Skip to main content

(Datagram) Transport Layer Security ((D)TLS Encryption for RADIUS

Document Type Replaced Internet-Draft (radext WG)
Expired & archived
Authors Jan-Frederik Rieckers , Stefan Winter
Last updated 2023-07-24 (Latest revision 2023-07-10)
Replaces draft-rieckers-radext-rfc6614bis
Replaced by draft-ietf-radext-radiusdtls-bis
RFC stream Internet Engineering Task Force (IETF)
Intended RFC status (None)
Additional resources GitHub Repository
Mailing list discussion
Stream WG state WG Document
Document shepherd (None)
IESG IESG state Replaced by draft-ietf-radext-radiusdtls-bis
Consensus boilerplate Unknown
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


This document specifies a transport profile for RADIUS using Transport Layer Security (TLS) over TCP or Datagram Transport Layer Security (DTLS) over UDP as the transport protocol. This enables encrypting the RADIUS traffic as well as dynamic trust relationships between RADIUS servers.


Jan-Frederik Rieckers
Stefan Winter

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)