Educause Security Discussion mailing list archives

Re: Guest Wi-Fi Access

From: Tim Doty <tdoty () MST EDU>
Date: Tue, 12 Apr 2016 16:21:53 -0500

Knowing who is on your network is a good thing, but for most EDUs notreally 100% achievable. And this state does not violate any federalregulation that I'm aware of.

As for CALEA specifically, it is essentially about having the ability totap as required for law enforcement, so when you get a court ordersaying you must provide a wiretap for a certain IP address (orsubscriber) you cannot get away with saying "but I can't do that".

CALEA is really aimed at service providers and their subscribers. Aservice provider is required to have the ability to tap into theirsubscriber's communications. This is why CALEA was such a big deal forSkype and isn't so much of an issue for public networks.

Put another way, your guest network is not meaningfully different fromthat in a coffee shop. And they cannot comply with CALEA for theirguests either.

If you are concerned about guest wifi, what about guest terminals in thelibrary?

It may have been a while, but CALEA has been talked about before on thislist so a search of the archives should succeed in finding moreconversation on the topic.


Disclaimer: I am not a lawyer.

On 04/12/2016 09:42 AM, Pardonek, Jim wrote:

We are in the process of revamping our guest access for our Wi-Fi.  In
doing so, I’ve been assembling a grid that includes all of the options
that are available to us, given our infrastructure, and the risks and
benefits for each option.  One of the points that someone brought up was
CALEA.  It doesn’t seem to be very clear as to how CALEA would affect
our guest access deployment but it also made me think if there were
other Federal requirements that would mandate our knowing who is on our
network and making sure that we have somewhat accurate information as to
their identity.

I know this has been batted around a few times, but I’m having some
difficulty finding a good solid answer.

Thanks,

Jim

*James Pardonek, MS, CISSP, CEH*

*Information Security Officer**
Loyola University Chicago
1032 W. Sheridan Road | Chicago, IL  60660
**
(**: (773) 508-6086*

*standard_isc2_cissp*

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

Current thread:

Guest Wi-Fi Access Pardonek, Jim (Apr 12)
- Re: Guest Wi-Fi Access Brian Epstein (Apr 12)
- Re: Guest Wi-Fi Access Tim Doty (Apr 12)
  - Re: Guest Wi-Fi Access Kevin Wilcox (Apr 12)