Educause Security Discussion mailing list archives

Re: Skype risk assessment

From: Matthew Giannetto <MGiannetto () MC3 EDU>
Date: Fri, 14 May 2010 15:45:53 -0400

I'd be interested as well.

Thanks,

Matt Giannetto
Manager of IT Security
Montgomery County Community College
mgiannetto () mc3 edu | (215) 619-7442

From: Steve Werby [mailto:smwerby () VCU EDU]
Sent: Wednesday, May 12, 2010 3:32 PM
Subject: Skype risk assessment

Our users are increasingly interested in using Skype.  Packet shaping and port blocking have been used by my network 
colleagues to limit its use and they've also discouraged users from using it, but our controls (including 
administrative) and procedures are not mature.  I've offered to have my office to look into the business needs that are 
trying to be met and to perform a risk assessment.  It's likely we'll schedule this for this summer.  Have any of you 
performed risk assessments of Skype which you'd be willing to share?
--
Steve Werby
Information Security Officer
Virginia Commonwealth University
VCU Information Security - http://infosecurity.vcu.edu/
News, Tips & More - http://www.twitter.com/vcuinfosec
Best Practices - http://infosecurity.vcu.edu/docs/infosecbp.pdf

________________________________
Montgomery County Community College is proud to be
the #1 ranked technology-savvy community college in the nation,
as determined by the Center for Digital Education and Converge magazine.

Current thread:

Skype risk assessment Steve Werby (May 12)
- <Possible follow-ups>
- Re: Skype risk assessment Matthew Giannetto (May 14)
- Re: Skype risk assessment Alex Keller (May 14)
- Re: Skype risk assessment David Gillett (May 14)