Presentation is loading. Please wait.

Presentation is loading. Please wait.

Vista Impact on Higher Ed Security Cam Beasley, ISO Craig Blaha, Manager of Special Projects The University of Texas at Austin.

Published byAlberta Patterson Modified over 9 years ago

Similar presentations

Presentation on theme: "Vista Impact on Higher Ed Security Cam Beasley, ISO Craig Blaha, Manager of Special Projects The University of Texas at Austin."— Presentation transcript:

1 Vista Impact on Higher Ed Security Cam Beasley, ISO Craig Blaha, Manager of Special Projects The University of Texas at Austin

2 Overview  Corporate vs. HE  ITS at UT, TAP program  Big picture – get in front of it  User account protection  Firewall  Bitlocker  Collaboration  Network access protocol  Command line  IPV6

3 Primary Customer - Corporate?  Vista great for homogenous, centrally managed environment  With 63k+ machines attached to the network, managed by individuals or various departments.

4 Application Programming Network Management User Support Application Programming Network Management User Support Administrative Decisions Operations CIO Security Purchasing Corporate Hierarchy

5 Application Programming Network Management User Support Application Programming Network Management User Support Administrative Decisions Operations CIO Security Purchasing Administrative Decisions Operations Administrative Decisions Operations Administrative Decisions Operations Application Programming Administrative Decisions Application Programming Network Management User Support Application Programming Network Management User Support Administrative Decisions Operations CIO Security Application Programming User Support Application Programming User Support Application Programming Purchasing Security Purchasing CIO Operations Application Programming Administrative Decisions Operations Application Programming Network Management User Support Application Programming Network Management User Support Administrative Decisions Operations CIO Security Purchasing HE - The Explosion of Corp.

6 UT Technical Overview  Over 119 instances of exchange  Utnet is one of the largest single networks in the country, supporting 1836 subnets and ~350 subdomains.  Every flavor of OS  16 academic departments, many administrative departments and independent entities each with the capacity and freedom to make their own IT decisions

7 UT Overview  Founded in 1883  Flagship of the 15- campus university of texas system, with 6 medical centers  51,000 students; 11,000 degrees/year  300,000 continuing ed enrollments  3,000 faculty, 18,000 staff  Over 450,000 alumni

8 TAP Program  Technology adoption program  Over 100 participants, 3 higher ed research institutes  2 beta tests, one with 25 machines another with 100.  Commitment to deploy vista widely after RTM

9 Prepare For Vista  Get in front of it  CLI training  Key escrow  Enterprise level security

10 Hardware Requirements  Many systems on campus will not be able to support the RAM | CPU | graphics requirements of vista..  E.G., Aero, the new GUI, requires at least 128mb video RAM.  Need to upgrade to RAM (512MB) to expose the new features  Benefit:  More time to prepare and test  Issue:  What is the tipping point?

11 User Account Protection  Limits the chances of an application installing or making changes silently  Issue:  User account protection = pop-up fatigue?  Examples of when this is required… make fonts larger or smaller, control panel mouse, battery power, add or remove user accounts

12 Firewall  Easy to write and share rules with users  3 flavors - sane, paranoid and ultra-paranoid  Issue:  May conflict with existing firewalls  Initial confusion (breaking apps?)  Potential for user misconfiguration

13 Bitlocker  Great potential - HIPAA, research data BPM, stolen laptops etc.  De-commissioning made easy  Issue (?)  Potential boat anchor creator - users can mistakenly kill all of their own data  When employee leaves, we can be locked out.  All managed machines compromised if AD is vulnerable  Check on state key escrow requirements

14 Collaboration  New P2P protocol – peer name resolution protocol (PNRP) – on by default in last build  Users and applications can communicate with each other  Find people near me  P2P happens, might as well be secure  Issue  Could be used in new botnet command & control scenarios.

15 NAP  Network access protocol – NAP if using longhorn server (replacement for other network access control devices?)

16 Complexity and Command Line  2500 GPO’s added to registry  Adds to level of control  Adds to complexity  Command line driven

17 IP Stack  IPV6 on by default  Each interface has its own routing table  Can allow for transmission of sensitive data over secure channels only.  Ex.: Isolation between data going through a VPN interface vs. Regular network interface  May decrease the chance of inadvertent routing of private network data over public network

18 Conclusion  Get your organization to support a professionally (centrally) managed windows environment, so that all of the new vista features can be properly leveraged.  Watch Star Trek re-runs.

Download ppt "Vista Impact on Higher Ed Security Cam Beasley, ISO Craig Blaha, Manager of Special Projects The University of Texas at Austin."

Similar presentations

Operating-System Structures

Operating-System Structures
Selecting the Right Network Access Protection (NAP) Architecture Infrastructure Planning and Design Published: June 2008 Updated: November 2011.

Selecting the Right Network Access Protection (NAP) Architecture Infrastructure Planning and Design Published: June 2008 Updated: November 2011.
Presentation. Contemporary Communication Fast – connects us quickly without delays Reliable – works always Global – connects us with the whole world Low.

Presentation. Contemporary Communication Fast – connects us quickly without delays Reliable – works always Global – connects us with the whole world Low.
2  Industry trends and challenges  Windows Server 2012: Modern workstyle, enabled  Access from virtually anywhere, any device  Full Windows experience.

2  Industry trends and challenges  Windows Server 2012: Modern workstyle, enabled  Access from virtually anywhere, any device  Full Windows experience.
MUNIS Platform Migration Project WELCOME. Agenda Introductions Tyler Cloud Overview Munis New Features Questions.

MUNIS Platform Migration Project WELCOME. Agenda Introductions Tyler Cloud Overview Munis New Features Questions.
Chapter 10 Securing Windows Server 2008 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration.

Chapter 10 Securing Windows Server 2008 MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration.
Microsoft Windows Server 2008 Software Deployment Chris Rutherford EKU Technology: CEN/CET.

Microsoft Windows Server 2008 Software Deployment Chris Rutherford EKU Technology: CEN/CET.
Tom Sheridan IT Director Gas Technology Institute (GTI)

Tom Sheridan IT Director Gas Technology Institute (GTI)
Unleashing the Power of Ubiquitous Connectivity with IPv6 Sandeep K. Singhal, Ph.D Director of Program Management Windows Networking.

Unleashing the Power of Ubiquitous Connectivity with IPv6 Sandeep K. Singhal, Ph.D Director of Program Management Windows Networking.
ITE PC v4.0 Chapter 1 1 Operating Systems Computer Networks– 2.

ITE PC v4.0 Chapter 1 1 Operating Systems Computer Networks– 2.
Module 3 Windows Server 2008 Branch Office Scenario.

Module 3 Windows Server 2008 Branch Office Scenario.
-How To leverage Virtual Desktop for Manageability & Security -Desktop Computing “as a service” Andreas Tsangaris CTO, PERFORMANCE

-How To leverage Virtual Desktop for Manageability & Security -Desktop Computing “as a service” Andreas Tsangaris CTO, PERFORMANCE
1 Routing Simulations – Zebra Routing Software Eric Ciocca Dimitris Zacharopoulos.

1 Routing Simulations – Zebra Routing Software Eric Ciocca Dimitris Zacharopoulos.
Access Controls Supervised by: Dr.Lo’ai Tawalbeh Prepared by: Abeer Saif.

Access Controls Supervised by: Dr.Lo’ai Tawalbeh Prepared by: Abeer Saif.
Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.

Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.
MCITP: Microsoft Windows Vista Desktop Support - Enterprise Section 1: Prepare to Deploy.

MCITP: Microsoft Windows Vista Desktop Support - Enterprise Section 1: Prepare to Deploy.
Chatham College Community and Computers Pervasive Computing at a Liberal Arts College Charlotte E. Lott, Ph. D. Lynda Barner West, Ed. D. Copyright Charlotte.

Chatham College Community and Computers Pervasive Computing at a Liberal Arts College Charlotte E. Lott, Ph. D. Lynda Barner West, Ed. D. Copyright Charlotte.
Cambodia-India Entrepreneurship Development Centre - : :.... :-:-

Cambodia-India Entrepreneurship Development Centre - : :.... :-:-
Installing software on personal computer

Installing software on personal computer
Ferst Center Incident Incident Identification – Border Intrusion Detection System Incident Response – Campus Executive Incident Response Team Incident.

Ferst Center Incident Incident Identification – Border Intrusion Detection System Incident Response – Campus Executive Incident Response Team Incident.

Similar presentations

Ads by Google