Skip to main content

Transport Layer Security (TLS) Encryption for RADIUS

Document Type Replaced Internet-Draft (radext WG)
Expired & archived
Authors Jan-Frederik Rieckers , Stefan Winter
Last updated 2023-04-25 (Latest revision 2023-03-10)
Replaced by draft-janfred-radext-radiusdtls-bis
RFC stream Internet Engineering Task Force (IETF)
Intended RFC status (None)
Additional resources GitHub Repository
Mailing list discussion
Stream WG state Adopted by a WG
Associated WG milestone
Jan 2024
6614bis and 7360bis to IESG
Document shepherd (None)
IESG IESG state Replaced by draft-janfred-radext-radiusdtls-bis
Consensus boilerplate Unknown
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


This document specifies a transport profile for RADIUS using Transport Layer Security (TLS) over TCP as the transport protocol. This enables dynamic trust relationships between RADIUS servers as well as encrypting RADIUS traffic between servers using a shared secret.


Jan-Frederik Rieckers
Stefan Winter

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)