I'll toss this out - who made us responsible for the protection of consumer data passing over our wireless networks? Why do we care?
For devices the college owns, we have the capability today to secure them if necessary for compliance or other business requirements. For the rest of the BYOD crowd, is it a requirement? If 20 million people a week visit a starbucks and use their open wifi, why are we in EDU trying to be different? Do we feel an obligation to "parent" our wireless users? Instead of chasing an impossibility, why not concentrate on what our enterprise wlan vendors can do to get the majority of our users closer to the consumer experience? Jeff >>> On Friday, January 23, 2015 at 10:10 AM, in message >>> <d4cc2ac64db345c2a5d6f18368d0d...@ex13-mbx-10.ad.syr.edu>, Lee H Badman >>> <lhbad...@syr.edu> wrote: Excellent thoughts, Joel. As I mentioned- the new certifications notion was AN idea, not the solution to a hyper-complex problem. But your suggestion is really interesting and sounds reasonable and powerful. Lee Badman Wireless/Network Architect ITS, Syracuse University 315.443.3003 (Blog: http://wirednot.wordpress.com) From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Coehoorn, Joel Sent: Friday, January 23, 2015 12:55 PM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] Trying to get the Wi-Fi Alliance's Attention > does the enterprise wlan market need to figure out how to look more like a > consumer wlan? Is this a problem EDU's have created because of some desire to > provide a service that's more complex or invasive to use then it has to be? > Is there really a need to on-board devices and have them associate using WPA2 > Ent, or could we support the bulk of our users (especially students) using > something more consumer friendly? THIS. For a few years now I've been wishing for an encrypted wifi offering that works much more like SSL does on the web. Divorce the encryption features currently .1x from the authentication/authorization parts. Let me by a certificate from someone like VeriSign or Digicert that everybody already trusts, deploy it to may APs or controller, and if you trust them, you can get an encrypted connection without needing to do anything different than if you were using a public hotspot. It needs to be just that easy for end users. No enrollment, no pre-shared key, nothing. All of the other authorization/authentication things that I want to do (or not do, depending on things like subnet, MAC/ACL list, etc) can be handled after the wifi link terminates at the controller or AP. This is where the WiFi Alliance has the potential to help things. They can push for inclusion of this ability in the 802.11 standard, and they can push device makers to have better support for it. They're pull may be reduced or wifi's early years, but it's not gone yet. Joel Coehoorn Director of Information Technology 402.363.5603 jcoeho...@york.edu The mission of York College is to transform lives through Christ-centered education and to equip students for lifelong service to God, family, and society On Fri, Jan 23, 2015 at 11:39 AM, Jeffrey Sessler <j...@scrippscollege.edu> wrote: I don't know Lee, in my mind is it the device maker's requirements to work in both consumer and enterprise environment, or does the enterprise wlan market need to figure out how to look more like a consumer wlan? Is this a problem EDU's have created because of some desire to provide a service that's more complex or invasive to use then it has to be? Is there really a need to on-board devices and have them associate using WPA2 Ent, or could we support the bulk of our users (especially students) using something more consumer friendly? Take residential (dorm) wifi as an example. If you had a model with an open or PSK-emulated wireless network coupled with location-based service filtering, the user gets on with every device out there, and they can see their chromecast, appletv, etc. and any others on that AP or 1 adjacent. Pretty much gives you the consumer feel. Jeff >>> On Thursday, January 22, 2015 at 11:47 AM, in message >>> <432756068f5346b59e108b825efca...@ex13-mbx-10.ad.syr.edu>, Lee H Badman >>> <lhbad...@syr.edu> wrote: I know self-promotion is in poor taste, but wanted to share this http://www.networkcomputing.com/wireless-infrastructure/the-case-for-wlan-interoperability/a/d-id/1318718? and encourage anyone of like (or opposing) mind to add comments. I'm told that the Alliance is at least reading along, FWIW. -Lee Lee H. Badman Network Architect/Wireless TME ITS, Syracuse University 315.443.3003 ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
