On 04/05/2014 09:00 PM, Christian Huitema wrote: > Either TLS or IPSEC for RADIUS will thwart pervasive monitoring.
If someone gains access to the backend database of the RADIUS server then you are unfortunately in trouble. It is also worth noting that both RADIUS and Diameter deployments have lots of intermediaries (as noted in this privacy reviews: http://www.iab.org/wp-content/IAB-uploads/2011/07/ABFAB-privacy-review.txt http://www.iab.org/wp-content/IAB-uploads/2011/07/AAA-privacy-review.txt What you can then see is probably very similar to this: http://www.zeit.de/datenschutz/malte-spitz-data-retention
signature.asc
Description: OpenPGP digital signature
_______________________________________________ perpass mailing list [email protected] https://www.ietf.org/mailman/listinfo/perpass
