June 9, 2011 | Michael Kirk

University Taking Steps to Enhance Information Security

UConn’s network firewalls are being upgraded and a new system implemented.

As part of a continuing effort to ensure greater data security throughout the University, UITS and University Information Security are upgrading UConn’s network firewalls and implementing a new initiative designed to establish a consistent systems security standard across the University.

“Protecting our information systems and the information entrusted to us remains a top priority for the University of Connecticut,” says David Gilbertson, UConn’s chief information officer. “Over the next several months, we will be implementing these improvements in our network to reduce our vulnerability to intentional and unintentional security violations.”

According to Gilbertson, upgrading the University’s network firewalls will not only improve UConn’s border defense, but it will also increase network capacity and allow the University to stay ahead of the increasing demand for bandwidth. Though complex, the upgrade will not result in any noticeable disruption of service or require staff and faculty to do anything new.

The second initiative is a system called “SafeConnect,” which is a replacement for the current NetReg system. It will require all users of the UConn wireless or wired networks to log into the network before receiving access.

Its benefits include:

  • Preventing unauthorized users from accessing the University’s network resources;
  • Ensuring that computers are configured securely, and comply with University security policies;
  • Improving system and network availability;
  • Improving data management capabilities;
  • Reducing security incidents.

It will be implemented in two phases:

Phase 1 – Software Distribution Phase

The system will be enabled over a period of approximately six weeks, starting July 19. There will be a rolling migration window to ensure adequate support is available as networks are moved and computers are configured. During this time, users will be required to log in using their NetID and install the required software. Monthly logins will be required; a web browser will automatically present the login screen when necessary.

Phase 2 – Policy Configuration Phase

This phase will begin after completion of Phase One; UITS expects this phase to begin in October or early November. During Phase Two, UITS will implement network policies to establish a standard and consistent computing security baseline for all computers connecting to the University network. An example of these policies would be to validate that an up-to-date anti-virus program is installed and running.

All computers connecting to the UConn network will be required to install a small piece of software that allows the computer to interact with the SafeConnect system. This installation must occur only one time, and will not be required on servers.

For more information, visit: safeconnect.uconn.edu.