Security Management and Privacy

Authenticated Guest Wireless Access: Simplicity and Security
Christopher Keslar, University of Pittsburgh
The need for guest access is growing as more campuses provide wireless coverage. This presentation will explore a solution for on-demand guest wireless access through a user-friendly and secure process.

Automated Network Access Control at the Edge
Michael S. Hawkins, University of North Carolina at Chapel Hill
Hear how, with a small staff, we reliably manage, secure, prioritize, and deliver voice, video, and data services for over 30,000 people while complying with local, state, and federal regulations.

Caught in the Middle: Implementing University Security Policies at the College Level
Jamey Hansen, University of Minnesota
University security mandates are on one side; independent faculty on the other. Learn how our college IT office walked the fine line between security and service.

Discovering Network Usage Trends and Security Risks Through Network Information Analysis
Matt Tolbert, University of Pittsburgh
This session will share how the University of Pittsburgh successfully captures and visualizes network data to understand network traffic patterns and detect network-based security threats.

NEW! Not in your program!

Contract Themes for Data Protection
Michael A. Corn, University of Illinois at Urbana-Champaign
This session will provide a synthesis of data protection considerations when establishing contract relationships, and will introduce attendees to a comprehensive treatment of this topic that was recently completed by the EDUCAUSE/Internet2 Security Task Force.

Securing Data at Rest, Chandragupta Gudena, Bridgewater State College

The EDUCAUSE/Internet2 Computer and Network Security Task Force (STF) provides a focal point for the academic community to join together to strengthen the ability of the higher education sector to respond to growing threats to information security and to protect the privacy of our community members. This strategic plan is intended to set forth a vision for the higher education community and provide a concise roadmap to guide the efforts of the STF. This roadmap emphasizes continuous and evolutionary community investment in converting our understanding of risks and issues into solutions based on effective practices, as well as the urgent need to build the national capability across the higher education sector to respond quickly and effectively as a community to new threats and vulnerabilities.

System trustworthiness is needed for security, reliability, survivability, safety, and for many application areas such as critical infrastructures, robust networking, and high-integrity elections. Trustworthiness ultimately requires many changes in the way systems are developed today. Being respectful of privacy needs requires further care. This talk considers a variety of approaches that can enhance system trustworthiness, sensible system development practices, and a system-oriented view toward achieving the desired changes.

On behalf of several higher education associations, the American Council on Education submitted comments on the Family Educational Rights and Privacy Act

Comments of the EDUCAUSE/Internet2 Computer and Network Security Task Force on the Family Educational Rights and Privacy Act; Proposed Rule, Federal Register, Vol. 73, No. 57, U.S. Department of Education, Office of Planning, Evaluation and Policy Development

This "Briefing to CSIS Commission on Cyber Security for the 44^th Presidency" By Rodney Petersen and Jack Suess on behalf of the EDUCAUSE/Internet2 IT Security Task Force was presented to the Commission on Cyber Security for the 44th Presidency. The agenda was "Improving Cybersecurity: Recommendations from Private Sector Experts".

The following is an excerpt from an interview with Bruce Schneier. Matt Pasiewicz, EDUCAUSE content program manager, conducted the interview at the EDUCAUSE 2007 Annual Conference. The full podcast is available at <http://connect.educause.edu/blog/mpasiewicz/e07podcastaninterviewwith/45439>. In the interview, Schneier answers questions about security and privacy issues.