coverage via cooperation presents the problem of building yet another overlapping citywide network instead of choosing cooperative approach to connect existing Wi-Fi networks via common policies, configurations and authentication decisions. The presentation promotes expanding eduroam(tm) model from academic world to regional, intercompany and government roaming.
Using NoSQL databases to store RADIUS and Syslog dataKarri Huhtanen
A seminar presentation done for TUT's NoSQL course. A brief look into the possibility and the feasibility of using NoSQL databases to store RADIUS accounting and Syslog data. In this particular case, Syslog-NG, Radiator RADIUS server and MongoDB were used as trial platforms. The presentation includes configuration examples and also some code.
5 minute pitch in Mobile Monday Tampere (#momotre) about the opportunties in cloud based identity management and what is Arch Red's (my company) offering.
Joukkoliikennedatan ongelmat ja ratkaisujaKarri Huhtanen
Avoimen datan talkoissa työryhmämme otti mietittäväkseen joukkoliikennedatan ongelmat. Ryhmän löytämät kaksi ongelmaa ja niiden ratkaisut ovat kuitenkin yleisiä datan tarjoamiseen liittyviä ongelmia ja ratkaisuja, joita kannattaa ainakin miettiä avointa dataa tarjotessa.
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Ramesh Iyer
In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
UiPath Test Automation using UiPath Test Suite series, part 3DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 3. In this session, we will cover desktop automation along with UI automation.
Topics covered:
UI automation Introduction,
UI automation Sample
Desktop automation flow
Pradeep Chinnala, Senior Consultant Automation Developer @WonderBotz and UiPath MVP
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Jeffrey Haguewood
Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows.
We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases.
This video focuses on the notifications, alerts, and approval requests using Slack for Bonterra Impact Management. The solutions covered in this webinar can also be deployed for Microsoft Teams.
Interested in deploying notification automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.
UiPath Test Automation using UiPath Test Suite series, part 4DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 4. In this session, we will cover Test Manager overview along with SAP heatmap.
The UiPath Test Manager overview with SAP heatmap webinar offers a concise yet comprehensive exploration of the role of a Test Manager within SAP environments, coupled with the utilization of heatmaps for effective testing strategies.
Participants will gain insights into the responsibilities, challenges, and best practices associated with test management in SAP projects. Additionally, the webinar delves into the significance of heatmaps as a visual aid for identifying testing priorities, areas of risk, and resource allocation within SAP landscapes. Through this session, attendees can expect to enhance their understanding of test management principles while learning practical approaches to optimize testing processes in SAP environments using heatmap visualization techniques
What will you get from this session?
1. Insights into SAP testing best practices
2. Heatmap utilization for testing
3. Optimization of testing processes
4. Demo
Topics covered:
Execution from the test manager
Orchestrator execution result
Defect reporting
SAP heatmap example with demo
Speaker:
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Albert Hoitingh
In this session I delve into the encryption technology used in Microsoft 365 and Microsoft Purview. Including the concepts of Customer Key and Double Key Encryption.
Neuro-symbolic is not enough, we need neuro-*semantic*Frank van Harmelen
Neuro-symbolic (NeSy) AI is on the rise. However, simply machine learning on just any symbolic structure is not sufficient to really harvest the gains of NeSy. These will only be gained when the symbolic structures have an actual semantics. I give an operational definition of semantics as “predictable inference”.
All of this illustrated with link prediction over knowledge graphs, but the argument is general.
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...UiPathCommunity
💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™:
See how to accelerate model training and optimize model performance with active learning
Learn about the latest enhancements to out-of-the-box document processing – with little to no training required
Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages
This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath.
Speakers:
👨🏫 Andras Palfi, Senior Product Manager, UiPath
👩🏫 Lenka Dulovicova, Product Program Manager, UiPath
DevOps and Testing slides at DASA ConnectKari Kakkonen
My and Rik Marselis slides at 30.5.2024 DASA Connect conference. We discuss about what is testing, then what is agile testing and finally what is Testing in DevOps. Finally we had lovely workshop with the participants trying to find out different ways to think about quality and testing in different parts of the DevOps infinity loop.
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered QualityInflectra
In this insightful webinar, Inflectra explores how artificial intelligence (AI) is transforming software development and testing. Discover how AI-powered tools are revolutionizing every stage of the software development lifecycle (SDLC), from design and prototyping to testing, deployment, and monitoring.
Learn about:
• The Future of Testing: How AI is shifting testing towards verification, analysis, and higher-level skills, while reducing repetitive tasks.
• Test Automation: How AI-powered test case generation, optimization, and self-healing tests are making testing more efficient and effective.
• Visual Testing: Explore the emerging capabilities of AI in visual testing and how it's set to revolutionize UI verification.
• Inflectra's AI Solutions: See demonstrations of Inflectra's cutting-edge AI tools like the ChatGPT plugin and Azure Open AI platform, designed to streamline your testing process.
Whether you're a developer, tester, or QA professional, this webinar will give you valuable insights into how AI is shaping the future of software delivery.
The Art of the Pitch: WordPress Relationships and SalesLaura Byrne
Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes?
All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.
The Art of the Pitch: WordPress Relationships and Sales
Connecting the Dots: Integrating RADIUS to Network Measurement and Monitoring
1. Connecting the Dots:
Integrating RADIUS to Network
Measurement and Monitoring
TREX Workshop 2013
30th of October 2013
!
Karri Huhtanen
(Arch Red Oy, Open System Consultants)
7. RADIUS
Auth.
Network
Management,
Monitoring
Infra
Services
(DHCP,
spread all DNS,
etc.)
• Actual data about network (usage) is
Servers
around.
• Some data may be lost as it is not collected from
sources regularly.
Access devices,
e.g. WiFi controllers,
• Combining data is limited to possibly some
DSLAMs etc. logs.
network availability data and mining
• Administrative access to network equipment,
Devices
servers etc. is not controlled by using access
People
level and roles.
10. How?
Well… among others …
•
RADIUS authentication and
accounting
•
TACACS authentication,
accounting and authorisation
•
Radiator RADIUS server
integration capabilities,
additional dynamic modules
•
AAA/IdM protocol
translation (LDAP, SAML,
etc.)
•
RADIUS/TACACS
proxying/roaming for
federated authentication
•
802.1X access control and
authorisation
•
Various two-factor
authentication solutions
•
Did I mention Radiator
RADIUS server is based on
Perl?
11. More?
my contact information
!
Karri Huhtanen
firstname.surname@archred.com
http://www.archred.com/
!
these and more slides:
http://www.slideshare.net/
khuhtanen/