eduVPN - a federated security-enhancement service for the R&E community
Time 12/11/19 04:20PM-04:30PM
Room Nottoway (4th)
This presentation aims to present eduVPN, a relatively new service that some R&E institutions as well as NRENs have started to use.
What is eduVPN? It is a VPN service integrated with eduGAIN. It enables end-users to access private resources at their R&E institutions. But eduVPN is also used to secure the first mile when accessing the Internet from insecure WiFi. In this second use case end-users connect to the public Internet after tunneling to an eduVPN server of their choice. eduVPN servers are being operated by NRENs and/or universities around the globe. The operators of these servers are working on a policy framework very much inspired by eduroam to make this collaboration possible.
What makes eduVPN unique is that it is the only Open Source solution that has released both server-side management software as well as all client apps. Apps have been created for Windows 7,8,10, Linux (half-app), MacOS, Android and iOS. Fox-IT, the Digital Security Group of Radboud University and Radically Open Security have audited the code. eduVPN focusses on security and strong cryptography; the integration with existing Identity Management Systems; privacy and GDPR compliance.
eduVPN is being developed within the GÉANT project. It has received support from the RIPE community fund, SIDN fund (.nl registry), Vietsch Foundation and the NREN community. The governance of the software behind eduVPN – also known as Let’s Connect! – has been put under the Commons Conservancy foundation, a non-profit software governance entity. The service is currently offered by a number of NRENs and universities in Europe, Africa and Oceania.
Speaker Tangui Coulouarn DeIC (Danish e-infrastructure cooperation)
Primary track Information Security
Secondary tracks InCommon