Presentation is loading. Please wait.

Presentation is loading. Please wait.

Results from the CIFAC Project and What They Mean to You Virginia E. Rezmierski Daniel M. Rothschild April 4, 2005 Washington, DC.

Published byNorman Lyons Modified over 8 years ago

Similar presentations

Presentation on theme: "Results from the CIFAC Project and What They Mean to You Virginia E. Rezmierski Daniel M. Rothschild April 4, 2005 Washington, DC."— Presentation transcript:

1 Results from the CIFAC Project and What They Mean to You Virginia E. Rezmierski Daniel M. Rothschild April 4, 2005 Washington, DC

2 Advisory Board Mark S. Bruhn, B.S., CISSP Indiana University Shawn A. Butler, Ph.D. Carnegie Mellon University Robert Clark, Jr., B.A., CIA, CBM Georgia Tech Tracy Mitrano, Ph.D., J.D. Cornell University Rodney Petersen, J.D., Ph.D. EDUCAUSE E. Eugene Schultz, Ph.D. Lawrence Berkeley Nat’l Laboratory Barbara Simons, Ph.D. Association for Computing Machinery Eugene H. Spafford, Ph.D. Purdue University CERIAS John J. Suess, M.S. University of Maryland – Baltimore County D. Frank Vinik, J.D. United Educators

3 Participating Colleges and Universities PublicPrivate Large (≥10,000) San Jose State University UC Berkeley University of Illinois - Chicago SUNY Binghamton University of Massachusetts - Amherst UMD College Park Georgia Tech Georgia State University of Texas at San Antonio University of Texas at Austin Michigan State University Stanford University University of Chicago Northwestern University Cornell University Syracuse University Boston University MIT Georgetown University Emory University Small & Medium (<10,000) California State University - Monterrey Bay University of Massachusetts - Boston University of Maryland - Baltimore County University of Michigan - Flint University of Michigan - Dearborn Saginaw Valley State University Santa Clara University Loyola University of Chicago Lake Forest College LeMoyne College Hampshire College American University Southwestern University Findlay University Cleary University Concordia University (MI)

4

5 Incident definition An incident is an event that utilizes or exploits information technology resources or security flaws therein, either by accident or by design and through malice or otherwise, that causes, directly or indirectly, one or more of the following occurrences:  Compromise of proprietary, confidential, or protected data,  System disruption which impedes user(s)’ access to data or other IT resources,  Violates IT use policies set out and made known by the administrator(s) of the IT systems in question,  Violates norms commonly accepted within the community of system user(s) for use of IT resources,  Attempting or conspiring engage or represent oneself or another to be engaged in any aforementioned behavior.

6 Incident Descriptives

7 Incident Focus

8 Incident Seriousness

9 Incident Prevention Access control tools Personnel Training and education Existence of policy

10 Incident Cause and Response Training and education Requirements for use of institutional resources Accidental or careless behavior Malicious or abusive behavior

11 Stimuli to Action Probability of damage to institutional reputation Cost to the department, college, or university Time involved for resolution Number of machines affected Type of machines affected Type and sensitivity of data involved Probability of further access or damage Number of people affected Level, status, or rank of people affected Probability of damage or danger to persons

12 Stimuli to Action Probability of damage to institutional reputation Cost to the department, college, or university Time involved for resolution Number of machines affected Type of machines affected Type and sensitivity of data involved Probability of further access or damage

13 Best Practices: Prevention Technical best practices  Strong passwords  Configuration  Patch/debug  Firewall/IDS/IPS/(v)ACL  Access control Foundational best practices  Education, training, and awareness  Policy, procedure, and enforcement

14 Best Practices: Mitigation Technical best practices  Access control/blocking  Auditing Foundational best practices  Decisive, timely action  Interdepartmental cooperation and communication  Procedures  Straightforward communication w. affected parties  Education, training, and awareness

15 Best Practices: Manage Technical best practices Foundational best practices  Interdepartmental IRT  Communication between incident handlers  Straightforward communication w. affected parties  Quick resolution

16 Thoughts to take away 1. There are a lot of incidents happening 2. Students are a major factor 3. People want to share information 4. Having policies and procedures is vital 5. Education of users and staff is important 6. Quarantining is on the rise

17 Thoughts to take away 7. Automated enforcement tools are on the rise 8. Perceptions of seriousness are role- dependent 9. Interdepartmental IRTs are increasing 10. Risk managers and auditors are missing 11. Campuses are maturing in technology, policy, and procedures

18 The CIFAC Project Gerald R. Ford School of Public Policy The University of Michigan 712 Oakland Avenue Ann Arbor, MI 48104-3021 734.615.9595 p 734.998.6688 f cifac.staff@umich.edu 1Apr05 17:10

Download ppt "Results from the CIFAC Project and What They Mean to You Virginia E. Rezmierski Daniel M. Rothschild April 4, 2005 Washington, DC."

Similar presentations

ICANN Plan for Enhancing Internet Security, Stability and Resiliency.

ICANN Plan for Enhancing Internet Security, Stability and Resiliency.
InCommon Certificate Service REN-ISAC Meeting/Educause Security Professionals 2011 Wednesday, April 6 th, 2011, San Antonio TX Joe St Sauver, Ph.D. Internet2.

InCommon Certificate Service REN-ISAC Meeting/Educause Security Professionals 2011 Wednesday, April 6 th, 2011, San Antonio TX Joe St Sauver, Ph.D. Internet2.
S3-1 © 2001 Carnegie Mellon University OCTAVE SM Process 3 Identify Staff Knowledge Software Engineering Institute Carnegie Mellon University Pittsburgh,

S3-1 © 2001 Carnegie Mellon University OCTAVE SM Process 3 Identify Staff Knowledge Software Engineering Institute Carnegie Mellon University Pittsburgh,
HATHITRUST A Shared Digital Repository Bibliographic Metadata and HathiTrust ALCTS CaMMS Catalog Management Interest Group Meeting American Library Association.

HATHITRUST A Shared Digital Repository Bibliographic Metadata and HathiTrust ALCTS CaMMS Catalog Management Interest Group Meeting American Library Association.
Welcome Hinsdale Central Class of 2013. University of Dayton.

Welcome Hinsdale Central Class of University of Dayton.
What Will You Need to Implement Your Broader Impact Plan? Knowledge Skills Resources Partners

What Will You Need to Implement Your Broader Impact Plan? Knowledge Skills Resources Partners
HATHITRUST A Shared Digital Repository HathiTrust: A Second Life for Library Collections Jeremy York Exploring Humanities Cyberinfrastructure April 30,

HATHITRUST A Shared Digital Repository HathiTrust: A Second Life for Library Collections Jeremy York Exploring Humanities Cyberinfrastructure April 30,
Welcome Hinsdale Central Class of 2015. University of Illinois Urbana.

Welcome Hinsdale Central Class of University of Illinois Urbana.
HATHITRUST A Shared Digital Repository Why Digitize? or The Limits of Preservation 2014 TEI/DHCS Plenary Session Evanston, IL Mike Furlough Executive Director,

HATHITRUST A Shared Digital Repository Why Digitize? or The Limits of Preservation 2014 TEI/DHCS Plenary Session Evanston, IL Mike Furlough Executive Director,
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Qualitative.

Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Qualitative.
University of Guelph IT Security Policy Doug Blain Manager, IT Security ISC, April 27th.

University of Guelph IT Security Policy Doug Blain Manager, IT Security ISC, April 27th.
 January 27, 2003 UCD and UCHSC Consolidation Study Presentation to the Faculty Assembly.

 January 27, 2003 UCD and UCHSC Consolidation Study Presentation to the Faculty Assembly.
HAN – Technology Update June 2006. 2 Ezra Roizen Technology consultant and investment banker Author of The Roizen Report – a twice monthly column on technology.

HAN – Technology Update June Ezra Roizen Technology consultant and investment banker Author of The Roizen Report – a twice monthly column on technology.
Dr. Myron Ginsberg HPC Research & Education  SIAM Great Lakes Section Symposium on Complexity and Business Analytics: Theory and Applications, October.

Dr. Myron Ginsberg HPC Research & Education  SIAM Great Lakes Section Symposium on Complexity and Business Analytics: Theory and Applications, October.
Higher Education Cybersecurity Strategy, Programs, and Initiatives Rodney Petersen Policy Analyst & Security Task Force Coordinator EDUCAUSE.

Higher Education Cybersecurity Strategy, Programs, and Initiatives Rodney Petersen Policy Analyst & Security Task Force Coordinator EDUCAUSE.
Www.umbc.edu EDUCAUSE/Internet2 Computer and Network Security Task Force Update www.educause.edu/security Jack Suess February 3, 2004.

EDUCAUSE/Internet2 Computer and Network Security Task Force Update Jack Suess February 3, 2004.
Academic Alliance Federal Bureau of Investigation Unclassified.

Academic Alliance Federal Bureau of Investigation Unclassified.
Current Events Vocabulary American Sign Language II.

Current Events Vocabulary American Sign Language II.
Average Increase in Direct Compensation by Employee Group 2004- 2014 (Includes Extension, excludes Hospital) PercentPercent.

Average Increase in Direct Compensation by Employee Group (Includes Extension, excludes Hospital) PercentPercent.
Enterprise Security. Mark Bruhn, Assoc. VP, Indiana University Jack Suess, VP of IT, UMBC.

Enterprise Security. Mark Bruhn, Assoc. VP, Indiana University Jack Suess, VP of IT, UMBC.

Similar presentations

Ads by Google