Abstract: The paper analyses the security control and security measure carried out by shared secret and authenticator, which is used in RADIUS protocol. It indicates that the RADIUS protocol still exist several security leaks. It introduces the improvement solutions aiming at the security leaks in carrying out of RADIUS server. It makes up the security shortcomings of RADIUS protocol on a certain extent and makes the RADIUS server meet the requirement of application better.

Key words: RADIUS, Shared secret, Authenticator, Security

摘要： 对RADIUS协议所采用的通过共享密钥、认证码等实现的安全措施进行分析，指出其仍然存在的多方面的安全漏洞。在实现中针对RADIUS协议的安全漏洞采取可能的改进措施，在一定程度上弥补了RADIUS协议安全性上的不足，使实现的RADIUS服务器端更好地满足了实际应用的需要。

关键词: RADIUS, 共享密钥, 认证码, 安全性