Spring Break
OIS seeks to improve network security
Liz Wrobel
Issue date: 3/25/05 Section: News
- Page 1 of 2 next >
03/25/05 - The University of Rhode Island is taking steps to enhance Internet security on campus.
"I don't trust anything over the web," Director of Networking and Telecommunications David Porter said. "I'm very careful and only go to sites I know."
However, Interim Vice Provost for Information Services Chris Wessells said, "Our servers are secure."
Wessells could not be reached for additional comment.
Porter said the wireless network provides the largest opportunity for thieves to gather private information.
Porter said the university is working to encrypt information to protect confidentiality.
Currently, the university does not encrypt all transactions made over the wireless network. However, many URI services, such as Webmail and e-Campus, utilize Secure Socket Layer encryption, commonly used by banks, to ensure the privacy of information transmitted.
However, encryption sometimes interferes with the proper functioning of other applications or the network capacity Porter said, adding the department must strike an appropriate balance.
"If you have a lot of security, you have less convenience," Porter said.
Porter said the network can presently handle 4,000 users simultaneously without providing encryption. The number is cut in half when encryption is added for all transactions.
However, there is more to security than encryption alone Information Security Architect Alan White said.
Applications such as Webmail and e-Campus are fully encrypted and there is a minimal chance that information sent through the programs could be stolen. However, applications such as Yahoo! Mail, only the login information is encrypted so usernames and passwords remain confidential but once logged in all transactions including accessing e-mail is sent in plain, readable, text.
White said when a website is encrypted, a lock icon is displayed on the bottom of the browser, and "https" instead of "http" appears as part of the URL.
"I don't trust anything over the web," Director of Networking and Telecommunications David Porter said. "I'm very careful and only go to sites I know."
However, Interim Vice Provost for Information Services Chris Wessells said, "Our servers are secure."
Wessells could not be reached for additional comment.
Porter said the wireless network provides the largest opportunity for thieves to gather private information.
Porter said the university is working to encrypt information to protect confidentiality.
Currently, the university does not encrypt all transactions made over the wireless network. However, many URI services, such as Webmail and e-Campus, utilize Secure Socket Layer encryption, commonly used by banks, to ensure the privacy of information transmitted.
However, encryption sometimes interferes with the proper functioning of other applications or the network capacity Porter said, adding the department must strike an appropriate balance.
"If you have a lot of security, you have less convenience," Porter said.
Porter said the network can presently handle 4,000 users simultaneously without providing encryption. The number is cut in half when encryption is added for all transactions.
However, there is more to security than encryption alone Information Security Architect Alan White said.
Applications such as Webmail and e-Campus are fully encrypted and there is a minimal chance that information sent through the programs could be stolen. However, applications such as Yahoo! Mail, only the login information is encrypted so usernames and passwords remain confidential but once logged in all transactions including accessing e-mail is sent in plain, readable, text.
White said when a website is encrypted, a lock icon is displayed on the bottom of the browser, and "https" instead of "http" appears as part of the URL.
