Misplaced Pages

#737262

40-531: In some countries, Internet access via eduroam is also available at other locations than the participating institutions, e.g. in libraries, public buildings, railway stations, city centres and airports. The eduroam initiative started in 2002 when during the preparations for the creation of TERENA 's task force TF-Mobility, Klaas Wierenga of SURFnet shared the idea of combining a RADIUS -based infrastructure with IEEE 802.1X technology to provide roaming network access across research and education networks. Initially,

80-476: A hierarchical system of RADIUS servers. The hierarchy consists of RADIUS servers at the participating institutions, national RADIUS servers run by the National Roaming Operators, and regional top-level RADIUS servers for individual world regions. When a user visits a remote institution, the user's mobile device presents their credentials to the local RADIUS server. That RADIUS server discovers that it

120-458: A voluntary basis, enabling the deployment of the service in: The European top-level RADIUS servers are operated by SURFnet and Forskningsnettet . eduroam is deployed in the following countries and economies: The Asia-Pacific top-level RADIUS servers are operated by AARNet and by the University of Hong Kong . eduroam is deployed in: eduroam is deployed in: eduroam is deployed in: eduroam

160-484: Is a SIP URI, and that no further rules should be applied. To resolve the SIP URI, the client performs a second NAPTR lookup—on example.com , yielding: As in the first example, the client picks the first record because it has the lowest order value. The regular expression rule replaces the query URI, this time with the domain name _sip._udp.example.com . The flag S indicates that the resulting domain name points to

200-719: Is a type of resource record in the Domain Name System of the Internet. NAPTR records are most commonly used for applications in Internet telephony , for example, in the mapping of servers and user addresses in the Session Initiation Protocol (SIP). The combination of NAPTR records with Service Records (SRV) allows the chaining of multiple records to form complex rewrite rules which produce new domain labels or uniform resource identifiers (URIs). The DNS type code for

240-500: Is by the Session Initiation Protocol , which routes telephony sessions over IP networks. For example, the URI for the US telephone number 1-800-555-1234 might be tel:+1-800-555-1234 and its domain name 4.3.2.1.5.5.5.0.0.8.1.e164.arpa . A SIP client querying that name might receive: The first record has an order value of 100, which is lower than 102 and therefore has precedence. Its preference of 10

280-572: Is deployed in: The inter-African RADIUS servers are operated by West-African research and education network WACREN , the UbuntuNet Alliance and TENET. TERENA The Trans-European Research and Education Networking Association ( TERENA , / t ə ˈ r eɪ n ə / tə- RAY -nə ) was a not-for-profit association of European national research and education networks (NRENs) incorporated in Amsterdam , The Netherlands. The association

320-476: Is not responsible for the realm of the user's home institution and proxies the access request to the national RADIUS server. If the visited institution is in a different country than the home institution, the request is in turn proxied to the regional top-level RADIUS server, and then to the national RADIUS server of the user's home country. That national server forwards the credentials to the home institution, where they are verified. The 'acknowledge' travels back over

360-601: Is open to NRENs (one per member country of the ITU ) and international public sector organisations. Associate membership is available for other organisations (commercial or otherwise) with an interest in research and education networking. A complete list of the current members can be found on the TERENA website. Similar organisations elsewhere in the world include Internet2 , APAN , UbuntuNet Alliance and CLARA (Cooperación Latino Americana de Redes Avanzadas). In addition, DANTE operates

400-638: Is the successor to the Joint European Networking Conference (JENC), which ran from 1990 to 1997. Locations: Edinburgh (1997), Budapest (1996), Tel Aviv (1995), Prague (joint with Internet Society 's INET conference; 1994), Trondheim (1993), Innsbruck (1992), Blois (1991), Killarney (1990). The JENC, in turn, was the successor to the RARE Networkshop, which ran from 1986 to 1989. Locations: Trieste (1989), Les Diablerets (1988), Valencia (1987), Copenhagen (1986). At

440-421: Is unimportant as there are no other rules with order 100. The service name E2U+sip is an ENUM string indicating that the record can be used in telephone number-to-SIP-URI queries. The client applies the regular expression !^.*$ !sip:customer-service@example.com! , which replaces its entire URI tel:+1-800-555-1234 with sip:customer-service@example.com . The flag U indicates that the replacement string

SECTION 10

#1732851252738

480-709: The BITNET in the US, and included email gateway capability. The EARN Association was set up as a legal entity in France in 1985. By 1993 it was clear that the EARN Association needed to merge with RARE, which it did on 20 October 1994. At the same time, RARE changed its name to TERENA. TERENA publishes annual editions of the TERENA Compendium of National Research and Education Networks in Europe , which contain information about

520-466: The GÉANT network. A number of services have been established as spin-offs of the work in the TERENA task forces and projects. eduroam provides researchers, teachers and students easy and secure network access when visiting other institutions than their own; the global governance of eduroam is under the auspices of TERENA. The TERENA Certificate Service provides digital certificates that are recognised by

560-509: The Regional Internet registries — serving a two-year term. In addition, GÉANT may appoint one or more experts as non-voting members of the GeGC. eduroam is available at selected locations in countries with a National Roaming Operator that has signed the eduroam Compliance Statement. Those sixty-seven countries are listed below. In addition, there may be pilot deployments in countries that are in

600-639: The European Union also funded through these projects the continued operation and maintenance of the eduroam service at the European level. The first non-European country to join eduroam was Australia, in December 2004. In Canada, eduroam started as an initiative of the University of British Columbia , which was later taken over by CANARIE as a service of its Canadian Access Federation. In the United States, eduroam

640-594: The European backbone, RARE's Operational Unit was later split off from the association under the name DANTE . Meanwhile, the need to choose between the OSI protocols and the Internet Protocol (IP) became the subject of a long-lasting controversy known as the Protocol Wars . By the early 1990s, IP became the dominant protocol in data networking. By 1991, a project called Ebone was proposed as an interim solution while

680-509: The European research networking community made the transition from OSI to IP. The Réseaux IP Européens Network Coordination Centre ( RIPE NCC ) was created by RARE in 1992, and was split off five years later as a separate legal entity. At the end of 1983 IBM had taken the initiative for the European Academic and Research Network (EARN), which would link selected computer centres in Europe via leased lines. It used similar technology to

720-481: The NAPTR record is 35. Uniform Resource Names ( URNs ) are a subset of Uniform Resource Identifiers ( URIs ) used for abstract identifiers, such as a person's name or their telephone number. For URNs to be meaningful, they must be mapped to a concrete resource of some sort. Uniform Resource Locators ( URLs ) are often used to describe such resources, such as a computer hostname , or a local file. The NAPTR record aids in

760-988: The TERENA Networking Conference. Usually held in late May or early June, the conference is hosted by a member NREN and attended by around 500 delegates from academic backgrounds including networking specialists and managers from European networking and research organisations, universities, worldwide sister institutions and industry representatives. Conference locations: Tirana (2023), Trieste (2022), online (2021), Brighton (2020 - canceled), Tallinn (2019), Trondheim (2018), Linz (2017), Prague (2016), Porto (2015), Dublin (2014), Maastricht (2013), Reykjavík (2012), Prague (2011), Vilnius (2010), Málaga (2009), Bruges (2008), Kgs. Lyngby (2007), Catania (2006), Poznań (2005), Rhodes (2004), Zagreb (2003), Limerick (2002), Antalya (2001), Lisbon (2000), Lund (joint with NORDUnet conference; 1999), Dresden (1998). The TERENA Networking Conference

800-542: The basis of a contract with TERENA. This requires funding from TERENA members and/or other interested organisations, possibly combined with a contribution from TERENA's own resources. A current example is REFEDS (Research and Education Federations). In addition, the TERENA Secretariat staff participates in projects that are co-funded by the European Union , for example, the project that also provides EU funding for

840-454: The creation of exceptions in the international RADIUS request routing tables; however, this workaround does not scale as the number of exception entries grows. Several solutions have been proposed to eliminate this workaround in the future, the most promising of which is RADIUS over TLS with Dynamic Discovery , which does not rely on static routing tables inside a RADIUS server configuration to route requests to their proper destination. Instead,

SECTION 20

#1732851252738

880-694: The development and deployment of services for the research and education community. Usually task forces are open for participation by any individual who can bring appropriate expertise and resources. By 2011, TERENA was supporting eight task forces: TF-CPR (communications and public relations), TF-CSIRT (collaboration of security incident response teams), TF-EMC2 (European middleware coordination and collaboration), TF-Media (media management and distribution), TF-MNM (mobility and network middleware), TF-MSP (management of service portfolios), TF-NOC (network operation centres) and TF-Storage (storage and cloud services). TERENA projects are carried out by experts and engineers on

920-419: The development and testing of new networking, middleware and application technologies. It brings together specialists and engineers from TERENA member organisations and the wider research networking community. This work is organised in task forces and projects. Task forces are groups where specialists in a certain field exchange information, discuss best practices and work together to investigate technologies for

960-643: The first workshop in this series, held in Luxembourg in May 1985, it was decided to create RARE. TERENA regularly organises workshops for information exchange and training. Training workshops include the TRANSITS workshops aimed at staff members of CSIRTs and the EuroCAMP workshops to teach NREN and campus staff how to implement federated identity infrastructure. NAPTR record A Name Authority Pointer ( NAPTR )

1000-511: The following countries: In addition, three NRENs that are associate members of the consortium of the GN3 project without voting rights joined the European eduroam confederation; they represent Belarus ( UIIP ), Moldova ( RENAM ) and Russia (Joint Supercomputer Center of the Russian Academy of Sciences ). Finally, five NRENs not involved in the GN3 project joined the European eduroam confederation on

1040-418: The form of some public-key mechanism with certificates and those that use so-called tunnelled authentication. Most institutions use a tunnelled authentication method that only requires server certificates. These server certificates are used to set up a secure tunnel between the mobile device and the authentication server, through which the user credentials are securely transported. A complication arises if

1080-444: The implementation of some of the first standardised network-related services, for example X.400 email and X.500 directory service. X.25 technology was generally used for connectivity. This technology was also used in a network called IXI (International X.25 Infrastructure Backbone Service), which was the first generation of the backbone network interconnecting the national research networks in Europe, known today as GÉANT . To run

1120-549: The major browsers and devices to the user communities of participating NRENs in a cost-effective manner. The TERENA Academic Certification Authority Repository (TACAR) is a trusted online store of trust anchor certificates, related certificate policies and certificate practice statements registered by the Certification Authorities of organisations in the academic community. The eduGAIN service allows Authentication and Authorisation Infrastructures to interact, enabling

1160-540: The operations of eduroam are limited to technical and administrative requirements that are necessary to ensure the smooth and secure operations of eduroam worldwide. Moreover, the eduroam operators have the leading role in creating and maintaining the rules of the global eduroam governance. The Global eduroam Governance Committee (GeGC) has the central role in the global eduroam governance structure. While its structure has evolved over time, it presently has three representatives from each of five regions — mirroring those used by

1200-592: The organisation, staffing, finances, user base, capacity, services and developments of NRENs , and serve as a benchmarking tool. TERENA supports the development of research and education networking in less advanced countries and regions in and around Europe by studying their needs and by providing advice, consultancy and training. TERENA organises foresight studies to look into the future development of European research and education networking. These studies included SERENATE (2002-2003), EARNEST (2006-2008) and ASPIRE (2011-2012). TERENA supports joint European work in

1240-549: The pan-European research and education backbone network. TERENA was founded under the name Réseaux Associés pour la Recherche Européenne (RARE) on 13 June 1986. It was created by several European networking organisations to promote open computer networking standards (specifically the OSI protocols ). The first few years were dominated by the Co-operation for Open Systems Interconnection Networking in Europe (COSINE) project. COSINE led to

eduroam - Misplaced Pages Continue

1280-400: The participating institution adds one NAPTR DNS resource record to its own domain's DNS zone, which states by which server eduroam authentication for the domain is handled. GÉANT has established a lightweight global governance structure. Recognising the large variety in the organisation and funding of research and education (networking) in different countries and regions, rules imposed on

1320-451: The process of joining eduroam. The NRENs that are members of the consortium of the GN3 project have joined the European eduroam confederation by signing the confederation's policy that requires its members to comply with a set of technical and organisational requirements, which are more specific than those in the global eduroam Compliance Statement. As a consequence, eduroam is deployed in

1360-433: The proxy-hierarchy to the visited institution and the user is granted access. Because the user's credentials travel via a number of intermediate servers, not under the control of the home institution of the user, it is important that the credentials be protected. This requirement limits the types of authentication methods that can be used. There are two categories of useful authentication methods: those that use credentials in

1400-562: The service was joined by institutions in the Netherlands, Germany, Finland, Portugal, Croatia and the United Kingdom. Later, other NRENs in Europe embraced the idea and started joining the infrastructure, which was then called eduroam. Since 2004, the European Union co-funded further research and development work related to the eduroam service through the GN2 and GN3 projects. From September 2007,

1440-444: The sharing of data between federations and providing an interconnection framework to applications willing to provide their services, content or resources to multiple federations. NRENum.net provides an ENUM service for academia. TERENA's Trusted Introducer service offers an accreditation and certification scheme for Computer Security Incident Response Teams ( CSIRTs ). TERENA runs an annual conference for academic networkers called

1480-586: The standardization of URNs. NAPTR records map between sets of URNs, URLs and plain domain names and suggest to clients the protocols available for communication with the mapped resource. Each NAPTR record contains a service name, a set of flags, a regular expression rule, an order value, a preference and a replacement pattern. Multiple records can be chained together in a cascade to rewrite URIs in deterministic ways. These cascading rules have been standardized in RFC   2915 and 3403 . A common use of NAPTR records

1520-400: The user's home institution does not use a two-letter country-code top-level domain as part of its realm, but a generic top-level domain such as .edu or .org. By inspection of such realms, it is not possible to determine which national RADIUS server the request should be routed to. Such domains will thus, by default, fail to work in international roaming. The workaround for this problem involves

1560-492: Was initially a pilot project between the National Science Foundation and the University of Tennessee (UTK). In 2012, Internet2 announced the addition of eduroam to its NET+ service offerings. AnyRoam LLC, a private company, was formed by former UTK staff to serve as an Internet2 active corporate member administering the top-level servers. The eduroam service uses IEEE 802.1X as the authentication method and

1600-524: Was originally formed on 13 June 1986 as Réseaux Associés pour la Recherche Européenne (RARE) and changed its name to TERENA in October 1994. In October 2015, it again changed its name to GÉANT and at the same time acquired the shares of GEANT Limited (previously known as DANTE). The objectives of TERENA are to promote and develop high-quality international network infrastructures to support European research and education. This includes: Full membership of TERENA

#737262