May 17, 2006TNC 2006, Catania1 eduroam.us: past, present, future Philippe Hanset University of Tennessee, Knoxville.

Slides:

Advertisements

Similar presentations

Joining eduroam Wireless Roaming for Education and Research.

Advertisements

RadSec – A better RADIUS protocol

Connect. Communicate. Collaborate eduroam: a managed European service Miroslav Milinović, Srce, Zagreb, Croatia eduroam SA, GÉANT2 NORDUnet 2008, Espoo,

Options for integrating the JANET Roaming Service (JRS) and Shibboleth Tim Chown University of Southampton (UK) JISC Access Management.

Connect. Communicate. Collaborate eduroam: towards a managed European service Miroslav Milinović, Srce, Zagreb, Croatia eduroam SA, GÉANT2 Wi-Fi Workshop,

Terena Mobility Taskforce update Klaas Wierenga SURFnet.

Licia Florio EUNIS05, Manchester 1 Eduroam EUNIS Conference, June Licia Florio.

Connect communicate collaborate Eduroam debugging Gurvinder Singh and Gunnar Bøe, Campus Networks and Systems, UNINETT AMRES Wireless workshop Belgrade,

Why eduroam sucks, and how to fix it.

TF Mobility Group 22nd September A comparison of each national solution was made against Del C – “requirements”, the following solutions were assessed.

SALSA-NetAuth SALSA-FWNA BoF Kevin Miller Duke University Internet2 Member Meeting May 2005.

Philippe Hanset ANYROAM LLC

10 October 2003 Internet2 members meeting 1 An update on the work of JANET Wireless Advisory Group & The Terena Mobility Taskforce James Sankar UKERNA.

Copyright JNT Association 2006 The JANET Roaming Service.

EduRoam ESA workshop 17 December 2004 Utrecht.

Eduroam – Roam In a Day Louis Twomey, HEAnet Limited HEAnet Conference th November, 2006.

High-quality Internet for higher education and research Federated network access with Klaas Wierenga SURFnet Ljubljana, April.

SIP roaming solution amongst different WLAN-based service providers Julián F. Gutiérrez 1, Alessandro Ordine 1, Luca Veltri 2 1 DIE, University of Rome.

High-quality Internet for higher education and research eduroam EuroCAMP, Porto, November 9, 2005

EduRoam: movilidad por Europa... y España Toledo, 29 de octubre de 2004

History Since created in 1995, RADIUS has been used to provide authentication, authorization and generate accounting information for dial-in users. However,

AAA-ARCH IRTF-RG Authentication Authorisation and Accounting ARCHitecture Research Group chairs: C. de Laat J. Vollbrecht Content of this talk has contributions.

Chapter 16 AAA. AAA Components  AAA server –Authenticates users accessing a device or network –Authorizes user to perform specific activities –Performs.

Wireless Security and Accounting with 802.1X. Introduction Background Why 802.1X? What is 802.1X? Implementing 802.1X at UTD The future of 802.1X and.

Cross-Campus WLAN Roaming Environment in Taiwan Che-Nan Yang The National Center for High-performance Computing.

Lecture 12: WLAN Roaming Communities EDUROAM TM. eduroam TM eduroam (education roaming) is the secure, world-wide roaming access service developed for.

Using RADIUS Within the Framework of the School Environment Ed Register Consultant April 6, 2011.

Introduction  Trinity guest network project objective  College wireless network overview  Public wireless/hospitality internet access  Guest network.

MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 9 Network Policy and Access Services in Windows Server 2008.

Wireless ambitions Frans Panken I2 Spring meeting 24 april 2012.

EduRoam Australia Project Experience in location independent wireless networking with international collaboration with TERENA EduRoam Project 19 th APAN.

AARNet Copyright 2010 Network Operations The eduroam project group

IAM Online Thursday, July 8, 2010 – 1 p.m. EDT Eduroam in the U.S. Questions via Adobe Connect chat Audio via Adobe Connect – preferred Conference phone.

(From Radius Hierarchy to AAI) Miroslav Milinović University Computing Centre - Srce EuroCAMP Ljubljana, March 2006.

Eduroam Louis Twomey HEAnet Library Services Day 20 th November 2014.

Education roaming Secure Wireless Service for Research and Education.

Wireless Past, Present and Future. University of Auckland Robert Beattie.

SALSA-FWNA Activity Update Kevin Miller Duke University Internet2 Member Meeting May 2005.

High-quality Internet for higher education and research Paul Dekkers April 4th, Turkey.

Michal Procházka, Jan Oppolzer CESNET.

A Practical Guide for Joining EduRoam EuroCAMP Torino A Practical Guide for Joining EduRoam 4 March 2005 Version 1.6.

Scenario 1 Internet WAN LAN1 LAN2 LAN3 LAN4

Eduroam JP and development of UPKI roaming Yoshikazu Watanabe*, Satoru Yamano* Hideaki Goto**, Hideaki Sone** * NEC Corporation, Japan ** Tohoku University,

AIMS’99 Workshop Heidelberg, May 1999 P805: Internet Roaming Giuseppe Sisto - Telecom Italia / CSELT Project participants:

KAIS T Wireless Network Security and Interworking Minho Shin, et al. Proceedings of the IEEE, Vol. 94, No. 2, Feb Hyeongseop Shim NS Lab, Div. of.

Cellular Access Control and Charging for Mobile Operator Wireless Local Area Networks H. Haverinen, J. Mikkonen and T. Takamaki, Nokia Wei-Jen, Lin Advanced.

UNIVERSITY OF SOUTH CAROLINA Department of Computer Science and Engineering Secure Authentication System for Public WLAN Roaming Ana Sanz Merino, Yasuhiko.

802.1X in SURFnet 22 May 2003.

EDUROAM Michael Helm ESnet/LBL 26 Mar EduroamTAGPMA 27 Mar What Is Eduroam? The Roaming Scholar vs the Restricted Wireless Network –I am in.

Eduroam.us Operational Experiment Kevin Miller Duke University Andy Rosenzweig Merit Network ESCC/Internet2 Joint.

Connect. Communicate. Collaborate TERENA Networking Conference, 7 june 2005 Eduroam: past, present, and future.

Workshop roaming services: eduroam / govroam

Connect. Communicate. Collaborate Deploying Authorization Mechanisms for Federated Services in the eduroam architecture (DAMe)* Antonio F. Gómez-Skarmeta.

Authentication and Authorisation in eduroam Klaas Wierenga, AA Workshop TNC Lyngby, 20th May 2007.

6 June 2004TF-Mobility meeting 6 June TF-Mobility meeting Agenda TF-Mobility Meeting, June Welcome and Update on TF-Mobility to date Discussion.

Govroam Belnet – 19/11/2015 Els Lemmens, Belnet Federation Manager Nicolas Loriau, Belnet Technical Advisor.

19 May 2003 © The JNT Association Terena Technical Advisory Council Terena Mobility Task Force

Trouble-shooting Tips Georgia Bulldogs I can receive, but not send messages  If you can successfully receive messages, but can’t send messages,

Federated Wireless Network Authentication Kevin Miller Duke University Internet2 Joint Techs Salt Lake City February, 2005.

XXIII HTASC Meeting – CERN March 2003 LIP and the Traveling Physicist Jorge Gomes LIP - Computer Centre.

6/12/2016 AEB/Yleisesittely WLAN roaming experiences using Shibboleth TNC 2004, Rhodes 7th of June, 2004 Mikael Linden, Viljo Viitanen,

Best Facebook Proxy Login Sites

Improving the eduroam experience with Interworking (802.11u)

10 Years of eduroam (from an idea to a product)

Integration of and Third-Generation Wireless Data Networks

TF-Mobility update TF-EMC2, Barcelona 9 September 2005.

The DAMe’s First Steps: eduroam and NAS-SAML

UT Gert Meijerink Service Departement for Information Technology, Library and Education (ITBE) TERENA 2004.

Mark Spencer - James Dickerson

Presentation transcript:

May 17, 2006TNC 2006, Catania1 eduroam.us: past, present, future Philippe Hanset University of Tennessee, Knoxville

TNC 2006, Catania2 Credits Working group supported by Internet2 Kevin Miller (Duke University) Chris Misra (U. Massachusetts) Andy Rosenzweig (Merit Network) John Vollbrecht (Merit Network) Jessica Bibbee (Internet2) Steve Olshansky (Internet2) Renee Frost (Internet2) and all the brave semimonthly participants

TNC 2006, Catania3 History of edu-roaming  RADIUS proxy used by Merit Network for modem pools  IEEE 802.1x ratified in June 2001 RADIUS proxy for WLAN at University of Utah TERENA creates TF-Mobility in 2003 First eduroam enabled Access-Point in Zagreb (Croatia), May 2003 Internet2 creates FWNA in December 2004 eduroam.us, first International test in April 06 at Internet2 member meeting

TNC 2006, Catania4 What is FWNA? An Internet2 working group evaluating: -how 802.1x can be used to roam between institutions (local/global) -the implications of roaming (technology, policies,…)  An experiment that has Root RADIUS servers connected to US based schools as well as Europe and Asian-Pacific R&E networks.  Another name for eduroam.us

TNC 2006, Catania5 Why FWNA/eduroam.us ? We had open wireless networks We have been asked to secure those networks  We are now asked to open them again while maintaining an adequate security (visitors)  Somehow guest accounts are not good enough

TNC 2006, Catania6 Where is FWNA today Architecture RADIUS hierarchy modeled after eduroam.eu 802.1x only Experimental service in place Top-level servers at UTK and Merit Servers connected to Europe, Asia-Pacific A few US based institutions have joined Top-level tools being developed Web-based registration for connectors RADIUS proxy blocking mechanisms (realm, MAC)

TNC 2006, Catania7 The State of EDUROAM

TNC 2006, Catania8 Challenges of FWNA (…or challenges of 802.1x!)  No easy method of communication with users (layer2, no portal)  Decentralized and complex troubleshooting, lack of control (no adequate blocking)  AP roaming requires long distance re-auth (partially solved in i)  Policies are limited (but network control knobs are limited too!)  Low adoption rate of 802.1x in the USA

TNC 2006, Catania9 FWNA next steps  Operational:  explore other architectures (RADSec, Diameter, DNSSec)  Improve 802.1x controls from RADIUS (local/global) to NAS (Switch, Wireless AP, …)  Policies:  Stature (Trusted Network Connect (TNC), NAC, NAP)  User Privileges (when in Rome do as the Romans?)

TNC 2006, Catania10 Other uses of FWNA Sensornets Sensors may be more “mobile” than people not a EDU-person, but a EDU-gear! What EAP could be used? How additional facts can be provided? the other AAA (Availability, Ability, Authentication)

TNC 2006, Catania11 How to join FWNA? Must be willing to experiment; nothing is plug and play Important for experimenters to give feedback by way of pointers, local cookbooks, EAP trial info, etc. If you want to be an experiment site, send to: also visit to registerhttp://fwna.ns.utk.edu

TNC 2006, Catania12 FWNA info Project website: Biweekly Conference Calls Thursdays 11am-12pm Next on 2/23/06 internet2 list “subscribe salsa-fwna” to internet2

TNC 2006, Catania13 Grazie mille and good luck to: Cunego, Basso, Di luca et cetera ;-)