EDUCAUSE | Policy and Law: Federal

EDUCAUSE President Diana G. Oblinger Discusses Need for National Broadband Policy

cluckett — Mon, 07 Jul 2008 16:47:37 -0500

EDUCAUSE President Diana G. Oblinger recently spoke in Washington, D.C., at the New America Foundation–hosted event, Broadband Revolution, about the pressing need for a national broadband policy. Read more about the event and Oblinger’s speech, and access a related press release regarding EDUCAUSE’s proposed new approach to making high-speed Internet services available across the country.

Security Task Force Submits Comments on Proposed FERPA Rules

vvogel — Thu, 29 May 2008 17:38:33 -0500

The EDUCAUSE/Internet2 Security Task Force recently commented on the "Recommendations for Safeguarding Education Records". The Family Educational Rights and Privacy Act (FERPA) has never contained regulations related to the security of student education records, although it is implied as a necessary safeguard to help keep student education records private. The department chose to include in this Notice some recommendations that included references to guidance issued by the National Institute of Standards in Technology (NIST) and the Office of Management and Budget (OMB). While the Security Task Force shared the department's concerns about cybersecurity, it was concerned that focus on government approaches may be misinformed and encouraged the department to consider resources developed by the task force (e.g., see Effective IT Security Practice Guide). The task force further cautioned the department that "the inclusion of recommended safeguards causes considerable confusion about the department's intentions and future plans."

See Rodney Petersen's blog for additional details. To review the full comments of ACE and the Security Task Force, see:

Podcast: Do's and Don'ts of Advocacy: Helping Your Federal Relations Officer Advance the IT Agenda

gbayne — Tue, 20 May 2008 16:05:39 -0500

This hour and sixteen minute podcast features a panel discussion recorded at the EDUCAUSE 2008 Policy Conference. The discussion, "Do's and Don'ts of Advocacy: Helping Your Federal Relations Officer Advance the IT Agenda," includes the following participants:

Anna M. Gould, Project Assistant for EDUCAUSE
Timothy Lance, President and Chairman of NYSERNet, Inc.
Bob Samors, Associate VP of Research & Science Policy at NASULGC
Michael A. Waring, Executive Director of Federal Relations for the University of Michigan-Ann Arbor

This session features some real-world training about how lobbying works and the keys to effective advocacy. In addition, lobbying meetings (both good and bad) are role-played to give a feel for the sorts of issues that come up and how best to advance the cause. This session seeks to aid IT professionals in understanding how their federal relations officers work and the best ways CIOs can assist in making that advocacy successful.

EDUCAUSE and Security Task Force Comment on Proposed FERPA Rules

Rodney — Mon, 12 May 2008 20:38:32 -0500

EDUCAUSE joined the American Council on Education (ACE) in comments to respond to a Notice of Proposed Rulemaking regarding the Family Educational Rights and Privacy Act (FERPA). The EDUCAUSE contribution addressed the proposed rules treatment of Social Security Numbers (SSN's), Student ID Numbers, and Student User ID's in the context of "directory information." The comments state:

According to the discussion [in the proposed rules], "student ID numbers (SID) can be used to impersonate the owner of the number and obtain information or services by fraud." We understand that this is widespread practice with respect to how the private sector uses the SSN for obtaining a variety of products and services. We do not believe, however, that unique student ID numbers created for internal educational uses typically are used in the same way or are subject to the same abuses. More often than not, such numbers are treated as identifiers only; they normally cannot be used to obtain access to education records by themselves, without a further act of authentication, nor can they normally be used in combination with other commonly available information to establish accounts or impersonate people. Moreover, on many campuses, the general "student ID number" and the "user ID" used to log in to electronic systems are in fact one and the same. As a result, many campuses may believe that they cannot designate these various kinds of identifiers as directory information even when doing so would yield clear benefits and could cause no harm.

The comments support the U.S. Department of Education's position that SSN's should never be considered "directory information". However, the comments provide alternative language for the treatment of SID and User ID's, essentially suggesting that they could be treated as "directory information" if there is an additional act of authentication and that the identifier itself does not provide an individual with access to student education records. The entire comments related to "directory information" are available on pages 1-2 of the ACE letter. There is also a discussion of "outsourcing" on pages 4-5.

The EDUCAUSE/Internet2 Computer and Network Security Task Force also commented on the department's "Recommendations for Safeguarding Education Records". FERPA has never contained regulations related to the security of student education records, although it is implied as a necessary safeguard to help keep student education records private. The department chose to include in this Notice some recommendations that included references to guidance issued by the National Institute of Standards in Technology (NIST) and the Office of Management and Budget (OMB). While the Security Task Force shared the department's concerns about cybersecurity, it was concerned that focus on government approaches may be misinformed and encouraged the department to consider resources developed by the task force (e.g., see Effective IT Security Practice Guide). The task force further cautioned the department that "the inclusion of recommended safeguards causes considerable confusion about the department's intentions and future plans."

Soliciting Higher Education Input to the Commission on Cyber Security for the 44th Presidency

Rodney — Thu, 06 Mar 2008 15:31:21 -0600

The Center for Strategic and International Studies (CSIS) has established a Commission on Cyber Security for the 44th Presidency – the administration that will take office in January 2009. The goal of the nonpartisan Commission is to develop recommendations for a comprehensive strategy to improve cyber security in federal systems and in critical infrastructure.

The EDUCAUSE/Internet2 Security Task Force has been invited to provide input to the Commission and welcomes your comments in the following areas:

What role has the Federal government played to improve cybersecurity these past few years that has been useful for the higher education sector?
Are there ways in which the Federal government has hindered progress? If so, please describe.
Are there new initiatives you would like to see from the Federal government help to improve cybersecurity?

Please comment by Wednesday, March 12th, 2008, by using the "Post new comment" section below or sending your comments to Security-Task-Force@educause.edu

EDUCAUSE Podcast: Washington Update with EDUCAUSE Vice President Mark Luker

gbayne — Mon, 25 Feb 2008 15:39:31 -0600

In this 50 minute podcast we feature a keynote speech by Mark Luker, Vice President of EDUCAUSE. The speech was delivered at the EDUCAUSE 2008 Southwest Regional Conference in Houston, Texas, and is entitled, "Washington Update: We're from the Government, and We're Here to Help You!"

Mark A. Luker is vice president of EDUCAUSE, where he heads Net@EDU, a 'thought-leadership' coalition of university CIOs and state network directors who work to advance national networking for both research and education through joint projects and federal policy. Net@EDU was the spawning ground of Internet2, and is now expanding its focus to include advanced connections between campuses and their customers in surrounding communities and regions. He also leads the EDUCAUSE office of government relations and policy analysis in Washington, D.C., which works with partner associations to help shape the emerging policy and legal framework of the Internet, intellectual property, and other issues of importance to higher education.

Luker served two years as program director for advanced networking at the National Science Foundation and the federal Next Generation Internet project. Prior to that he was CIO at the University of Wisconsin–Madison campus, where he was active in national projects including the National Learning Infrastructure Initiative and the Coalition for Networked Information.

Luker received his doctorate from the University of California, Berkeley, and served as a faculty member and then a dean at the University of Minnesota, Duluth, before moving into information technology management.

Policy 2008 Conference to Address Policy Issues Facing Higher Education Today--Register Now

cluckett — Tue, 19 Feb 2008 18:03:17 -0600

Privacy. Cybersecurity. Telecommunications Reform. These and other national policy issues that have an impact on higher education will be the focus of the 2008 EDUCAUSE Policy Conference, May 7–8 in Arlington, Virginia, an event that brings together CIOs, IT directors, legal counsel, librarians, federal relations officers, and other college and university leaders for discussion of important new federal laws, legislative and regulatory developments, and emerging trends. Early-bird registration is available through April 11 for this event. Register now to save money.

Keynote Speakers

Jonathan S. Adelstein, Commissioner, Federal Communications Commission
Jeffrey S. Lehman, Senior Scholar, Center for Democracy and Technology, and Chair, Internet2 Board of Trustees
Lydia B. Parnes, Director, Bureau of Consumer Protection, Federal Trade Commission

URGENT CALL TO ACTION: Pending Illegal File Sharing Legislation Harmful to Higher Education

cyang — Sat, 10 Nov 2007 16:05:06 -0600

Leaders of the House Committee on Education and Labor have just introduced legislation to control illegal file sharing in higher education as part of the College Opportunity and Affordability Act of 2007. The higher education community opposes a provision that requires campuses to develop new institutional plans for addressing infringement activities on their networks.

Please call (do not write or email) the offices of the House Committee on Education and Labor. Time is short. Markup is this coming Wednesday, November 14, 2007 at 9:00 AM.

For specific details please see our talking points.

WHAT YOU CAN DO:

1. Coordinate your response to this challenge with your institutional executives and federal relations officers.

2. Call, do not write or email, as many of the Committee Members as possible, and express your strong opposition to this proposal. You can find a list of all the Committee members and their phone numbers.

Remember, if your campus representative is a member of this committee, you have special influence. We request that you make every effort to contact their office! When calling, ask for the staff member in charge of higher education and leave a voice mail if necessary. Call back later and try to speak directly with a staff member.

Access additional information on the relevant legislative language, talking points, and a template response to use.

Attend the State of the Net Conference in January 2008

Rodney — Tue, 06 Nov 2007 15:58:31 -0600

The Congressional Internet Caucus Advisory Committee's State of the Net Conference will be held on January 30, 2008, in Washington, D.C. The conference offers attendees unparalleled opportunities to network and dialogue on key technology and information policy issues. Attendees include a mix of academics, consumer groups, industry, and government. In 2007, over 50 percent of the attendees were policy staff from Congressional offices and governmental agencies. There is a significant registration discount for non-profit and academic organizations. For more information or to register, go to http://netcaucus.org/conference/2008/

Congressional Resolution Introduced in Support of National Cyber Security Awareness Month

Rodney — Fri, 12 Oct 2007 17:11:40 -0500

The U.S. House of Representatives has introduced H. Res. 716 "expressing the sense of Congress with respect to raising awareness and enhancing the state of computer security in the United States, and supporting the goals and ideals of National Cyber Security Awareness Month." The resolution was presented by Rep. James R. Langevin (Dem-RI), chair of the Subcommittee on Emerging Threats, Cybersecurity, and Science and Technology of the House Homeland Security Committee.

While introducing the resolution on the House floor, Rep. Langevin said:

Each year, the National Cyber Security Division, NCSD, of the Department of Homeland Security, DHS, joins with the National Cyber Security Alliance, NCSA, the Multi-State Information Sharing and Analysis Center, MS-ISAC, and other partners to support National Cyber Security Awareness Month. The goal of National Cyber Security Awareness Month is to show everyday Internet users that by taking simple steps, they can safeguard themselves from the latest online threats and respond to potential cyber-crime incidents.

He also commented that cybersecurity issues have been largely ignored and misunderstood for too long. "The oversight that the Homeland Security Committee is undertaking will help change that," he observed, "but much work remains to be done."

National Cyber Security Awareness Month is organized by the National Cyber Security Alliance (www.StaySafeOnline.org) and is supported by the EDUCAUSE/Internet2 Computer and Network Security Task Force. For more information about how educational institutions can get involved, see the Resource Kit for NCSAM developed by the task force.