As universities across the country install new computers andutilize their campus Internet networks, the threat of hackers andviruses becomes more significant.
According to a report from the Educause Center for AppliedResearch, 62 percent of computers connected to a university networkare free of security holes. Additionally, 33 percent of universitieshave programs to promote technology security. The report, titled”Information Technology Security: Governance, Strategy, and Practicein Higher Education,” summarizes findings based on a survey of 435colleges.
John Denune, San Diego State information security officer, saiddata concerning the university’s computer security status is hard togather.
“We are a very decentralized campus,” Denune said. “Eachdepartment and division has its own IT (information technology)support.”
However, meetings among the university’s IT staff are held everymonth in order to share information and to address possible virusattacks, Denune said.
“Wetry to get the word out as quickly as possible,” he said.
According to the Educause report, 97 percent of universitieseither already use or are currently installing computer firewalls asa way to combat hackers and viruses. Denune said SDSU also usesfirewalls in its computer system as one of its primary forms ofsecurity.
Denune said the most recent computer security problem came withthe arrival of a virus known as the Blaster Worm in August. Withregistration for the Fall 2003 semester quickly approaching, Denunesaid campus computer security staff scrambled to fix the problem intime. The staff also distributed patch CDs and informational fliersto residence hall students if their computers were infected, Denunesaid. Although the virus caused some damage, the problem could havebeen much worse, he said.
“The recent worms have shown that our security wasn’t what itcould be, so we’re trying to fix that,” he said. “This was the firstworm that really impaired the network and laptops as well.”
In the meantime, the university is investing in patch managementsoftware, which should prevent future computer virus infections,Denune said. In addition, SDSU has yet to experience a major attackfrom a hacker, he said.
Computer security becomes vital when personal and confidentialinformation is at stake, Denune said. Health and police records, aswell as financial information, can be viewed and stolen by hackers ifthe proper security measures aren’t in place, he said.
Although hackers and viruses can cause a large amount of damage,authorized users can also cause security problems, the Educausereport said. Fifty-two percent of the universities in the survey saidsecurity problems accidentally caused by authorized users are a”significant concern.” However, 66 percent of surveyed universitieshave programs that educate users about computer security.
Despite the potential for problems, computer security educationamong students and faculty at SDSU remains low, Denune said. Becauseof their own responsibilities and jobs, students and faculty membersdon’t view computer security as a top priority, he said.
“The big area that we need to address in the future is usereducation,” Denune said. “It’s something everyone needs to be awareof. Security is everyone’s responsibility.”
