- Eduroam Security - Service Portal

Eduroam is based on the most secure encryption and authentication standards in existence today. Its security far exceeds that of typical commercial hotspots.

Be aware, though, when using the general Internet at an eduroam hotspot, the local site security measures at that hotspot will apply to you as well. For example, the firewall settings at the visited place may be different from those you are used to at home, and as a guest, you may have access to fewer services on the Internet than you have at home.

Eduroam Security Best Practices and FAQs

1. Do not use web logins for eduroam. The following articles provide more information:

- - Warning: Do not use web logins for eduroam
  - FAQs: eduroam.org

2. Does eduroam use a captive portal for authentication?

- - No. Web Portal, Captive Portal or Splash-Screen based authentication mechanisms are not a secure way of accepting eduroam credentials, even if the website is protected by an HTTPS secure connection.
  - The distributed nature of eduroam would mean that many different pages, languages, and layouts would be presented to eduroam users, making it impossible to distinguish between legitimate and bogus sites (even a consistent layout can be mimicked by an adversary).
  - eduroam requires the use of 802.1x, which provides end-to-end encryption to ensure that your private user credentials are only available to your home institution. The certificate of your home institution is the only point you need to trust, regardless of who operates any intermediate infrastructure. Web portals require you to trust their infrastructure as they receive your password in clear text, which breaks the end-to-end encryption tenets of eduroam.

3. Only connect to eduroam networks that show the lock in the settings (see screenshot below).

eduroam lock in wifi settings

4. Eduroam should behave the same way everywhere.

- - If eduroam suddenly asks for new credentials or behaves oddly, be cautious. Connecting to eduroam should be the same anywhere you go, just as when you connect to eduroam on Auburn's campus wireless.

5. If you are unsure, contact the Auburn University IT Service Desk at (334) 844-4944.

- - The IT Service Desk can confirm the correct eduroam settings, active locations, and can engage the network team as necessary.