Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Universities riskiest place for SSN

From: Dan Peterson <drpeterson () ES NET>
Date: Mon, 8 Nov 2010 14:31:29 -0800
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Good for you and this is the right answer to the problem.
Remove the risk...
- --
Dan

- -----Original Message-----
From: Willis Marti [mailto:wmarti () tamu edu] 
Sent: Monday, November 08, 2010 1:36 PM
To: drpeterson () es net
Cc: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Universities riskiest place for SSN

On 11/8/2010 3:12 PM, Dan Peterson wrote:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I agree that High-Ed does report things that private industry does 
not; however, why does Higher-Ed need the student SSN in the first 
place

There are several reports to Federal and, in our case, state agencies that
require SSNs.  And there are loads of former students that still have
interactions with the University. We officially replaced SSNs with a "UIN"
in 2005, but we're still cleaning out legacy grade sheets, etc.

- --
Cheers,
  Willis Marti
  Director&  CISO
  Networking and Information Security
  Texas A&M University



-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.9.1 (Build 287)
Charset: us-ascii

wj8DBQFM2HpG5chTNtilRz8RAuU1AJ9gYfj2FEEL9t3yFDNt5K845Hs5KgCeOtqV
8yUwVN6O0XIZu+bljj3WQcE=
=EkEF
-----END PGP SIGNATURE-----
Previous By Date Next
Previous By Thread Next

Current thread: