Jump to content

eduroam

From Wikipedia, the free encyclopedia

This is an old revision of this page, as edited by 140.232.0.70 (talk) at 18:10, 26 April 2013 (Add some history updates for EDUROAM-US). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

eduroam
Formation2003
Legal statusConfederation
PurposeInternational Authentication Infrastructure
Location
  • Europe
Region served
Worldwide
Membership
NREN
Official language
English
Parent organization
TERENA
Websitewww.eduroam.org

eduroam (education roaming) is a secure international roaming service for users in higher education. The European eduroam confederation (a confederation of autonomous roaming services) is based on a set of defined organisational and technical requirements that each member of the confederation must agree to (by signing the eduroam policy GN2-07-328) and follow.[1]

History

The eduroam initiative started in 2003 within TERENA's task force TF-Mobility[2] which demonstrated the feasibility of combining a RADIUS-based infrastructure with IEEE 802.1X technology to provide roaming network access across research and education networks.[3] The initial test was conducted among five institutions located in the Netherlands, Finland, Portugal, Croatia and the UK. Later, other national research and education network organisations in Europe embraced the idea and gradually started joining the infrastructure, which was then called eduroam. Portugal was the first country to have eduroam and national mobility through eduroam available in almost all its institutions when the national government sponsored a project to deploy Wi-Fi networks in early 2003.

It soon gathered consensus outside Europe. The first non-European country to join eduroam was Australia,[4] in December 2004. eduroam has evolved into a federation of federations (con-federation), where the single federations are run at national level and they all connect to a region. To date there are two confederations: the European and Asia-Pacific (APAN).

In Late 2012 Internet2, in a bid to expand eduroam participation within the United States, announced the addition of eduroam to its NET+ service offerings, assimilating a pre-established pilot project between the NSF and UTK[5]. AnyRoam LLC, a private company, was formed by (now former) UTK staff who had been responsible for running the original program to serve as an Internet2 Active Corporate Member[6][7] administering the top level servers. The free-of-charge pilot project had garnered over 100 participating institutions at that point. Internet2's NET+ arrangement introduced a fee structure for participating institutions other than Internet2 members.[8]

Overview

Participating institutions are typically universities and other research and educational organisations. eduroam allows a user belonging to one institution to get network access when visiting another institution. Depending on local policies at the visited institution, the visitor may also have additional resources (for example printers) at their disposal.

The visiting user (to a participating institution) is authenticated using the same credentials (username and password) that they would at their home institution.

RADIUS

eduroam requires participating RADIUS servers to support realms. Within a single institution a user would usually simply be represented by a username and corresponding password for their authentication. By contrast a visitor using eduroam requires a representation of their home institution as 'username@realm', where the 'realm' is usually closely related to the visitor's home DNS name.

The role of the RADIUS hierarchy is to forward a user's credentials to their home institution for authentication. The RADIUS server at a participating institution recognises the '@realm' component and proxies anything non-local to its national top-level RADIUS (NTLR) service, which is normally operated by the National Research and Education Network (NREN) of that country and which has a complete list of the participating eduroam institutions in that country.

For international roaming, a regional top-level RADIUS server is needed in order to roam the users request to the right country.

Not all RADIUS servers are capable of offering the '@realm' eduroam support. For instance, commercial products from some USA-based suppliers, such as Infoblox, lack this capability.

Geographical availability and limitations

Currently eduroam is deployed mainly in Europe[9] and Asia-Pacific.[10]

In Europe the top-level RADIUS service (ETLR) is operated by the Dutch NREN (SURFnet) and the Danish NREN (UNI-C).

In Asia-Pacific, the top-level RADIUS service (APTLR) is operated by the Australian NREN (AARNet) and by the University of Hong Kong.

Governance and Policy

Member Confederations, Regional Operators (ROs) and National Research and Education Networks (NRENs) are required to agree to and follow eduroam policies. These policies differ between regions and countries due to differing legal systems. Therefore TERENA established the Global eduroam Governance Council (GeGC) to ensure compatibility between different regions[11]. The GeGC is made up of representative members from the different eduroam Confederations and ROs.

Federations

Europe

Asia-Pacific

North America

South America

Africa

See also

References

  1. ^ GN2-07-327v2-DS5_1_1-_eduroam_Service_Definition.pdf p5
  2. ^ [1]
  3. ^ [2]
  4. ^ [3]
  5. ^ [4]
  6. ^ http://members.internet2.edu/liaison_list_pub.cfm?member=CM&contact=all&sortby=company&format=web
  7. ^ http://oit2.utk.edu/newsletter/2012-12/
  8. ^ http://www.internet2.edu/netplus/eduroam/pricing.html
  9. ^ [5]
  10. ^ [6]
  11. ^ [7]
Retrieved from "https://en.wikipedia.org/w/index.php?title=Eduroam&oldid=552309018"