Educause Security Discussion mailing list archives
Re: EDUCAUSE Live Event: Improving Security Through Automated Policy Enforcement
From: "Jefferson, Ronnie V." <RVJefferson () ST-AUG EDU>
Date: Mon, 8 Nov 2004 13:54:59 -0500
Thanks Rodney....we will take advantage of the offer. -----Original Message----- From: The EDUCAUSE Security Discussion Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU]On Behalf Of Rodney Petersen Sent: Friday, November 05, 2004 10:47 AM To: SECURITY () LISTSERV EDUCAUSE EDU Subject: [SECURITY] EDUCAUSE Live Event: Improving Security Through Automated Policy Enforcement I would like to bring to your attention a free, interactive web seminar on "Improving Security Through Automated Policy Enforcement" scheduled for next Friday, November 12th, 1-2 p.m. More details and registration information is available at <http://www.educause.edu/LIVE0413> http://www.educause.edu/LIVE0413 This seminar will highlight concepts as well as steps that institutions have taken to secure unmanaged computers, especially on residential networks. Although the seminar will specifically describe effective practices and solutions from the University of Connecticut, New York University, and Lewis & Clark College, we would love to highlight other campus approaches. There are two ways that you can contribute to this presentation and future outreach efforts related to this topic: 1. Submit your campus implementation as an Effective Security Practice by completing the submission form available at <file://www.educause.edu/ep> www.educause.edu/ep The submission form will allow you to describe your approach, benefits, shortcomings, and future plans. Your campus submission will also be linked to from the Effective Security Practices Guide ( <file://www.educause.edu/security/guide> www.educause.edu/security/guide) and will be a helpful resource for the community. 2. Respond to this email by describing how your institution has automated security policy enforcement. Phil Rodriguez from NYU, one of the presenters for the seminar, has suggested that there are five basic things that institutions are doing: a) Registration - Active External Detection - DHCP Isolation - NAT/DNS External Remediation b) Registration - Active External Detection - VLAN Isolation - Local Remediation c) Registration - Agent Detection - Inline Isolation - X Remediation d) Registration - Passive Detection - Inline Isolation - Local Remediation e) Registration - Homegrown Agent Detect. - X Isolation - X Remediation We would love to get examples from each of these categories. So, please consider submitting an Effective Security Practices using the submission form ( <file://www.educause.edu/ep> www.educause.edu/ep) or let us know what steps you have taken that you consider effective for your environment. Thanks, -Rodney -------------------------------------------------- Rodney J. Petersen Policy Analyst & Security Task Force Coordinator EDUCAUSE 1150 18th Street, N.W., Suite 1010 Washington, D.C. 20036 (202) 331-5368 / (202) 872-4200 (202) 872-4318 (FAX) EDUCAUSE/Internet2 Security Task Force <http://www.educause.edu> www.educause.edu/security -------------------------------------------------- ********** Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at http://www.educause.edu/groups/.
Current thread:
- Re: EDUCAUSE Live Event: Improving Security Through Automated Policy Enforcement Jim Schug (Nov 05)
- <Possible follow-ups>
- Re: EDUCAUSE Live Event: Improving Security Through Automated Policy Enforcement Jefferson, Ronnie V. (Nov 08)