VoIP Meeting Authentication/Authorization 19/04/2006 Bea Huber, Fabio Vena.

Slides:

Advertisements

Similar presentations

Lousy Introduction into SWITCHaai

Advertisements

High-quality Internet for higher education and research Plaats en datum …and possible roles of the NRN VoIP scenarios within NRN networks Erik Dobbelsteijn.

OhioNET EZProxy Service

Terena Mobility Taskforce update Klaas Wierenga SURFnet.

Licia Florio EUNIS05, Manchester 1 Eduroam EUNIS Conference, June Licia Florio.

ELAG Trondheim Distributed Access Control - BIBSYS and the FEIDE solution Sigbjørn Holmslet, BIBSYS, Norway Ingrid Melve, UNINET, Norway.

Connect communicate collaborate Eduroam debugging Gurvinder Singh and Gunnar Bøe, Campus Networks and Systems, UNINETT AMRES Wireless workshop Belgrade,

Access management for repositories: challenges and approaches for MAMS James Dalziel Professor of Learning Technology and Director, Macquarie E-Learning.

SIP and IMS Enabled Residential Gateway Sergio Romero Telefónica I+D Jan Önnegren Ericsson AB Alex De Smedt Thomson Telecom.

Agenda Introduction Requirements Architecture Issues Implementation Q/A Kundan Singh and Henning Schulzrinne, Columbia University.

SIP.edu : OpenSER in an academic environment OpenSER SUMMIT - VON – Berlin 2006.

TF Mobility Group 22nd September A comparison of each national solution was made against Del C – “requirements”, the following solutions were assessed.

Connect. Communicate. Collaborate Proposed SA Videoconference Plans for Year 4 plus 6 Months (M37 to M54) János Mohácsi, András Kovács (NIIF/HUNGARNET)

EduRoam ESA workshop 17 December 2004 Utrecht.

EduRoam: movilidad por Europa... y España Toledo, 29 de octubre de 2004

Deliverable H: the interoperability testbed design Klaas Wierenga SURFnet.

VoIP with the Asterisk PBX Mike Gerschefske Justin Gray James Yoo.

7/14/2000TWIST 2000 ClearNet: Centralized Control in a Decentralized Architecture for Online Financial Services Nasser Barghouti ONEWORLD Software Solutions.

1 Intertex Demo at Spring VON 2004 Booth 809 Did you think VoIP was just old telephony somewhat cheaper? Not with the IX66! Live IP communication is much.

SIP-based Application Development SIP International 2004.

1 CCM Deployment Models Wael K. Valencia Community College.

VoIP Meeting Requirements 22/03/2006 – Saverio Niccolini and Fabio Vena.

VoIP lets you make toll bypass voice and fax calls over existing IP data networks instead of the public switched telephone network (PSTN). Today businesses.

VoIP Billing Solutions Company PortaSIP.

What about 802.1X? An overview of possibilities for safe access to fixed and wireless networks Amsterdam, October Erik Dobbelsteijn.

Hosted VoIP Solution. Image 1 PSTN Media Gateway T1 / PRI POTS lines Others SIP Servers 1.Soft Switch 2.Registration Server 3.Others Cluster A SIP Servers.

EduRoam Australia Project Experience in location independent wireless networking with international collaboration with TERENA EduRoam Project 19 th APAN.

AARNet Copyright 2010 Network Operations The eduroam project group

RTMMoIP Alfredo Terzoli / Mosiuoa Tsietsi. PLAN Defining the softswitchDefining the softswitch An example softswitch: iLangaAn example softswitch: iLanga.

CELFRAME ® CELFRAME.GT Unified Communications over IP.

(From Radius Hierarchy to AAI) Miroslav Milinović University Computing Centre - Srce EuroCAMP Ljubljana, March 2006.

February 25, Infrastructure-ENUM Secure, Private, Next Generation Addressing Infrastructure Douglas J. Ranalli Founder, Chief Strategy Officer NetNumber,

Connect. Communicate. Collaborate Combining RADIUS with Secure DNS for Dynamic Trust Establishment between Domains Henk Eertink †, Arjan Peddemors †, Roy.

VoIP in Disaster & Emergency Response Voice over IP in Disaster and Emergency Response Team Members: Muhammad Ali Mansoor A. Siddiqui Carlos Loarca de.

VoIP Technology Briefing

© Copyright 2007 Arbinet-thexchange, Inc. All Rights Reserved. VoIP Peering Pilot Using the Internet2 Backbone.

June 2005TNC of 35 Content Delivery Development Activities Roger Bolam.

1 SIP deployment in LEARN Nimal Ratnayake Technical Manager, Lanka Educational and Research Network (LEARN) Senior Lecturer, Department of Electrical &

High-quality Internet for higher education and research AAI from the NREN perspective Schiphol, October 17, 2005

AIMS’99 Workshop Heidelberg, May 1999 P805: Internet Roaming Giuseppe Sisto - Telecom Italia / CSELT Project participants:

October 10-13, 2006 San Diego Convention Center, San Diego California High Availability Corporate Faxing Disaster Recovery and Business.

VoIP Meeting Architecture I 05/04/2006 Erik Dobbelsteijn,Jan Ruzicka.

EDUROAM Michael Helm ESnet/LBL 26 Mar EduroamTAGPMA 27 Mar What Is Eduroam? The Roaming Scholar vs the Restricted Wireless Network –I am in.

Single Sign-On in the Danish Educational Sector Per Thorboll Deputy director UNI-C.

VoIP Meeting ENUM 04/05/2006 Rui Ribeiro & João Pereira.

Slide 101/12/2015 Saverio Niccolini IP Telephony Cookbook Project Final report Saverio Niccolini EIVD ( Ecole d'Ingénieurs du Canton de Vaud ), Switzerland.

Connect. Communicate. Collaborate AAI scenario: How AutoBAHN system will use the eduGAIN federation for Authentication and Authorization Simon Muyal,

Connect. Communicate. Collaborate Universität Stuttgart A Client Middleware for Token- Based Unified Single Sign On to eduGAIN Sascha Neinert, University.

Workshop roaming services: eduroam / govroam

A Cooperative SIP Infrastructure for Highly Reliable Telecommunication Services BY Sai kamal neeli AVINASH THOTA.

1 SIP deployment in LEARN Nimal Ratnayake Technical Manager, Lanka Educational and Research Network (LEARN) Senior Lecturer, Department of Electrical &

1 SIP deployment in LEARN Nimal Ratnayake Technical Manager, Lanka Educational and Research Network (LEARN) Senior Lecturer, Department of Electrical &

VoIP Meetings Preparatory Meeting Activities Overview and Schedule 15/03/2006 – Rui Ribeiro.

Connect. Communicate. Collaborate Deploying Authorization Mechanisms for Federated Services in the eduroam architecture (DAMe)* Antonio F. Gómez-Skarmeta.

Authentication and Authorisation in eduroam Klaas Wierenga, AA Workshop TNC Lyngby, 20th May 2007.

IP telephony in CESNET Sven Ubik CESNET Association of universities and research institutes in Czech Republic Operates Czech NREN (CESNET2)

Jakob Gadegaard Bendixen, Shibboleth protected proxy servers a case study from the Danish library sector.

IETF 78 Maastricht 27 July 2010 Josh Howlett, JANET(UK)

Federated Wireless Network Authentication Kevin Miller Duke University Internet2 Joint Techs Salt Lake City February, 2005.

The GRIDS Center, part of the NSF Middleware Initiative Grid Security Overview presented by Von Welch National Center for Supercomputing.

Connect. Communicate. Collaborate educonf Coordinated support of European videoconferencing under the GN2 SA6 framework Dimitris Daskopoulos, GRNET, AUTH.

IPCentrex solution from COLLAB. ONECONTACT PBX THE GAME IS ON Global Surplus capacity Pressure on tariffs Hosted Services (In the Cloud/ telco) Broadband.

SIP AAI a possibility for TF-EMC2 and TF-ECS cooperation

THIS IS THE WAY ENUM Variants Jim McEachern

University of Stuttgart University of Murcia

Welcome to the 20th Anniversary of the IUG

Jonathan Rosenberg Bell Laboratories 8/24/98

GALILEO Approach and implementation

Presentation transcript:

VoIP Meeting Authentication/Authorization 19/04/2006 Bea Huber, Fabio Vena

Roll Call Jan Ruzicka (CESNET) Erik Dobbelsteijn (SURFNET) Joao Pereira (FCCN) Antonio Pinizzotto, Marco Sommani (CNR) Bea Huber, Fabio Vena (SWITCH)

Meeting Objectives In this meeting we talked about the different AA mechanisms used in SIP deployments and discuss how existing AA Infrastructures (Radius/Eduroam, LDAP, SAML/Shibboleth/A-Select...) can be used also for SIP AA. In relation with the last Meeting (Architectures) we also discussed if it makes sense to have a centralized or a decentralized AA mechanism.

Enduser - Server Auth I FCCN: prefers decentralized architecture and authentication mechanism start with a centralized solution, slowly implement the sip domains in the university putting gateways in the legacy pbx, IP based auth. in the central services, central proxy CNR: Deploys 2 infrastructures, auth is important only when calls are routet to telco Architectures is decentralized, organisation is responsible for auth.

Enduser - Server Auth II CESNET: H.323 centralized - Central gatekeepers for pbx gateways and on demand accounts for IP clients at cesnet gk.SIP hybrid. Start point - multidomain proxy, serving the domains of institutions to show the service (on demand, need for SRV records in the name servers of the institution, 4 at this time). Local SIP accounts are created after succesful eduroam authentication (in the home domain). Centralized Call-in possibility - calls to connected institution pbxs could be routed domain.SIP final state - decentralized as much as possible - better integration into institutional environment, decentralized (home)AA for intra domain and sort of federated AA for interdomain and shared resources like MCU and so on.

Enduser - Server Auth III SURFNET: A-Select......, concentrating in webbased clients, radius based auth for other clients. SWITCH: Wants to use existing Auth mechanisms such as Shibboleth or Radius. But hard to implement especially in centralized architecture. As an alternative implement decentralized architecture. Each institution choose auth mechanisms according to their existing infrastructure. Radius login are already in wide use in conjunction with eduroam and can be reused for SIP auth.

Enduser - Enduser Auth FCCN already tested EE Auth with certificates, used self-signed or free certificates? SWITCH mentioned that there are activities to establish Terena Certificates and this CA could also be used for SIP AA. EE Auth not tested with SBC‘s which acts as Back-to-back UA.

Conclusion Distributed architecture to avoid auth problems, local attached databases, currently yes, nut no happy solution

AOB Discussion about TNC SIP Workshop We should hold a BOF for take some conclusion of this meetings and decide how to go on, TF? Fabio will contact Catalin for organizing it Flip ENUM / Billing Meeting next week