Transcript Document
Policy document, structure and content Barcelona, 6th of September 2005 David Simonsen,UNI-C "eduroam is a registered trademark of TERENA. David Simonsen is independent of TERENA." eduroam policy structure Definitions STATIC MAIN POLICY DOCUMENT Ver. 1, 2, 3... Min. Sec. Reqs. Ver. 1, 2, 3... Service level description Ver. 1, 2, 3... - SSID-naming - Open ports, protocols, EAP-types etc. 1 2 3 4 5 Policy description eduroam federation The eduroam federation works for the common goal of providing interdomain authentication and authorization of access to the Internet and other netbased resources to the users of the federation members in higher education and research. Policy description eduroam federation purpose The purpose of the eduroam federation is to maintain, expand and develop the eduroam infrastructure . Policy description eduroam federation scope The eduroam federation consist of the following hierarchical levels: national and institutional. At the national level the national research and educational network (NREN) (or equivalent network organisation) can be member of eduroam. At the institutional level any higher education or research institution connected to the NREN can be a member of eduroam. Policy description Joining requerements NRENs and institutions can join eduroam as soon as they 1. conform to the eduroam minimal security requirements (affiliated with this document) 2. conform to the eduroam service level agreements (affiliated with this document) 3. acknowledge the eduroam policy authority 4. acknowledge the possible sactions Policy description ... Joining requirements When the higher level of the bilateral agreement can confirm that 1) and 2) are being realized and 3) and 4) are being acknowledged by signing the present 'eduroam federation policy', which is to be kept at the higher organisational level of the bilateral agreement (eduroam Secretariate or NREN). Both parties agree to inform the other party of changes in their contact information. Policy description The ’eduroam Assembly gather (preferably physically) once a year to approve or discard suggested changes to the eduroam policy document and itsユ affiliated documents Votes are decided by simple majority. All national level members of the federation have the right to: - have items placed on the agenda of the eduroam Assembly speak at the eduroam Assembly vote at the eduroam Assembly (one vote pr. NREN or equivalent network organisation) Changes to the eduroam federation policy can be put forward by any one or more members of the eduroam Assembly. Policy description eduroam policy authority The eduroam policy authority is the 'eduroam Assembly' .The eduroam Assembly delegates the authority of enforcing the eduroam federation policy one year at the time to a group of three representatives, the 'eduroam Secretariat’, that will act as the operative policy authority towards the NRENs. The NRENs will act as policy enforcing authority towards the institutions as the institutions will towards the end users. The eduroam Secretariat is obligated to ensure the enforcement of the policy either proactively, reactively or both with the hereunder described formal sanctions at hand. This must be done in coorporation with the relevant NRENs. Policy description Possible sanctions [List of possible sanctions] - Room for discussion... :-) Policy description eduroam minimal security requirements eduroam must/should always provide the means for trustworthy and secure transport of credentials and authorization. The minimal security requirements are specified in the document ‘eduroam minimal security requirements. Policy description eduroam trademark eduroam and the eduroam logo are trademarks or registered trademarks of TERENA. What does it mean?