- Data Security concerns in Higher Education System must be addressed in an urgent manner
- Posted By:
- Tom A.
- Posted On:
- 21-Oct-2009
-
One of the most important areas where universities in America are lagging behind in security is in information technology. This is evident with the way hackers attacked servers and stole vital personal information of donors and alumni from the Notre Dame University in the year 2006. This breach was an eye opener for everyone and it showed the severe lack of computer security in campuses.
Institutions will start facing severe loss in the form of reluctant donors and alumni as they stop trusting the institution in keeping their personal information safe. This kind of security breach therefore has the potential to cause long term severe damage. Plenty of universities and colleges in America are vulnerable to security breach in this area. During the first part of the year 2009, American universities faced at least 27 breaches. Data lost includes personal data, financial data, credit card numbers and social security numbers of students, staff and alumni.
Security breaches have also resulted in fallout for people responsible with a lot of professors and staff resigning from their post taking moral responsibility. According to experts, identity theft occurs due to two major reasons namely architecture and culture. As we look at it from the cultural angle, those who administer and run the universities prefer open dialogue and collaboration. Being highly wary of outside control, they do not encourage third person interference in computer safety.
According to experts, the situation warrants a complete overhaul including using a high security firewall that is unified to secure and store sensitive information. Machines owned by the university can also be vulnerable to security threats. For instance, a department can own a laptop that is protected by effective anti-virus software. However, if the system contains sensitive personal information such as social security numbers of students, the information may be easily accessible for students, researchers and even the janitor. Especially systems that are used to access functions such as data analysis, word processing and server can act as a potent vulnerable machine.
Most of the American universities are hacker’s paradise as those who are responsible and handle computers are not really aware of the security requirements and do not want outside intrusion to enhance security. Those who do realize the importance of data security do not have the funds or authority to implement security.
Professionals in charge of security in the Universities have found a couple of methods to fix the problem. While the goals are same, one method is very slow and the other too fast. The first method involves placing the network behind a potent and secure firewall by giving IT department access to their critical data. Another option is to create zoned access. This requires separating and categorizing data under risk categories. This depends exclusively on the value and sensitivity. A security clearance level system has to be necessarily instituted too.
Critical data system control can be centralized. However this process is very slow and starts with financial data such as students, employees, donor information and financial data such as university budget.