Presentation is loading. Please wait.

Presentation is loading. Please wait.

May 17, 2006TNC 2006, Catania1 eduroam.us: past, present, future Philippe Hanset University of Tennessee, Knoxville.

Published byCora Warner Modified over 8 years ago

Similar presentations

Presentation on theme: "May 17, 2006TNC 2006, Catania1 eduroam.us: past, present, future Philippe Hanset University of Tennessee, Knoxville."— Presentation transcript:

1 May 17, 2006TNC 2006, Catania1 eduroam.us: past, present, future Philippe Hanset University of Tennessee, Knoxville

2 TNC 2006, Catania2 Credits Working group supported by Internet2 Kevin Miller (Duke University) Chris Misra (U. Massachusetts) Andy Rosenzweig (Merit Network) John Vollbrecht (Merit Network) Jessica Bibbee (Internet2) Steve Olshansky (Internet2) Renee Frost (Internet2) and all the brave semimonthly participants

3 TNC 2006, Catania3 History of edu-roaming  RADIUS proxy used by Merit Network for modem pools  IEEE 802.1x ratified in June 2001 RADIUS proxy for WLAN at University of Utah TERENA creates TF-Mobility in 2003 First eduroam enabled Access-Point in Zagreb (Croatia), May 2003 Internet2 creates FWNA in December 2004 eduroam.us, first International test in April 06 at Internet2 member meeting

4 TNC 2006, Catania4 What is FWNA? An Internet2 working group evaluating: -how 802.1x can be used to roam between institutions (local/global) -the implications of roaming (technology, policies,…)  An experiment that has Root RADIUS servers connected to US based schools as well as Europe and Asian-Pacific R&E networks.  Another name for eduroam.us

5 TNC 2006, Catania5 Why FWNA/eduroam.us ? We had open wireless networks We have been asked to secure those networks  We are now asked to open them again while maintaining an adequate security (visitors)  Somehow guest accounts are not good enough

6 TNC 2006, Catania6 Where is FWNA today Architecture RADIUS hierarchy modeled after eduroam.eu 802.1x only Experimental service in place Top-level servers at UTK and Merit Servers connected to Europe, Asia-Pacific A few US based institutions have joined Top-level tools being developed Web-based registration for connectors RADIUS proxy blocking mechanisms (realm, MAC)

7 TNC 2006, Catania7 The State of EDUROAM

8 TNC 2006, Catania8 Challenges of FWNA (…or challenges of 802.1x!)  No easy method of communication with users (layer2, no portal)  Decentralized and complex troubleshooting, lack of control (no adequate blocking)  AP roaming requires long distance re-auth (partially solved in 802.11i)  Policies are limited (but network control knobs are limited too!)  Low adoption rate of 802.1x in the USA

9 TNC 2006, Catania9 FWNA next steps  Operational:  explore other architectures (RADSec, Diameter, DNSSec)  Improve 802.1x controls from RADIUS (local/global) to NAS (Switch, Wireless AP, …)  Policies:  Stature (Trusted Network Connect (TNC), NAC, NAP)  User Privileges (when in Rome do as the Romans?)

10 TNC 2006, Catania10 Other uses of FWNA Sensornets Sensors may be more “mobile” than people not a EDU-person, but a EDU-gear! What EAP could be used? How additional facts can be provided? the other AAA (Availability, Ability, Authentication)

11 TNC 2006, Catania11 How to join FWNA? Must be willing to experiment; nothing is plug and play Important for experimenters to give feedback by way of pointers, local cookbooks, EAP trial info, etc. If you want to be an experiment site, send email to: salsa-fwna-ops@internet2.edu also visit http://fwna.ns.utk.edu to registerhttp://fwna.ns.utk.edu

12 TNC 2006, Catania12 FWNA info Project website: http://security.internet2.edu/fwna Biweekly Conference Calls Thursdays 11am-12pm Next on 2/23/06 salsa-fwna @ internet2 list “subscribe salsa-fwna” to sympa @ internet2

13 TNC 2006, Catania13 Grazie mille and good luck to: Cunego, Basso, Di luca et cetera ;-)

Download ppt "May 17, 2006TNC 2006, Catania1 eduroam.us: past, present, future Philippe Hanset University of Tennessee, Knoxville."

Similar presentations

Joining eduroam Wireless Roaming for Education and Research.

Joining eduroam Wireless Roaming for Education and Research.
RadSec – A better RADIUS protocol

RadSec – A better RADIUS protocol
Connect. Communicate. Collaborate eduroam: a managed European service Miroslav Milinović, Srce, Zagreb, Croatia eduroam SA, GÉANT2 NORDUnet 2008, Espoo,

Connect. Communicate. Collaborate eduroam: a managed European service Miroslav Milinović, Srce, Zagreb, Croatia eduroam SA, GÉANT2 NORDUnet 2008, Espoo,
Options for integrating the JANET Roaming Service (JRS) and Shibboleth Tim Chown University of Southampton (UK) JISC Access Management.

Options for integrating the JANET Roaming Service (JRS) and Shibboleth Tim Chown University of Southampton (UK) JISC Access Management.
Connect. Communicate. Collaborate eduroam: towards a managed European service Miroslav Milinović, Srce, Zagreb, Croatia eduroam SA, GÉANT2 Wi-Fi Workshop,

Connect. Communicate. Collaborate eduroam: towards a managed European service Miroslav Milinović, Srce, Zagreb, Croatia eduroam SA, GÉANT2 Wi-Fi Workshop,
Terena Mobility Taskforce update Klaas Wierenga SURFnet.

Terena Mobility Taskforce update Klaas Wierenga SURFnet.
Licia Florio EUNIS05, Manchester 1 Eduroam EUNIS Conference, June 22 2005 Licia Florio.

Licia Florio EUNIS05, Manchester 1 Eduroam EUNIS Conference, June Licia Florio.
Connect communicate collaborate Eduroam debugging Gurvinder Singh and Gunnar Bøe, Campus Networks and Systems, UNINETT AMRES Wireless workshop Belgrade,

Connect communicate collaborate Eduroam debugging Gurvinder Singh and Gunnar Bøe, Campus Networks and Systems, UNINETT AMRES Wireless workshop Belgrade,
Why eduroam sucks, and how to fix it.

Why eduroam sucks, and how to fix it.
TF Mobility Group 22nd September 20031 A comparison of each national solution was made against Del C – “requirements”, the following solutions were assessed.

TF Mobility Group 22nd September A comparison of each national solution was made against Del C – “requirements”, the following solutions were assessed.
SALSA-NetAuth SALSA-FWNA BoF Kevin Miller Duke University Internet2 Member Meeting May 2005.

SALSA-NetAuth SALSA-FWNA BoF Kevin Miller Duke University Internet2 Member Meeting May 2005.
Philippe Hanset ANYROAM LLC

Philippe Hanset ANYROAM LLC
10 October 2003 Internet2 members meeting 1 An update on the work of JANET Wireless Advisory Group & The Terena Mobility Taskforce James Sankar UKERNA.

10 October 2003 Internet2 members meeting 1 An update on the work of JANET Wireless Advisory Group & The Terena Mobility Taskforce James Sankar UKERNA.
Www.ja.net/roaming Copyright JNT Association 2006 The JANET Roaming Service.

Copyright JNT Association 2006 The JANET Roaming Service.
EduRoam ESA workshop 17 December 2004 Utrecht.

EduRoam ESA workshop 17 December 2004 Utrecht.
Eduroam – Roam In a Day Louis Twomey, HEAnet Limited HEAnet Conference 2006 9 th November, 2006.

Eduroam – Roam In a Day Louis Twomey, HEAnet Limited HEAnet Conference th November, 2006.
High-quality Internet for higher education and research Federated network access with Klaas Wierenga SURFnet Ljubljana, April.

High-quality Internet for higher education and research Federated network access with Klaas Wierenga SURFnet Ljubljana, April.
SIP roaming solution amongst different WLAN-based service providers Julián F. Gutiérrez 1, Alessandro Ordine 1, Luca Veltri 2 1 DIE, University of Rome.

SIP roaming solution amongst different WLAN-based service providers Julián F. Gutiérrez 1, Alessandro Ordine 1, Luca Veltri 2 1 DIE, University of Rome.
High-quality Internet for higher education and research eduroam EuroCAMP, Porto, November 9, 2005

High-quality Internet for higher education and research eduroam EuroCAMP, Porto, November 9, 2005
EduRoam: movilidad por Europa... y España Toledo, 29 de octubre de 2004

EduRoam: movilidad por Europa... y España Toledo, 29 de octubre de 2004

Similar presentations

Ads by Google