This website demonstrates a Disruption-tolerant Authentication (DTA) method. DTA realizes Local Authentication for Wi-Fi roaming systems that may suffer from some disruptions of backhaul networks.
You can download an OpenRoaming-compatible profile that lasts for 90 days. It works as a normal OpenRoaming profile if the authentication requests are sent to our AAA server from ANPs.
If ANPs' proxies are configured to support local authentication in advance, user authentication can be done locally even without an internet connection. The ANPs needs to retrieve a DTA package containing hash key, ECDSA public key, and server certificate/key pair. The package needs to be updated periodically, e.g., every fortnight, before the server certificate expires.
Authorized OpenRoaming ANPs can retrieve a DTA package including PoC server code for FreeRADIUS from here. (ID/PW is available upon request.)