Re: Resources for Securing Copiers or Multi-Function Devices

[Brad Judy <win-hied () BRADJUDY COM>]

I noticed that Yale and UCI also have online information on the topic:



http://security.yale.edu/sysadmin/mfd.html

http://www.oit.uci.edu/security/printercopiersecurity.html



I think the Yale and Texas lists are related (not sure which came first).



My personal view is that the best approach is a general minimum security
standard for all "networked devices" rather than something specific to
printers/copiers.  Media disposal, private data handling, patching,
encryption, minimal services, third-party contracts, etc are not problems
unique to printers/copiers.



Brad Judy



Emory University



From: The EDUCAUSE Security Constituent Group Listserv
[mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Valerie Vogel
Sent: Thursday, June 03, 2010 3:05 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Resources for Securing Copiers or Multi-Function Devices



In May, there was a discussion on the Security list after CBS did a story on
copy machine with sensitive information stored on the hard drives ("Copier
harddrives in the news").

The EDUCAUSE & Internet2 Higher Education Information Security Council
(HEISC) has gathered resources on this topic and developed a list of steps
to take when trying to secure a copier, printer, or other multi-function
device.

 <https://wiki.internet2.edu/confluence/display/itsg2/Hot+Topics>
https://wiki.internet2.edu/confluence/display/itsg2/Hot+Topics

Please feel free to send suggestions for additional resources. And don't
forget to share this link with others on your campus who might find the
information useful.

Thank you,

Valerie

_______________

Valerie M. Vogel

Program Associate, EDUCAUSE

office: (202) 331-5374

e-mail:  <mailto:vvogel () educause edu> vvogel () educause edu

Follow HEISC on Twitter:  <http://twitter.com/HEISCouncil>
http://twitter.com/HEISCouncil