Add to collection(s) Add to saved
  1. Engineering & Technology
  2. Computer Science
  3. Data Management

Multi-layered Security Strategies

advertisement 
Multi-layered
Security Strategies
etc
Dept. System
ID Change
. etc
Etc.. etc
Etc..
Etc.
Dept. System
Dept. System
ID Change
ID Change
•Some ITC service granting
processes
•Housing System
•Meal Plan System
•Parking & Transportation
System
•Library Circulation System
•and many more
University ID / ID Card Project
SSN Initiative
Sensitive Data Handling Strategies
Hardening and Securing IT Infrastructure Program
Hardening & Securing IT
Infrastructure Program
Includes:
Enhancing security of sensitive data
Eliminating single points of failure in
most mission-critical systems and
services. Includes new machine room.
Implementing tools for stress testing
systems and applications
Sensitive Data Handling Strategies
Ensure sensitive data
requested only
when essential
Ensure sensitive data
access authorized
to least # of people
University
Processes &
Supporting
Systems
Implement clearer sensitive data use policies
Communicate responsibilities for data protection
Implement compliance verification processes
Ensure sensitive data
provided only
when essential
Ensure sensitive data
stored only in highly
Secured devices
and file cabinets
SSN Initiative
Provides direction to, coordination of, and visibility
on many SSN remediation efforts across Grounds.
To the extent possible solutions will be applied that
will not require rework with implementation of SSP.
Scope covers the entire University.
Some improvements should be apparent by the Fall
2007 semester. Overall effort likely to take several
years to complete.
University ID / ID Card
Project Objectives
Address physical card security risks
Current cards include SSN in
magnetic stripe
Older cards also display SSN on front
Date of birth displayed on student
cards
University ID / ID Card
Objectives - continued
Address security risks of carddependent systems
Stored records of service use include
SSNs
Interfaces with other systems transmit
SSNs
Manual vouching processes use
SSNs
University ID / ID Card
Solutions
Reformat and reissue ID cards
No SSNs
No DOB
Issued to new students, faculty and staff
All existing cards replaced
University ID / ID Card
Solutions - continued
Use 9-digit random number in place of SSN
on card and in card-dependent systems
Unique to individual card holder
Will never change or be reassigned
Stored records of service use will include new
number
Random number to SSN (and vice versa)
automatic translators will allow system
interfaces to continue operating
Used for manual vouching
Integration Into Other Legacy
Processes & Systems
Unique random number provides accurate,
consistent way to establish individuals
distinct identity for university business
Replacing SSNs with 9-digit random
number makes reprogramming much
simpler
Most data collection, storage, and display
processes could use random number
without incurring unacceptable security or
privacy risks
Related documents
Operational Services
Operational Services
This Social Security Privacy Protection Policy applies to U.S. Social... (SSNs) that Ford Motor Credit Company LLC and its brands... Social Security Number Privacy Protection Policy
This Social Security Privacy Protection Policy applies to U.S. Social... (SSNs) that Ford Motor Credit Company LLC and its brands... Social Security Number Privacy Protection Policy
East Carolina University DISCLOSURE STATEMENTS REQUIRED FOR COLLECTING SSN INFORMATION Y
East Carolina University DISCLOSURE STATEMENTS REQUIRED FOR COLLECTING SSN INFORMATION Y
Operational Services
Operational Services
Employee Scholarship Program Application for Employees
Employee Scholarship Program Application for Employees
Sample SSN Disclosure Language for Research Study.DOC
Sample SSN Disclosure Language for Research Study.DOC
Dental History - Shirck Orthodontics
Dental History - Shirck Orthodontics
Non ISU Employee Data Base Input Form - ISU Card
Non ISU Employee Data Base Input Form - ISU Card
ISSP-014 - University of South Florida
ISSP-014 - University of South Florida
Authorization to Close Account
Authorization to Close Account
Information Security Strategy
Information Security Strategy
Social Security Administration Information
Social Security Administration Information
Download
advertisement