I’m not speaking to my security model. I’m speaking of all these public-sector entities that can’t seem to support their mobile workforce, and are asking that someone else “solve” the problem for them e.g. govroam.
Maybe the solution is to abandon both eduroam and govroam and create a global “unsecureroam” that everyone can use, and understands its posture. Jeff From: "wireless-lan@listserv.educause.edu" <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> on behalf of Jonathan Waldrep <wald...@vt.edu> Reply-To: "wireless-lan@listserv.educause.edu" <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> Date: Thursday, January 4, 2018 at 12:13 PM To: "wireless-lan@listserv.educause.edu" <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> Subject: Re: [WIRELESS-LAN] Eduroam and Govroam @Jeff - If you are concerned with users accessing sensitive services over an inappropriate network (e.g., anything that is not the local campus network), then only make the services available on the appropriate networks (e.g., vpn). The same false sense of security exists when someone is working from home, and that is something that is already happening all the time. If your security model doesn't account for this, then it is already broken. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/discuss.