SALSA-NetAuth - FWNA conference call December 15, 2005

*Attendees*

Kevin Miller, Duke U. (co-chair)
Philippe Hanset, U. Tennessee (co-chair)
Chris Misra, U. Mass
Rich Cropp, Penn State
Andy Rosenzweig, Merit
Bill Bulley, Merit
Dave Futey, Stanford
Dennis Ward, U. Michigan
Kevin Bullard, UNC, Greensboro
Renee Frost, Internet2
Steve Olshansky, Internet2
Jessica Bibbee, Internet2 (scribe)

New *Action Items*

[AI] {Group} should contact {Dave Futey} with proposed questions for the ResNet survey relating to wireless security at <dfutey@stanford.edu> by mid-January.

[AI] {Andy} will sign and pass on the document from Merit to {Renee}.

[AI] {Kevin} will send out a list of issues stemming from initial experiments, and requests feedback from {Group} to gather other ideas.

[AI] {Chris} will email the list with updates on the proposed presentation at the ESCC/I2 Joint Techs Workshop.

[AI] Group will finalize plans for an FWNA proposal for the Spring Internet2 Member Meeting on the next WG call.

Carry-over *Action Items*

[AI] {SteveO} will arrange for a call with {Ken Klingenstein, Renee Frost, Andy, Philippe, and Kevin} regarding the organizational structure of the FWNA experiment. (5-Dec-05)

[AI] {Andy and Philippe} will email {SteveO} with a list of those from Eduroam, etc. whom {SteveO} will then invite to a discussion of the configuration of the top-level servers in late December or early January. (5-Dec-05)

[AI] {Philippe} will send mail the <SALSA-FWNA-Ops> mailing list when the delivery date for the servers is known. (5-Dec-05)

[AI] {Kevin and Philippe} will document the decisions made during the campus connection process, including test accounts. (5-Dec-05)

[AI] {Kevin} will connect the Duke people with the <SALSA-FWNA-Ops> to move forward with how to set up the server. (5-Dec-05)

[AI] {Group} will think of local site requirements for security, logging, and access to utilization of information in the context of Eduroam, where non-local users are involved. (3-Nov-05)

[AI] {Philippe} will draft a use case focusing on shared facilities between two institutions. (24-Mar-05)

*Discussion* {Dave} presented information regarding an annual ResNet survey that targets issues around the support of residential securities and network infrastructure on campuses. Reference questions and future results will be available for viewing at <www.resnetsymposium.org> {Dave} expressed interest in hearing views from the FWNA WG regarding wireless security issues. [AI] {Group} should contact {Dave} with proposed questions for the ResNet survey relating to wireless security at <dfutey@stanford.edu> by mid-January. Ideas may include how broadly 802.1x is implemented across campuses, and subsequently, which EAP path the campuses might be following. Where have institutions deployed wireless – as an institution network or also for residential halls? Results from the 2006 could serve to guide future work within the WG.

The top-level servers are still pending a delivery date.{Philippe} has ordered another Radius license, and all should arrive shortly. [AI] {Andy} will sign and pass on the document from Merit to {Renee}.

The Group discussed local site requirements, and whether there exists fixed rules, i.e., for security of the servers themselves, or general guidelines. A few issues mentioned include information sharing, how to maintain log retention, and what are the surrounding policies. How can the logging infrastructure accommodate the evolving needs of a wireless network? {Chris} mentioned the possibility of enforcing the concept of a security contact as a part of the institution's registration. In this way, there would always be a person to contact regarding problems that arise from guests having infected machines – this provides a level of assurance from the IT perspective, as well as providing support for the user. The accountability of each institution to validate that the user is a valid member of the community will be an issue to address.

[AI] {Kevin} will send out a list of issues stemming from initial experiments, and requests feedback from {Group} to gather other ideas.

[AI] {Chris} will email the list with updates on the proposed presentation at the ESCC/I2 Joint Techs Workshop. [AI] Group will finalize plans for an FWNA proposal for the Spring Internet2 Member Meeting on the next WG call.

The next SALSA-NetAuth - FWNA WG call scheduled for Friday, December 29 will be cancelled due to the holiday schedule. Therefore, the next Signet WG call will be held on Thursday, January 12, 2006 at 11am ET.