The French NREN REseau NATional de

télécommunications pour la technologie, l’Enseignement et la Recherche

CONNECTING  KNOWLEDGE  

•  Established in January 1993 •  GIP RENATER (Public Interest Group- non for profit) •  One head office in Paris + 3 branches (Rennes, Montpellier, Grenoble) •  + 50 staff members •  A board composed with the French Ministry for Research and

Education, Universities (CPU) and French main national research organisations.

30/11/15   2  

GIP RENATER Members

30/11/15   3  

GIP RENATER Missions

• Providing and managing a communications network for research, technological development and education • Providing and managing an evolving portfolio of services (network, applications, and security services) • Ensuring the availability and non-alteration of data • Assisting in developing local collection networks and their interconnection at the national level • Managing communications with the NRENs of other countries and foster international collaboration. RENATER is member of GEANT Association.

From NRENs … to a Global REN, we have to build together!

30/11/15   4  

Public R&E organisations under the French Ministry for Research and Education and RENATER members

Private R&E organisations complying to RENATER Acceptable Use policy

Research industry laboratories International research organisations (CERN, ITER, ESA,..)

GIP RENATER Community of Users

Public R&E organisations under another French Ministry

30/11/15   5  

•  Member of GEANT Association (which manages the pan european network GEANT)

•  International Member of WACREN (West and Central African Research Network) •  Member of .fr (AFNIC) board and Scientific counsel •  Associated Member of French large research projects: GRID5000, Refimeve+,

France GRILLE, PRACE, LHC,…

•  Member of the steering Commitee of REFEDS, eduGAIN (AAI) •  Member of the Shibboleth Consortium board •  Engaged with H2020 and DEVCO projects

GIP RENATER External relations

GIP RENATER Strategy pillars

SersU  

Network  &  

security  

Users  

Interna3onal  dimension  

Innova3on  

30/11/15   7  

A dedicated infrastructure

Specific security

Collaboration services

Solutions to specific needs

GIP RENATER Digital services for R&E

30/11/15   8  

Digital services for R&E

A dedicated infrastructure Specific security

Collaboration services

Solutions to specific needs

A dedicated network based on mutualisation

•  Dedicated to E&R community which decides (upon appropriate goverance) –  footprint –  Allocation of resources (DNS, IP prefixes, ASN…) –  technologies and services (IP, VPN, peerings…even « lab »

networking experiments ) –  Business plans –  etc..;

•  At national/ international levels (upon appropriate governance and policies)

9  

Na3onal  level     Interna3onal  level  

RENATER   GEANT  

KENET   UBUNTUNET  

RITER   WACREN  

30/11/15   10  

National network

@

Very high bandwidth secured network (up to 100 Gbit/s in some areas) : 120 links + 150 wavelenghts from 10 to 100 G

National and international connectivity to+1400 sites of +650 organisations

Dedicated Circuits

Management of peering points RENATERIX

Optical national Infrastructure : 15 000 km of fiber and 72 PoPs

-  Paris 2 PoPs : SFINX -  Overseas IXPs > REUNIX La Réunion

> MAYOTIX Mayotte > GUYANIX French Guyana > MARTINIX Martinique

30/11/15   11  

internet généraliste

internet

Overseas Nouvelle-Calédonie Polynésie française Réunion Guyane Guadeloupe Martinique Mayotte

Paneuropean  network  Liaison

transfrontalière avec RESTENA et BELNET

Liaison transfrontalière avec DFN

STRASBOURG NANCY

DIJON

BESANÇON

REIMS

LILLE

COMPIÈGNE

ORLÉANS

NANÇAY

CLERMONT-FERRAND

LIMOGES

ANGOULÊME

LA ROCHELLE

TOURS

LE MANS

ROUEN

RENNES

ANGERS

NIORT

VANNES

NANTES

LORIENT

QUIMPER

BREST

ROSCOFF LANNION

BORDEAUX

TOULOUSE PAU

AVIGNON

MONTPELLIER

MARSEILLE

CORTE

TOULON

SOPHIA ANTIPOLIS

NICE CADARACHE

GRENOBLE

LYON GENÈVE

CAEN

SAINT-BRIEUC PARIS

RENATERIX SFINX REUNIX MAYOTIX GUYANIX MARTINIX

Access networks

30/11/15   12  

RUBIS & RAP RENATER runs 2 Access networks in Paris area. RUBIS network : 56 connected sites RAP network : 50 connected sites See network design

RENATER GÉANT INTERNET GÉNÉRALISTE

Odéon

Malesherbes

CNAM

Jussieu Auteuil

Interministerial network

30/11/15   13  

Mutualisation of NOC and fiber infrastructure The interministerial fiber network (called RIE) is based on RENATER’s optical infrastructure. RENATER operates several optical circuits between the 12 RIE nodes.

NANCY

LILLE

COMPIÈGNE

CLERMONT-FERRAND

ROUEN

RENNES

NANTES

BORDEAUX

TOULOUSE MONTPELLIER

MARSEILLE

LYON

CAEN

PARIS

PIB LILLE

PIB RENNES

PIB NANTES

PIB BORDEAUX

PIB TOULOUSE

PIB MARSEILLE

PIB LYON 1 PIB LYON 2

Building Europe

A global European network

And worldwide R&E networks

30/11/15   16  

Digital services for R&E

A dedicated infrastructure Specific security

Collaboration services

Solutions to specific needs

Security : a common goal key to E&R community

•  At infrastructure level

–  Technology –  CERT teams (strong international cooperation) –  Network monitoring

•  At services level –  Security embedded into service delivery (for example

acces to videoconference only after authentication) –  Authentication : Identity Federations, eduGAIN –  Certificates (in Europe good example of brokerage) –  Antispam services…;

17  

CERT Network monitoring Detecting attacks and publishing vulnerabilities

Teams dedicated to Information Systems Security Technology watch, recommendations, network of security contacts

Real time analysis tools IDS and DDOS mitigation

SCAN’ER Vulnerability analysis from outside the LAN

Anti-spam – Antivirus – Anti-phishing Mutualised Platform

30/11/15   18  

Security

Detection   Assistance  Information  

30/11/15   19  

Digital services for R&E

A dedicated infrastructure Specific security

Collaboration services

Solutions to specific needs

30/11/15  

Services portfolio

30/11/15   21  

Connectivity

IP services -  IP connectivity -  Including IPv4/6, unicast/multicast

Domain names RENATER provides .fr domain names, and some other extensions on request.

30/11/15   22  

Connectivity

VPN Services Based on MPLS protocol or on several other technologies : •  Lambdas 10G on DWDM •  L2VPN EoMPLS •  L3VPN (vrf) •  MDVPN •  Premium IP •  GRE •  Tunnels GRE •  IPsec Tunnels

Connecting to RIE Partner This services allows a RENATER user to exchange traffic with the Interministerial network (RIE)

30/11/15   23  

Security

R&E Identity Federation The Federation enables to provide an easy, secure and authenticated access to online ressources. Example : Single-Sign-On (SSO)

The Education-Recherche federation is part of the eduGAIN interfederation

30/11/15   24  

Security

Antispam Incoming messages for an organisation are analysed by the RENATER Antispam platform. The organisation remains responsible for its own filtering policy (White lists, etc..) This service will be available also for outgoing message in Q1 2016

SCAN'ER* enables to set up vulnerability scans under an organisation’s own policy. *Authentification with the Fédération Education-Recherche

30/11/15   25  

Security

Certificates RENATER users can ask for different types of certificates : ü  Server certificates ü  Personal certificates ü  Code signing certificates

30/11/15   26  

Communication

RENAvisio enables to book * a VC in one clic. This service is accessible from a VC room, a software (Scopia DEsktop/ConferenceMe) or a telephone RENAvisio+ offers 3 other features : High Defiition, availabilty garanty, encryption. *Authentification with the Fédération Education-Recherche

30/11/15   27  

Communication

RENdez-vous is a videoconferencing tool and a set of collaborative tools (screen share, chat…) available from desktops, smartphones. It is based on the WebRTC standard. *Authentification with the Fédération Education-Recherche

30/11/15   28  

Collaboration

PARTAGE is a set of collaborative tools launched by RENATER for a secured environment : emails, shared calendars, instant messaging, share of documents, etc…

30/11/15   29  

Collaboration

FileSender* by RENATER enables a secured transfer of up to 20Go It proposes a temporary storage space and users can access online access to : ü  upload/download a file ü  Check the files in the stotage space and transfer or erase them ü  Send an invite to an oher user to allow him some space in his own storage space. Soon available : FileSender Premium *Authentification with the Fédération Education-Recherche .

30/11/15   30  

Collaboration

SourceSup* is a Forge, useful to project managers, developers, translators etc…. *Authentification with the Fédération Education-Recherche

UNIVERSalistes* is a mailing list tool based on Sympa tool. Some collaborative tools are included : ü  Foodle ü  Wiki ü  Survey

*Authentification with the Fédération Education-Recherche

30/11/15   31  

Mobility

eduroam enables a to acces to WIFI in a secured and authenticated way

eduspot, is a WIFI portal access

30/11/15   32  

Digital services for R&E

A dedicated infrastructure Specific security

Collaboration services

Solutions to specific needs

30/11/15   33  

e-learning

RENATER provides network infrastructure to the national MOOCs platform

30/11/15   34  

e-infrastructure

RENATER provides high bandwidth (+280Gbit/s) to LHC (Large Hadron Collider - Le Grand collisionneur de hadrons)

LHCONE network

30/11/15   35  

e-infrastructure

RENATER provides network and services to large data initiatives

RENAlab, partner of innovating initiatives

30/11/15   36  

RENAlab ambitions to facilitate international cooperation in termes of innovation and standardisation  

LISP-LAB (Locator  IdenJfier  SeparaJon  Protocol)   NECOMA (Nippon-European Cyberdefense-Oriented Multilayer threat Analysis)

Discovery Icube

Community management

30/11/15   37  

TRAINING with RENacademie JRES NETWORKING DAYS LES JOURNÉES RÉSEAUX DE L'ENSEIGNEMENT ET DE LA RECHERCHE - JRES www.jres.org

Merci Thank you

sabine.jaume@renater.fr