JANET RadSec Project - Call for wider participation

The JANET RadSec project will go ahead as planned but is still open to applicants that wish to participate on a funded or non-funded basis.

Some sites have expressed a preference for participation in the RadSec only part of the trial and thus wish to exclude IF-MAP. Applicants that have such a preference, either on a funded or non-funded basis, we welcome them to contact us to discuss details. 

A virtual image is also now available for any sites who want to particiapte in the IF-MAP part of the trial.

Details of Trial

The trial is for organisations within the education or research community focusing on RadSec and IF-MAP technologies.

The trial will investigate the secure use of RADIUS protocol to send authentication requests across insecure networks.

The Aim of the RadSec project is to move towards a de-centralised roaming infrastructure and achieve a significant cost saving and demonstrate that IF-MAP can be extended to restore current levels of centralised measurement & monitoring for the replacement service.

The JANET Roaming RadSec projects fits into the current activities by GEANT and TERENA middleware programmes.

• Get involved in the project and be at the forefront of this technology
• Enjoy secure, reliable user authentication across your organisations network
• Benefit from ongoing performance data through IF-MAP

For further information: please contact Louis Searchwell, Technical Specialist: Authentication

About RadSec

Many educational institutions use RADIUS as a proxy to send authentication requests across insecure networks as part of wireless roaming services, which permit users to roam on the networks of partner institutions. JANET Roaming Service (JRS) currently uses conventional RADIUS and so is exposed to the security vulnerabilities of this protocol. There is therefore a need for RADIUS Security technology to investigated with a view to its adoption within JRS.

RadSec has been designed to provide secure, reliable transport of RADIUS requests across insecure networks such as the internet. It allows dynamic establishment of connections between peers rather than requiring pre-configured pair-wise trust.

RadSec may eradicate the need for JANET(UK) to operate a RADIUS proxy infrastructure to support JRS. This would reduce the operating costs and provide a more scalable model for the service architecture. In order to provide a core monitoring system JANET(UK) proposes to reconstitute monitoring of the service by creating an out-of-band route for individuals participating sites to publish relevant statistics in such a way that an appropriately authorised central aggregator can collect and process this data - IF-MAP will enable this.