UCTrust Wireless Approach Discussed by the CPG

The UCTrust Wireless project was discussed in the CPG's May 14, 2010 meeting, and it was agreed to take the following approach:

• We observed that most (all?) campuses have two wireless networks.  One is encrypted and authenticates with 802.1x, and the other is not encrypted and authenticates via a web portal.  Guests might use either, but generally would use the unencrypted network.
• UCTrust currently supports Shibboleth for implementing federated access to services.  While there has been a little work in using Shibboleth for non-web applications, it is primarily designed for web applications.
• There is a project called eduRoam in Europe, Canada, and the Asia-Pacific that federates 802.1x access, and that is starting to expand into the US.
• We agreed that federating our web portals with Shibboleth is the best first step.  We will track eduRoam progress in the US and plan to federate access to our encrypted networks when it seems appropriate to do so.  UCD, UCLA, UCB, UCR, and UCSC agreed to be the initial campuses to do this.