Click here to receive your FREE subscription to Campus Technology
Security Research
Campus Security Report Card: C for Effort
10/30/2007
On the administration side, IT pros cite as significant barriers lack of financial commitment, lack of commitment to policy enforcement, lack of funding for training programs, and lack of awareness.
Said the report, "Campus IT security has not improved in three years, and critical data losses continue to put the entire community at risk. Administrators bear the responsibility of taking the lead to unify and enforce security policies and procedures across campuses, colleges, and departments."
On the faculty side of things, lack of awareness tops the list of concerns, followed by an expectation on the part of faculty that exceptions will be made for individuals.
And, on the student side, disregard for rules tops the list of concern, followed by lack of awareness and personal devices in use on the network.
"Student and faculty lack of awareness continues to plague IT departments," the report said. "IT security education should be considered a first line of defense to improve campus security--with the funding and administrative support to affect real change."
Security Measures & Convergence
Despite the apparent lack of security improvement over the last three years, IT managers and directors have not been standing still. High percentages of colleges have taken measures to improve information security, as seen in the chart below.
The perception among IT managers, however, is that the administration does not place a high emphasis on data (or physical) security on their campuses. Fifty-six percent said that the administration considers physical security solutions "not important" or only "somewhat important." And 54 percent said the administration considers IT security solutions to be not or only somewhat important. Six percent rank physical security as the No. 1 priority, while 8 percent rank IT security as the No. 1 priority. Thirty-five percent of administrators, according to IT professionals, place both data security and physical security among their top-5 priorities.
As far as physical/data security convergence goes, 52 percent of respondents said they spent the same amount of time or less time (including 20 percent no time at all) integrating physical and information security compared with last year. Thirty-eight percent spent more time this year than last integrating physical and data security. (The remainder did not respond.)
Respondents were offered an opportunity to grade their own infrastructure's ability to support "new IT security and physical technology solutions" (convergence). The plurality gave themselves a B (39 percent). Fifteen percent gave themselves an A. Only 3 percent gave themselves a failing mark, and 10 percent gave themselves a D. Thirty-two percent gave themselves a C.
Recommended Reading
- Utah Rolls Out Online Document Proofreading
The University of Utah has acquired a site license of CyProof's ErrNET for online document proofreading. ErrNET runs on CyProof's servers and is accessed through the user's Web browser. To check a document, users upload their files to the Web site, the cost is calculated, payment is requested, the document is processed, and the results are presented for download. The service works with PDF files.
- Payment Standard for Web Apps Goes Live
A new payment card industry (PCI) standard for Web application firewalls and source code went into effect July 1. PCI Industry Data Security standard 6.6 gives merchants a framework to ensure that the point-of-sale information uploaded into browser-based applications is sound from "top to bottom," the organization's literature said.
- U Texas San Antonio To Deploy Wireless Outdoor Emergency Notifications
The University of Texas at San Antonio has selected Cooper Notification's Wireless Audio Visual Emergency System (WAVES) Mass Notification System (MNS) for its outdoor campus emergency notification system. Through WAVES campus public safety departments can broadcast targeted voice alerts via "Giant Voice" to students, faculty, staff, and visitors.
- Moraine Valley CC Revamps Administrative Systems
Moraine Valley Community College in Illinois has selected Datatel Colleague and ActiveCampus Portal software to replace a legacy administration system. A committee consisting of campus-wide representatives chose Datatel after an 18-month evaluation of administrative software systems.
- Project Wonderland: Good Avatars Make Good Neighbors
Sun Microsystems's Project Darkstar and the Wonderland Toolkit for building 3D spaces show why virtual reality is better for education than video conferencing. And Project Wonderland has announced its first education space.
- Sun, Stanford Working To Archive History
In May in San Francisco, experts from leading universities, libraries, and research institutions around the world met as part of an ongoing effort to address a pressing issue: archiving the world's history, right up to today.
