Date, Time, and Location

Thursday, April 16, 2020
1:00pm ET | 12:00pm CT | 11:00am MT | 10:00am PT

Minutes

eAC wiki: https://spaces.at.internet2.edu/display/eduroam/eduroam+Advisory+Committe

Attendees: Jeremy Livingston (NJEdge), Jeff Egly (UETN), Rob Gorrell (UNC-G), Tim Cappalli (Microsoft), Kim Owen (NDSU), Neil Johnson (University of Iowa), Miroslav Milinovic, Stefan Winter

With: Kevin Morooney, Ann West, Steve Zoppi, Mike Zawacki, Jessica Fink, Nick Roy, Romy Bolton, Shannon Roddy

Regrets: 

Agenda

Welcome and Introductions (Kim and Rob)

Review of committee operations (Jessica)

• Committee serves as advisory body & brings recommendations to Internet2
• As the voice for the community, Internet2 looks to you to bring topics that are useful and relevant to the community
• Sponsoring working groups on specific items that involve others outside of the committee

Lowering barriers to adoption
Context setting (Kevin/Ann): https://docs.google.com/presentation/d/1B-u182lsVUiaBGqXJRMY_yzvP0DL_mRg-4FGCKJnYD8/edit#slide=id.g73bfb360ec_0_119

Composition of connector community broadening. More small institutions. How to handle that expansion of scope and lower the barriers

Need for best practices guide (Rob)

• slide deck - https://docs.google.com/presentation/d/1Vf61JgjsHLoUJVkwUNQYjJWUpfl0Gtif6ze15Q96cbc/edit?usp=sharing
• Notes:
  • Lowering the barrier in Europe (Stefan) - offering adjacent to the CAT tool - “eduroam managed idP service.” AI: Future topic Demo on the next call?
  • One major barrier to non-university higher ed and other edu space is limited technical staff (Rob)
  • Security concerns with rogue AP grabbing credentials? - bigger problem than people realize. One of the primary drivers for moving from PEAP/PAP (username/password authentication) to EAP-TLS (cert based authentication) Future topic - Stefan using WPA3 to determine cert usage on device
  • TEAP: seeing more uptake in this method of authentication. More flexible auth method (e.g. allows for MFA, other auth schemes). Can cause issues with older environments, as they may discard “unknown” EAP types. Stefan is interested in learning more about who supports that method. Per Tim:
    • Cisco ICE 2.7
    • Aruba/Clearpass
    • Windows 10 2004 spring release
  • This conversation underscores the need to lower barriers to entry and having this conversation with K12 and others can be overwhelming
  • Who was the audience for Rob and Jeff slide deck? - In support of the Utah (UETN) K12 pilot open to everyone at all levels. Published a set of topics so people could come and go as they were interested.
  • Tim: Future topic Put together Github repo for similar use cases in the past. Might be a good approach, encourage “living document” approach rather than constantly revised .pdfs/etc. Also consider gdocs in support of less technical contributors who might not be comfortable with Github.
    • Example from Tim: https://captivebehavior.wballiance.com/


Additional ideas?

• Gather eduroam success stories and share with the community?
• US is not ubiquitous enough to really help in the pandemic
• UETN has done some work around using eduroam to serve student populations. Their K12 deployments has helped higher-ed students who have returned home to the Navajo Nation.
• Miro: In EU there have been public (beyond campus) deployments of eduroam (service provided by libraries, museums, hospitals, airports, city/local authorities, public transport companies)
• Tim: Passpoint can help counter concerns around “SSID sprawl”

Next meeting - June 18, 2020  1:00pm ET | 12:00pm CT | 11:00am MT | 10:00am PT

Intellectual Property Reminder - All Internet2 activities are governed by the Internet2 Intellectual Property Framework.

Public Content Notice - eAC minutes are public documents. Please let the eAC and note taker know if you plan to discuss something of a sensitive nature.