TNC is the largest and most prestigious European research and education networking conference. It brings together decision makers, managers, networking and collaboration specialists, plus identity and access management experts from all major European networking and research organisations, universities and worldwide sister institutions, as well as numerous industry representatives.
TNC20, the conference’s 36th edition, will be hosted by Jisc, United Kingdom’s National Research and Education Network organisation, and will be held in Brighton, UK.
The workshop is an interactive one-day event aiming for critical questions and solutions about cloud strategy, public and private clouds, pricing models, security, privacy and much more. The training is a wake-up call to deploy clouds: brainstorming about major challenges, exercises, debates, demos and real life scenarios.
How would you address them? Come and find out.
This side meeting is an opportunity for TNC participants interested in broader adoption of orchestration, automation and virtualisation (OAV) principles to share their experiences and best practices. The session will be led by
members of the GN4-3 Network Technologies and Services Development team and will include reporting and discussion on different topics including OAV architectures, tools, techniques and use cases.
REFEDS (Research and Education Federations) was created to bring together Research and Education Identity Federations and other parties interested in Identity Federation to discuss common practices, policies and procedures in
particular to address inter-federation use-cases.REFEDs meeting are primarily addressed to identity federations operators and service providers operating in the R&E community. However REFEDs meetings are open to anybody
interested in better understanding the Identity Federation business. The meeting at TNC20 will be the 42nd REFEDS meeting. More information can be found on the REFEDS website at: www.refeds.org.
The GÉANT Special Interest Group on Marketing Communications and Global PR Network will explore challenges and opportunities in marketing communications for research and education networks. Participants will share experiences, best practices and ideas.
Anyone with an interest is welcome to join.
If you have any suggestions for topics or would like to offer a presentation, contact Laura.Durnford@geant.org
Preliminary agenda: https://wiki.geant.org/pages/viewpage.action?pageId=133762873
The Global Cloud Collaboration Meeting provides a space for NRENs and regional networks from around the globe to share their experiences, successes and challenges in delivering cloud services (commercial or NREN-provided)
to their user communities, and discuss collaboration opportunities to maximise the benefits to the global community of cloud service engagement activities by NRENs.
This exclusive event for speakers and session chairs is the perfect opportunity for them to meet and discuss the presentations, as well as to meet former colleagues and make new contacts. The Speaker´s Reception will take place at the i360 Viewing Tower, right at the seaside and is hosted by Jisc.
Light snacks and drinks will be served.
i360 Viewing Tower
Lower Kings Road
The transfer of large scale science data requires optimal end-to-end throughput. Data Transfer Nodes (DTN) are used to enhance performance. In this BoF, we will discuss how the GÉANT project can help NRENs and end users find the best solution for their needs, fostering the dissemination and collaboration around DTN-related use cases, applied methodologies, hardware and software systems and tools, performance analysis and troubleshooting. The session will feature a set of short talks from invited experts in the area, the results of the survey around DTNs will be presented and the different solutions and currently existing tools will be discussed.
Meeting for Filesender funders and users past, present and future. The meeting will be an opportunity to catch up on the development work within the project, the proposed development roadmap and new feature requests, and broader project developments such as new market sectors and project rebranding.
This BOF is a session to collect input for, and discuss future activities of the Trust & Identity Incubator. The T&I Incubator, which is part of the GEANT project, uses an agile approach to work on various topics in the Trust and Identity space. As such it engages with new topics every six months. This meeting is an open session which welcomes all Trust and Identity specialists in the R&E community attending TNC20.
Official opening of TNC20 by Chairman of the GÉANT Board (Christian Grimm) and CEO of GÉANT (Erik Huizer). Featuring Richard Cooper - Controller, Digital Distribution for the BBC.
The impact of IP is driving an unprecedented rate of change for broadcasters. We’re seeing dramatic changes in the media that people are viewing and the way that they are choosing to view it. We’re able to innovate, like never before, with the services that we provide and the way that we produce them. This keynote will explore the waves that the transition to IP is making from production to distribution, the benefits to viewers, and some of the challenges to come.
Lightning Talks are 5 minute presentations focusing on one key point. This can be an idea, successful project, a cautionary story, collaboration invitation, quick tip or demonstration. This session is an opportunity for ideas to get the attention they deserve.
The rules for this session are easy: five minutes and only five minutes.
One fundamental element which makes our research and education community quite different from the global commercial world is that we do not usually have a solution or product in search of a problem to solve, but we have a problem, and we try to find a solution or a service to fix it. This bottom up (or if you prefer, reverse commercial) approach is our great way to create innovative solutions, and to make life easier for our members and users. In this session we will see a number of these community driven solutions, why and how they were created and the impact they're going to have on their users.
We will present the Messaging and Collaborative platform provided by RENATER (the French NREN) to the French Research and Higher Education community, which is hosted and operated by RENATER.
This service aims to provide a real alternative to major commercial platforms, and takes into account French government data security recommendations, for example data are stored in France by RENATER.
Universities environmental footprints are partly due to staff mobility needs. The Swedish Higher Education Authority (UKÄ) arranged, together with the Swedish Network for IT in Higher Education (ITHU), on September 27th 2019, a virtual conference on the subject educational development and the impact of using digital tools in education. The conference had around 500 participants and was held in Zoom. Many significant actors within Swedish Higher Education were present at the conference and the response to the conference was overwhelming. In the presentation the success criteria are identified and discussed, such as Guiding principles, Conference Structure, Social activities and Technical platform. The competence is highly requested within authorities in Sweden and from other countries.
Over the years, CERN activities and services have become increasingly reliant on commercial software and solutions to deliver core services, often enticed by interesting financial conditions based on recognising CERN statuses as “academic", "non-profit", “research", etc. Once installed, well spread and heavily used, the leverage used to attract CERN service managers to the commercial solutions tends to disappear and is replaced by business models and licensing schemes, that are unaffordable in the long term.
CERN's value of openness aims to deliver the same service to every type of CERN user, from employee to researcher. As a result, a high number of licenses is required to deliver services, and when traditional business models on a per user basis are applied, the costs per product can be huge. More importantly, the Cloud approach adopted by many enterprises introduces a new risk on the data. It is always easy to import data in a cloud system, but always difficult to get data out.
The MALT project was started in 2018 to chart a course towards a different future. We will describe the methodology used to identify suitable alternatives, and the progress towards a future that prioritises Open Source, avoids vendor lock-in, keeps hands on the data and delivers the same service to everyone.
It's not the technology; it's us, the human beings. We know what we want - faster service provisioning, reliable changes, easier rollbacks - but how we get there is still a big puzzle. We'll hear from three different institutions about how they're solving this tricky problem.
AARNet is on a journey.
In the beginning, network engineering was done by old-school artisans. Configurations were lovingly hand-crafted. Routers and switches petted and cared for. Loving attention was paid to each device under monitoring. This was fine…. until it wasn’t fine any more. We’re in 2019 now.
Our systems have become cattle, not pets. Our ‘CloudStor synch&share’ service has grown over the last twelve months from 50,000 to over 78,000 total users, with hundreds of containers across four physical server locations. AARNet network engineers have reluctantly started handing in their CLI licences and learning to navigate Ansible + python + Git + Jenkins.
Our hypothesis is that operator error should be reduced, time to deployment would be minimized, troubleshooting tools would be improved, integration with applications achieved... is this true? Is it all a pipe dream?
AARNet is on a journey towards a new way of looking at how we run our network and services. Tune in to hear what we have achieved to date. What has turned out to be harder than expected? How have we measured success? Are we starting to achieve our long term goals? All shall be revealed…
The presentation will introduce the work of the WP7 T2 - Network and Network Service Evolution and Future Planning working group within the GN4-3 project. The group builds on the results of the Consolidated Connection Service activity of GN4-2 and its main goal is to deploy, maintain and evolve the set of tools for automated provisioning of Ethernet circuits in GEANT network and integrate with other operation and monitoring tools.
The overview of the GÉANT Connection Service (GCS) and different software tools supporting it will be provided. Overview of the main SW blocks and interactions between them will be explained together with the solutions for the integration of GCS with the NOC tools currently used in GEANT.
In the past, a lack of off-the-shelf software tools to manage the packet network has led to a culture of nodal CLI provisioning and a menagerie of homegrown scripts for assisting in daily networking tasks. In recent years more mature software tools are becoming an increasingly important part of daily operations as many organizations attempt to reduce OpEx costs, get better visibility into their network, and perform reactive analytics. Workflow orchestration and automated provisioning solutions are two examples of where software can help reduce this operational overhead; however, many have found deploying these tools to be fraught with roadblocks. In this talk we present how recent experiences have shown impedance to deploying software-based networking solutions is becoming less due to software issues, and more related to human factors. We will present some thoughts on how to best address these human factors though real-life scenarios from the NREN community.
A pillar of AARNet’s 2022 Strategic Plan is the Establish a National Collaborative Research Platform. This is leveraging the success of our Cloudstor, a collaborative research data storage platform. To implement this strategic initiative AARNet is collaborating with other e-infrastructure providers in Australia to deploy a distributed open stack community cloud for merit allocation to researchers across Australia. With the aim to launch the first stage of the service in July 2020.
There are numerous Cloud Storage Services for Synchronization and Sharing, or CS3, serving the R&E space in Europe. Such services, typically using open-source on-premise solutions, are driven at universities, research institutions and NRENs and in recent years have collectively formed a bottom-up, grassroots community (cs3community.org). These services are often isolated islands and do not necessarily fit with the collaborative nature of many research activities. It is very often difficult to give access to other institutions, share data across platforms and run applications on top of this fragmented landscape. These concerns have led the institutions mentioned above to come together and interlink these services; and they have received the support of EC to do this as a project: CS3MESH4EOSC.
GARR, the Italian NREN, is actively working to provide the GARR Workplaces service to the community as a SaaS in the GARR Cloud. GARR Workplaces allows users which have strict regulatory requirements or concerns on privacy, or on the geographical location of their data, to enjoy the advantages of a web office real time collaborative platform, with a rich set of features and a high usability.
GARR Workplaces is based on OnlyOffice: available as open source software, provides a multi-user online document editor which is 100% compatible with Microsoft Office documents, as well as tools for document management, communication (E-mail, CRM, calendar, chat, forums, blogs) and project management. It is designed to be integrated with pre-existing systems, as it features storage backends for OwnCloud, NextCloud, Google Drive, OneDrive, etc. and support for external authentication, through e.g. LDAP. As for the deployment, the preferred OnlyOffice installation method relies on a set of interconnected Docker-based microservices.
As a technology, federated authentication has been in use in the world for close to 20 years. From one perspective, that means the technology is a wild success! Feedback from research communities, service and identity providers, however, has long suggested that the actual challenges they are facing to adopt federated identity technologies need to be addressed before they can to full extent deliver value to its users. Experience also shows the journey that users are having while encountering federated authentication needs to be significantly improved and simplified. This session will focus on several initiatives related to ease of use and adapting identity federations technologies from aspects of end users, research communities, service and identity providers. It will also show how we interact with EOSC.
The European Open Science Cloud (EOSC) will enable the digital transformation of research towards more data-intensive, collaborative and cross-disciplinary science. This presentation will introduce the capabilities of eduTEAMS and describe the ways in which eduTEAMS can be used to connect national infrastructures, services and research communities to EOSC. We are going to show how NRENs and research infrastructures can use eduTEAMS to:
Provide VO management platform for their communities and enable them to access EOSC resources.
Deliver services to communities in EOSC following the FAIR principles in various production environments.
Reduce the complexity of implementing federated access and connecting to EOSC for Service Providers.
Implement policy control and enforcement points that meet the GDPR requirements.
User experience with federated authentication starts with users finding their identity provider. That is where projects like the RA21 initiative and its operational successor, SeamlessAccess.org, have focused their guidance. This presentation will introduce the SemlessAccess.org project and will engage the audience with demo how the user experience advice has been implemented. We will also talk about the next steps and about the guidance coming out of the SeamlessAccess.org Entity Category and Attribute Bundles Working group. While SeamlessAccess.org does not itself have anything to do with attribute release, with the improvements in the federated authentication workflow, attribute release becomes a strong area of interest for both service providers and various special interest groups.
The Australian Access Federation (AAF) began the journey to build a cloud IdP platform (Rapid Identity Provider) in 2016. Two years later the first customer migrated from their on-site IdP to the AAF platform. This presentation invites Federation Operators interested in cloud IdP platforms to hear about the successes and learnings from the AAF’s journey over the last four years.
The presentation will discuss topics like: the rationale and strategic objectives, high-level architecture, resourcing levels and investment, the things we wished we had known when we started and the challenges that are still to be resolved (hint: none of them are technical).
The Opening Reception will take place at Hilton Brighton Metropole, TNC20’s venue, right after the last parallel session of the day on Tuesday 9 June. Join us and take the opportunity to socialise with other delegates, meet the speakers and engage with our sponsors. Finger food and drinks only.
Following last year’s success, TNC will host its second Kick-off Party on the first day of the conference to set the scene for TNC20, get everybody making waves together and networking.
The party will take place at the Mesmerist, a stylish and sophisticated lounge bar located right at the heart of the famous Lanes - this beautiful, historic area has been the main hub of Brighton since the 1700s, and is known for the unique shops and bars that inhabit its winding streets.
Come to spend time with old friends, meet new ones and mingle with all of us in a fun, relaxed and informal atmosphere.
Drinks included (max 3 alcoholic drinks and unlimited for non-alcoholic drinks) and live music!
Please, note that you MUST take your conference badge with you to join the party.
1-3 Prince Albert St
“Enhancing customer value of the SURFcumulus cloud proposition” is about value creation of cloud services for Research & Education by a structured and community serving approach. The first wave of SURFcumulus delivery was a simple transactional type of service. In the past few years the SURFcumulus proposition has evolved and now is moving towards a new value proposition including professional services for cloud implementation, governance & operations and a community SaaS solution for Virtual Research Environments.
RNP and ANPROTEC are moving together to leverage a National Innovation Network by offering RNP cyberinfrastructure and services as an innovation platform to science and technology parks amongst other players. To achieve such a goal, RNP and ANPROTEC have decided to undergo a pilot project inviting 6 science parks to establish the conditions for the admission and participation of innovation promotion environments as RNP System User Organisations. This presentation will focus on results of the pilot and on the building blocks to enable the establishment of a long term relationship with this new User Organisation community.
The Norwegian ecosystem of central organisations supporting and providing shared ICT services to Norwegian HE&R went through a major restructuring during 2017. This restructuring has lead to a changed role for the Norwegian NREN Uninett, and the establishment of a new governmental agency (Unit) with a strong, decision-making mandate for a central shared services portfolio for Norwegian HE&R.
The dust of this major operation is now starting to settle which gives an opportunity to tell the NREN community about the reasons for the restructuring and the envisioned benefits, explain how Norway now has organised its HE&R ICT support and reflect on lessons learned so far.
The lessons learned so far are likely to be of interest to others, especially NREN management.
In addition I hope this talk will help the NREN community understand who does what in Norway and how to engage with us.
NRENs have a remarkable opportunity not just to provide a new service to our clients, but to integrate our way of working with them, and perhaps even overcome the historical challenges we've had in providing services end-to-end. How do we get this right? We'll hear two presentations from four speakers in this area, and then engage in a full discussion with everyone in the room invited to contribute.
CSC – IT Center for Science Ltd has launched a new Funet Campus Network as a Service (Funet CNaaS). Funet backbone router network administration has been automated with Ansible, and Funet CNaaS will use the same automation methods as in the backbone.
NREN taking charge of managing their customers’ networks need to have powerful, versatile and easy to deploy tools that can scale to networks of different sizes. This talk will present an automatically deployed measuring infrastructure using perfSONAR on small devices, paired with an ELK based easy to read dashboard that is monitoring both user experience and network performance.
Previous maps of the global R&E network helped visualize its reach in a one-time snapshot but until now, showing the real-time, global reach of the GREN - at the level of individual institutions - was unfeasible. Enter the GREN Mapping Working Group, who are making waves by building a dynamic, real-time visualization of the value and reach of the global R&E network.
This talk will update the global community on the evolution of the GREN Map, the challenge of making the map a reality, and the steps the Canadian NREN is taking to launch a pilot implementation.
Science applications are dependent on international research network connections This talk will describe what a Software Defined Exchange points (SDX) is and why SDXs are relevant to scientific workflows in the global R&E network (GREN). The AtlanticWave-SDX project and its SDX controller will be presented as a novel distributed programmable controller along with use cases for two science drivers. Results from experiments conducted in an international testbed alongside a production SDN environment will be presented. Finally, future work on the development of SDX will be described to improve support of international science applications, such as programming application requirements into the SDX.
The Networks for European, American, and African Research (NEAAR) collaboration, led by Indiana University (IU) and GEANT, has been working closely with the NetSage project to better understand network usage and data transfer performance of international circuits operated by the NEAAR partners.
This talk will provide an overview of NetSage and walk through several live examples of how the NEAAR partners are using NetSage dashboards to investigate the use of international links. We will highlight practical use cases centered on US/European science collaborations and show how network engineers, research users, network planners, and CIOs can use NetSage to understand network usage and data transfer performance.
When we have our heads down in code or in cables, sometimes it is easy to forget the impact of what we do. As keynote presenters in this plenary session, Tanya Reilly and Paulo Artaxo will each remind us in a different way that our work makes waves that can change society, the environment and people’s lives, and challenge us on what our obligations are as a result.
Circuit breakers. Fire partitions. Sprinkler systems. Smoke alarms. Modern buildings are very good at preventing, isolating, slowing and detecting fire. But it took a lot of work and a lot of fires to get there. Let's look at the evolution of the New York City fire code and compare it to our own path as we evolve the rules for software reliability.
Few research areas show the need to globally share large data sets and knowledge as much as climate change. From ground-based observations, satellite remote sensing products and large modeling results from all Earth compartments (atmosphere, lithosphere, hydrosphere, biosphere) we collect and store large amounts of data and information that needs to be shared. This is specially true for developing countries, with a need to integrate these countries in global climate research and educate the population. The challenge is vast: We need a big and global strategy that includes science and education, in addition to public policies based on science at all levels.
Lightning Talks are 5 minute presentations focusing on one key point. This can be an idea, successful project, a cautionary story, collaboration invitation, quick tip or demonstration. This session is an opportunity for ideas to get the attention they deserve.
The rules for this session are easy: five minutes and only five minutes.
Our three presenters in this session will take us on a whirlwind tour of NREN service delivery, starting from the beginning of a service, when onboarding new users, through to when it becomes neccessary to redevelop or reconsolidate an existing service and finally what happens when a service needs to reach it’s end. They will cover the mix of technical and organisational considerations which influence these decisions we all face.
This talk is about getting rid of services. Usually we try to keep them alive as long as we can. And if we try to shut them down, we cannot. Because suddenly it is people’s most favourite service or some important person is relaying her life on it or without that service a baby kitten dies. Like Tom Petty says in Learning to Fly: "But what goes up, must come down". But he also figured: "Coming down is the hardest thing". Learn how we can get rid of services. Let us find out how to successfully bring the wave down.
As NRENs, we've always struggled with takeup. Not the really core stuff, like packets on the wire. But further up the stack, and beyond a special few (say, eduroam and eduGAIN) many of our services are used by relatively small, relatively specialised pockets of researchers. Everyone else often uses commercial "freemium" services, even when we have something superior: "But [insert favourite service] gives me [insert favourite feature] for free!"
And yet, we have technology, infrastructure and a global federated login that Facebook would kill to have. What are we missing?
It turns out that we're really close, and by using federated login and the DNS, we have a trojan horse that could make our services many times easier to adopt.
From 2017 to 2019, we overhauled most of our VM and Service infrastructure. Taking it from mostly manual configured to fully automated provisioning and configuration. We will present the situations we was in, and the decisions that led us to build our automation system. Naturally we
will also go over the actual automation system, which is mostly build around Puppet. However the most interesting part, is not the automation itself, but the testing setup, as it is almost not possible to build good automation without a good testing setup. Finally we will reflect on the changes that automation has brought to the organisation, and what we have learned from it.
ESnet has successfully developed Precision Network Telemetry using P4-programmable NICs. In this talk, we generalize our cases from network telemetry to scientific edge computing, and describe a common platform that can perform Stateful Edge Computing at rates enabled by emerging 400G network interfaces. The same hardware and middleware can be used for WAN networking, as well as DSP and RISC-style processing on scientific workloads for radio telescopes, beam lines and other large scientific instruments.
The lower network layers are facing the innovation of programmable chips, ushering the capability to perform user programming in the data plane. The Software-defined Networking paradigm started the waves disaggregating network nodes, which now have reached the data plane for packet switching and also the optical layer. The presentation elaborates on the scenario and brings first hands-on experience gather in the GN4-3 project on In-Band Telemetry and DDoS mitigation. Great improvements in monitoring and innovation are possible, however data plane programming is not programming as usual.
The networking industry landscape is evolving fast, driven by cloud market. The new router type called white box, is not only very competitive in comparison with traditional router but also decouples the network operating system from the hardware in order to remove the lock market effect. Is the network in the same situation now as when Linux appeared in the UNIX world? Is white box a real opportunity for research and education networks? In order to suggest a first answer, the performance analyses, the use cases investigation and the feedback from the first white box deployments in production will be presented.
To date there are thousands of Identity Providers around the world, which offer the potential to greatly simplify digital life for students and researchers. This session focuses on use cases where Federated Identity can (or already does!) have a direct, positive impact on those individuals; online voting registration, electronic matriculation, cross-border access for exchange students and lifelong identity.
SURF is working with institutions on the organisation of student mobility and removing the barriers that exist. We are developing the concept of an eduID to not only uniquely identify students across institutions but to provide them with a lifelong identity, to be used in the context of education and research. EduID is potentially a disruptive concept that needs broad support from all stakeholders. We will present our eduID vision, showcase our current status, including our current practical experiences, international context and discuss the next steps in realizing the shared vision of an eduID that contributes to the seamless mobility of students.
Jisc has launched a SAML-based service running on auto-scaling hybrid cloud infrastructure that allows students in the UK to register themselves on the electoral roll to vote in national and local elections. In this talk we’ll discuss the reasons for doing this, how it’s deployed and managed, the joys of dealing with central and local government about such a political service, how the service is being utilised so far, and lessons learned.
MyAcademicID aims at developing a European student eID scheme for higher education by bridging eduGAIN, eIDAS and the European Student Identifier. Students will be able to authenticate and register themselves electronically at higher education institutions and to gain cross-border access to different online student services through a single sign-on when going abroad on exchange. Within the project timeframe, four e-services will integrate MyAcademicID: the Online Learning Agreement, the Erasmus+ Dashboard, the Erasmus+ Mobile App and the PhD Hub Platform, showcasing how mobile students under the Erasmus programme will benefit from this scheme.
The emergence of data cubes has caused waves in the field of geoinformatics. This presentation provides an overview of the technology as well as its potential impact on researchers lives. This presents an opportunity for NRENs to engage with this technology, to boost science collaboration globally for the benefit of humanity.
Within the French open science plan and more generally based on open science paradigm, IRD is implementing an institutional policy aiming at controlling data life cycle. This policy is focused on the long tail of data, namely the many small, inaccessible and unorganized datasets. The open research data repository DataSuds, should make it possible to provide a better knowledge and management of the sustainable development research data, and thus to better assess the impact and quality of the scientific productions. This data dissemination will make it possible to better serve the southern community and manage the resources allocated to digital science, in particular thanks to connecting to RREN and NREN.
An exploration of the pain points associated with the publication and preservation (by non specialists) of the research underpinning scholarly publications and the steps Jisc took to address that pain. particularly in relation to the Research @ Risk programme and the Jisc Open Research Hub service.
In this presentation we intend to outline:
• the background to the project
• the processes we undertook to bring this project together
• the underlying data model and the messaging layer it facilitates
• the current service offering
• the direction of travel for future development of the service. and
• Spin-off initiatives (Such as PAR – Preservation Actions Registries)
Three mayor R&E Networks have recently tendered and committed the build of their new Optical Fleet; ESnet, GÉANT and Internet2 will give an update on their ships, crew and routes. With the help of Optical Vendors we will then draw a rough outline of the 7 Seas and where they meet the end of known Networking world.
ESnet, GÉANT and Internet2 will give an update on their experiences in tendering and building new optical networks for the research and education community
Optical vendors supplying our community will give an overview of the challenges they face in support roll-out of optical networks, including a look at the far-out boundaries of current optical tech and stretching 100GE.
Worldwide footprint and more than a decade of successful operation have moved the eduroam service to its maturity stage. Today, focus is on supporting services - tools and procedures that enable further easier deployment, enhance the trust and assure that eduroam is delivered in a reliable and quality manner. Activities planned and realised in GEANT4-3 project that have the objective to ease the deployment for institutions and National Roaming Operators (NROs), improve the end user experience and ensure the quality of eduroam service will be presented.
Extending eduroam in the US to K-12 and Beyond: Lessons from a pilot program.
While eduroam enjoys broad ubiquity in many parts of the world, uptake in the US has been slower outside of higher education. A pilot program between InCommon (the national operator of eduroam in the U.S.) and the Utah Education and Telehealth Network has explored ways to extend eduroam to K-12 and throughout a community. This session will discuss the experiences from that pilot and Internet2’s plan for a program to expand eduroam usage via similar partnerships with other regional networks in the US.
eduroam today is a very well-known service in the community. It is deployed across thousands of education and research organisations in over 100 countries, and serves billions of roaming end-user authentications each year.
The consortium had to constantly adapt to growth, both proactively and reactively changing its policies, procedures, governance structures, technologies, and support services to enable it sustaining its tremendous growth rate, sometimes 300% per year. The presentation will provide an overview of the major milestones in eduroam technical development over time, along with a deeper look at the most recent addition: the upcoming eduroam Managed SP service.
GRNET provides high speed interconnection for numerous large networks and thus it can be a target for large-scale Distributed Denial of Service (DDoS) attacks. Therefore DDoS mitigation is important to GRNET and we will showcase our journey deploying a modern approach using eXpress Data Path (XDP)
Network data flow is constantly increasing. Large volume of noisy data hides the threats, usually difficult to be recognized at the first glance. Automated systems can support decision-making process to deal with incidents efficiently.
Within H2020-Protective project we studied the possibilities of combining data from variety of sources to improve alerts correlation and provide better prioritization for handling attack attempts.
In the presentation we want to share our experience in implementation of multicriteria decision aiding approach (MCDA) based on rough set theory and try to predict what is the future of decision aiding systems in automation of monitoring systems.
In the past years, Threat Intelligence (TI) has become an important part to detect cyber attacks and incidents. TI data is publicly provided by different sources, including the widely known Internet Storm Center (ISC) of SANS.
A large number of contributions from research has proven that this data can be effectively used to detect global incidents on the Internet such as worms, large-scale DDoS attacks, and activity scanning for new vulnerabilities. We will demonstrate how time series analysis (ARIMA) can be applied to detect such malicious activity and provide exemplary results.
This presentation will look into the GÉANT cloud team efforts on community clouds. Cloud infrastructure comes with three basic delivery models - public, private and community clouds. Hybrid clouds are an increasingly prevalent trend and the GÉANT collaboration aims to scale up national service offerings to a pan-European level. The European National Research and Education Networks (NRENs) collaborate on the development and delivery of a portfolio of online application services, through a hybrid, multi-cloud approach, making available sector-specific community services, as well as commercial offerings. Through this pan-European aggregation of demand and expertise, the GÉANT cloud team provides NRENs with a service delivery ecosystem that can be applied domestically to enable their research and education member institutions to adopt the offered services in a safe and seamless manner.
OCRE, the Open Clouds for Research Environments project, serves to provide the European research community with easily accessible digital services driving innovation and agility across research disciplines and region. The second ambition is to assist the community with driving the adoption by means of a series of funding initiatives.
OCRE provides researchers with the opportunity to adopt a cloud-first approach to research support and move towards a flexible, agile environment in terms of solution interoperability, collaboration and sustainability with regards workload hosting.
CLONETS-DS is a potential European Union-funded research and innovation action intended to facilitate the vision of a sustainable, pan-European optical fibre network for precise time and frequency reference dissemination, by bringing together expertise from national metrology institutes (NMI), academic groups and research infrastructures (RI), research and education networks at the national and European level (NREN, GÉANT) and innovative high-technology small and medium enterprises (SME).
Within the last decade, optical atomic clocks have shown to be outperforming the best Cesium clocks, which are used to realize the unit of time. Being able to connect those new clocks has shown tremendous potential that would stimulate multitude of domains (fundamental research, GNSS, dissemination of the SI second, smart grid…) leading to the emergence of new Time and Frequency services. We report here on first long-haul bidirectional industrial implementation operating @1542.14 nm and co-propagating with data-traffic, Paris-Lille (2018) and Paris-Grenoble (2020). Service is fully integrated in RENATER day-to-day procedures (commissioning, operating, monitoring) as any other standard service.
This presentation describes work planned within the Network Technologies and Services Evolution work package (WP6) of the GÉANT GN4-3 project on emerging quantum key distribution (QKD) technology and its potential applicability to the GÉANT and NREN community.
A single breach in the security perimeter can have devastating effects on your network services.
We will present GARR’ SCARR service for on-demand repeated security scans. SCARR is a flexible, secure, remote vulnerability scanning service that enables GARR network Access Point Managers to detect issues in their network assets, providing also treat root causes suggestions and remediations.
SCARR is available to the GARR community since October 2019: 130+ organizations used SCARR to scan 360+ public IP networks in the first month.
In this contribution we will discuss the GARR community feedback. We will present SCARR design and introduce next evolutions.
Canadians know something about waves, living in the country with the world’s longest coastline. And we know a few things about collaboration, which is why we’re excited to share the details of a series of cybersecurity collaborations – among NREN partners, among NREN partners and universities, and among institutions. Each collaboration is focussed on a different dimension of cybersecurity, but as a collective they contribute to an overall framework that strengthens the cybersecurity stance of the entire ecosystem. Join us and learn how to ride the wave without getting swamped!
eduVPN is a VPN solution targeting the research and education community. The service provides secure access both to private institutional networks (as in typical corporate solutions) as well as to public networks. Since it started, eduVPN has focused on user friendliness. The use of client apps aims to reduce the costs associated with configuring VPNs. But it was always a rather deductive approach, implementing the ideas of the developers. This talk focuses on the lessons learned from a co-creation process the eduVPN team engaged in with their targeted audience, within a project funded by the first NGI_Trust Open Call.
The Up2University (Up2U) project is the first attempt at a pan-European interaction involving schools, universities and NRENs. With numerous European NRENs already engaged with schools nationally, and universities interested in contributing to content and on-line tools to attract future students, Up2U has developed a software toolbox, adapting and bringing together twelve software tools into an integrated portfolio hosted by a small number of European NRENs, including PSNC. The presentation will focus on how a service offering was created from the toolbox, and discuss the delivery model proposed by PSNC as well as new extensions for the educational sector in Poland.
In 2015, following the connection of Croatian schools to the national R&E backbone in 2005, CARNet began the e-Schools project with the aim of creating digitally mature schools and preparing pupils for the job market, further education and lifelong learning. Using the Policy-led Multi-Criteria Analysis, the project has focused on two main types of service, user-oriented and technical prerequisites. The presentation will set out how the services were conceptualised and will describe the challenges of scaling the services to the whole education system. It will conclude with an evaluation of the impact of the pilot phase and the services provided.
In 2016 Arnes started the SIO-2020 programme to strengthen education through three activities for improved ICT infrastructure at Slovenian schools: building wireless networks at all schools; buying ICT equipment; developing e-services and e-educational content. The programme relates to the Knowledge, Skills and Lifelong Learning axis of the European Cohesion Policy 2014-2020, focusing on “improved competences and improved achievements of young people and increased competence of educators through greater use of modern ICT in teaching and learning.” The presentation will describe Arnes’ approach to the project, the successes so far, what still needs to be done, and user feedback.
Muse What-If Analytics guides network planners on how to optimize their network’s ability to sustain failures and assure SLAs. It covers:
· Creating a multi-layer packet-optical topology in real time from real data.
· Understanding the service impacts of stress testing the topology under multiple large and small failure scenarios.
· Simulating the network’s ability to maintain SLAs by applying dynamic protection and restoration schemes.
· Generating custom reports for taking preventative actions.
In this session, we will hear about the important layers of cloud computing, going from monitoring and self-organizing based on specific thresholds, learning from real experience, how to deliver a high-quality Storage As A Service using Ceph to universities, colleges and other educational and research environments, and concluding hearing how to deploy a massive amount of cores, painlessly.
Scaling out an OpenStack cloud can be a time-consuming and tedious task. During our mission to deliver the first OpenStack cloud offering by GRNET, we designed and implemented a set of tools and processes to make deployment and operation of OpenStack-based clouds at scale as effortless and errorless as possible. After months of refinement, this is our current solution.
Safespring delivers backup, large-scale cloud storage and infrastructure as a service through agreements to all universities, colleges and other educational and research environments connected to the national research networks, SUNET in Sweden and UNINETT in Norway.
Safespring has been operating Storage as a Service running on Ceph clusters for the last three years, targeting higher education in Sweden and Norway. In this session, it will be sharing some of their experience. In this presentation will be shared some lessons they have learnt about how to build a good team, how to organise development and operations, share a little about some incidents they have had.
Although cloud computing has many advantages enabled us to manage such a large e-infrastructure, it brings some challenges in security, dynamic resource allocation and use of shared physical resources that need to be addressed carefully. A customized monitoring tool is, thus, critical to operating cloud services efficiently without service downtime and to interactively visualize usage activities, resource allocation, performance measurements and network flow aggregated by each tenant. I will talk about our customized monitoring tool deployed for ULAKBIM cloud services and share our experiences.
Debugging a network performance issue using perfSONAR tools on the command line interface might be challenging to some users. In this presentation, we will discuss two common use cases that would benefit from the introduction of a new graphical user interface. We will present the design and architecture and demo this new GUI that helps network engineers trigger on-demand measurements in an easy to use visual front-end.
Managing a small node mesh at scale comes with its own challenges, especially when the management system is run by another organistion to which both sides must, by design, remain untrusted. How do you manage updates, configuration changes and even system rebuilds from several firewalls away? How can you test changes when your primary testlab needs to remain trusted to allow for other projects? Come along and find out how to solve these problems and more! (Note Chocolate TimTams may be involved)
An in-house monitoring Netflow monitoring tool is developed in ULAKBIM to replace current netflow capture/analysis tool. The monitoring tool, namely FLOWCU, can achieve 200K EPS capture rate with dockerized scalable architecture and provide real time analysis of netflow data using text based distributed stream analytics architecture.
This presentation is an overview of research in quantum communications and networking using testbeds. Quantum communications and network are particularly important research areas for a wide range of innovative applications. Recently, Northwestern established a new initiative, INQUIRE, to advance quantum science. Northwestern, Argonne National Laboratory, Fermi National Accelerator Laboratory, the StarLight International/National Communications Exchange Facility consortium, the Metropolitan Research and Education Network (MREN), and other university research collaborators formed a partnership to create a metro scale quantum networking testbed to investigate fundamental issues in quantum communications and networking, especially interconnecting quantum computers.
Network Researchers are to be congratulated on results derived from funding invested by their government agencies. The diversity and depth of research in High Performance Networking is visionary and significant. However, projects do not always align to Industry needs, nor do they leverage Investments made by for-profit researchers. The top 5 communications vendors collectively invest $8.306B annually in R&D. 5-10% of this money is invested in forward looking “advanced” research. This talk shines a light on, what motivates Industry researchers, how academic R&E net researchers can better tap into Industry R&D and offers examples of successful approaches, projects & Public-Private-Partnerships.
Mr. Wilson is Ciena’s Executive Leader of a multi-million-dollar External Research program that funds academic and advanced “experimental” network projects in Europe and around the world. His TNC20 content is drawn from over 20 years of active, productive, exciting collaboration with NREN’s, select university partners and competing vendors.
Time and Frequency (T&F) services are critical to many civilian and industrial sectors, like positioning, energy, finance, advanced science use case. Therefore T&F services become of major interest. During the past few years, National Metrology Institutes have successfully developed non-standard fibre-based techniques. These new techniques are showing unmatched stability performances – three orders of magnitude better than the best commercial services. Once again, NRENs are in a strong position to undertake applied research in a way that commercial companies would find difficult. OTFN is catalysing the emergence of these new T&F services in Europe by creating new opportunities and raising awareness. Therefore, will proudly present early achievements together with recommendations.
Closing of TNC20, featuring a keynote from Dr Adam Lewis, Managing Director, Digital Earth Africa Establishment Team.
Research infrastructures are transformative capabilities on a global scale. They can create waves of deep change in the way in which scientific data and models are applied to benefit society. They typically sit at the leading edge of capabilities and concepts, and can play a unique enabling role for innovations such as the Open Data Cube (opendatacube.org), allowing them to scale from an idea to a reality and massively increasing the impact of science. The Open Data Cube has grown from innovations in Australia and is transforming the way satellite images are being used to map, monitor and manage land and water resources – not just in Australia but in America, Asia, Europe and Africa. Digital Earth Africa will be the world’s largest operational platform for the exploitation of satellite imagery. In an era of accelerating global change and unprecedented challenges for humanity, enabling ‘impact at scale’ may be a core strategy for the NREN community.
Collaboration between ORCID, Federations, and FIM solutions has grown. Federations lead ORCID consortia of institutions; ORCID sign in has been considered as an IdP of Last Resort for research collaboration tools; ORCID iDs are included in the eduPerson schema; and iDs are sometimes used to better understand identity linkages when individuals change institutions. Conversations happen globally among ORCID, federation operators, practitioners, software providers, and standards committees, though rarely over the entirety of this group at the same time.
Here we convene to consider strategic topics that involve the ORCID platform or iDs, and deepen collaboration among the ORCID and FIM communities.
Description following soon
European NREN CEO, CTO, Research Engagement and European Policy officers.
The Special Interest Group on Transnational Education, SIG-TNE, promotes collaboration between research and education networking organisations around the world in supporting the provision of education that is developed in one country and delivered in another.
Areas of interest include:
- Basic connectivity approaches for campuses in other countries.
- Establishing relationships with local partners (internet service providers and national research and education network organisations).
- Connecting policies and end-to-end network performance.
- Monitoring and international support.
This session will cover an overview of the TNE workplan and its main four workstreams:
- TNE data – regional, national and global
- Global TNE policies
- Technology barriers and TNE service development
- Tools, toolkits and resources.
This BoF is for people interested in eduVPN. Since our meeting last year at TNC19, the number of NRENs and institutions using the service has grown. This meeting aims to present the status of the service, answering questions from NRENs and research and higher education institutions and gathering new requirements.
A community-driven discussion around MFA and strong authentication in identity federations, to share updates and ideas on what federations are doing in the space. The intended audience is Federation operators, IdP administrators, and research infrastructure operators with an interest in enabling and leveraging strong authentication to services through research and education federations.
Mobility Day is an annual event that is part of the GÉANT Community Programme (GCP) and was put in place as an annual check to replace the more regular TF-Mobility meetings. Mobility Day has taken place at TNC since TNC16.
The day typically covers topics including govroam, eduroam, 4G, 5G, hotspot 2.0 and other mobility related topics.
Mobility Day is supported by the GeGC.
Number of meetings:
1 GeGC meeting (morning)
1 Open session (afternoon)
The workshop will be discussing future strategies on how the NREN community can support educational institutions with innovative technologies. The first part of the event will be used to give more indepth overview of various NRENs educational services, how they are organized and managed within their organization. With specialised topics such as eduID, edubadges, accessibility, standardization…and more, we would like to discuss possibilities for future collaborations, challenges and good practices. Furthermore the workshop will introduce the new Task force (TF) on education within GEANT Community programme.
Co-organisers: Birgitta Hemmingsson (SUNET), Erik Kikkenborg (NORDUnet), Vegard Moen (UNIT), Esther Wilkinson (Jisc), Dragana Kupres (CARnet), Gyongyi Horvath (GEANT)
The workshop will discus how federation operators can use the policy tools provided by the OpenID Connect Federation specification (https://openid.net/specs/openid-connect-federation-1_0.html) to model their federations. The intended audience are present and future federation operators.
The tools in question are:
Following a successful event at TNC19, the second annual Security Day for the R&E community is organised jointly by the Security work package of the GN4-3 project, SIG-ISM, WISE, EOSC-hub, EDI, and WLCG security communities.
Preliminary topics discussed:
· Security work package overview
· WISE: Security for Collaborating Infrastructures (SCI) and Security Communications Challenge Coordination (SCCC)
· Trust and Policy issues related to Edge services (SLATE) - current state of play
· Federated Identity Management and operational security efforts
· NREN becoming a security service provider. What is next for the GÉANT service portfolio?
· Top 10 risks / threats for NRENs
· DDoS detection and mitigation
perfSONAR is an advanced network performance monitoring system, developed jointly between GN4-3 project members and US partners and deployed widely around the world by NRENs and research communities. This side
meeting will be an opportunity for TNC participants interested in perfSONAR to get together, hear and discuss the latest news and use cases and help shape the future perfSONAR releases.
The Software IPR side meeting is an opportunity for TNC participants interested in intellectual property aspects of software development. The session will focus on sharing best practices in terms of licence compliance and legal due-diligence in the creation of open source software as well as discussion regarding legal challenges in software development.