k3ymπΊHey Mastodon, can you please help me crowd-source a GRC question I have? (pls boost if you don't have the answer)
FIPS 140-3 allows the use of RADIUS over TLS (RadSec) (p. 130), essentially giving a pass to MD5 cryptographic module being used because it is wrapped in TLS.
RFC 9887 (TACACS+ over TLS) was published in December of last year - I am trying to understand if it gets the same exemption as RadSec, since it is wrapping the MD5 within TLS.
#GRC #FIPS #CyberSecurity #halp #helpmeplease #IHateGRC #IHateFIPS