eduroam(UK) Advisory

2021-04 Advisory: Android 11 configuration issues, geteduroam, server certificates

Edward Wincott
Thursday, April 1, 2021 - 17:58
eduroam
eduroam(UK) Advisory
certificates
EAP
Released 1st April 2021 Updated 16th April 2021 This advisory applies to all organisations providing a Home (IdP) service who wish to support users on Android 11 devices. A number of issues have arisen simultaneously which have resulted in a complex situation which requires a careful response from member organisations to avoid user disappointment. The recommended actions are summarised at the bottom of this page. Contents:
Read more

2020-07 Advisory: EAP server certificate considerations

Stefan Paetow
Wednesday, March 31, 2021 - 02:31
EAP
eduroam(UK) Advisory
eduroam
server certificates
eduroam(UK) Advisory: EAP server certificate considerations (July 2020)
Read more

2020-11 Advisory: Implications of MAC address randomisation on eduroam(UK) members

Stefan Paetow
Wednesday, March 31, 2021 - 01:45
eduroam(UK) Advisory
network
network access
eduroam
access
Calling-Station-Identity
Introduction With the introduction of iOS 14 and Android 11, MAC address randomisation will become more prevalent and will have some implications for our eduroam(UK) members.  History Starting with iOS 8 and Android 8 mobile device operating system vendors started using randomised MAC addresses while scanning for wireless networks. These pre-association MAC addresses were random at every sweep. This was a step towards ensuring user devices could scan for wireless networks without being tracked.
Read more

Advisories

Stefan Paetow
Wednesday, March 31, 2021 - 01:27
eduroam
eduroam(UK) Advisory
Click on item and scroll down to the selected content at the bottom of the page. Advisory: Android 11 configuration issues, geteduroam, server certificates   Advisory: Implications of MAC address randomisation on eduroam(UK) members (Nov 2020)
Read more

Advisory: Implications of MAC address randomisation on eduroam(UK) members

Stefan Paetow
31 March 2021 at 2:37am
eduroam(UK) Advisory
network
network access
eduroam
access
Calling-Station-Identity
This article has moved to: https://community.jisc.ac.uk/library/network-and-technology-service-docs/2020-11-advisory-implications-mac-address-randomisation
Read more

Advisory: EAP server certificate considerations (July 2020)

Stefan Paetow
31 March 2021 at 2:39am
EAP
eduroam(UK) Advisory
eduroam
server certificates
This article has moved to: https://community.jisc.ac.uk/library/network-and-technology-service-docs/2020-07-advisory-eap-server-certificate-considerations
Read more

Advisory: WPA2 Key Reinstallation Attacks vulnerability, KRACK

Edward Wincott
Monday, April 15, 2019 - 16:45
eduroam(UK) Advisory
eduroam
WPA
Released: 24th October 2017 This advisory is relevant to all eduroam(UK) Home (IdP) and Visited (SP)  service organisations. It’s aim is to bring to the attention of our community the vulnerability of WPA2 to Key Reinstallation Attacks (KRACK) and describes the position of eduroam.org together with recommend actions to be taken. Background and scope:
Read more

Advisory: Injection of Operator-Name Attribute at the NRPSs (Oct 2018)

Edward Wincott
Friday, October 12, 2018 - 15:42
#eduroam
advisory
eduroam(UK) Advisory
eduroam(UK) Advisory: Injection of Operator-Name attribute by the NRPSs
Read more

Advisory: OpenSSL TLS Heartbleed Vulnerability

Edward Wincott
Tuesday, August 4, 2015 - 10:15
eduroam
advisory
eduroam(UK) Advisory
OpenSSL Heartbleed
Advisory issued by eduroam.OT 08/04/2014 It has come to our attention that there are vulnerabilities in the relatively new 1.0.1-series of OpenSSL (as detailed by http://heartbleed.com/) affecting TLS enabled services via a heartbeat extension. While there are no indications that this affects TLS-based EAP-mechanisms or RADIUS/TLS (aka RadSec) at this time, the operational team has made the decision to upgrade OpenSSL to versions implementing a fix for CVE-2014-0160
Read more
Subscribe to eduroam(UK) Advisory