Craig Lant, System and Network Security
News regarding computer security has occupied the headlines for quite some time, but more recently the discussion has been directed to fears about terrorist attacks involving university computer or network systems. This heightened interest has focused concerns that procedures be in place for reporting perceived security breaches and, especially, to make sure that such reports include notification of and consultation with appropriate campus officials.
The campus System and Network Security (SNS) office was established to assist the campus in protecting our computer and network infrastructure from electronic attack. The SNS website (http://security.berkeley.edu/) has instructions on reporting security incidents involving campus computing systems and network resources, as well as links to many useful security-related resources. When sending email to security@berkeley.edu to report security incidents, it is very important to include details describing the situation so that investigation and analysis can proceed rapidly.
The campus recently implemented a new Campus Computer Incident Response Team (CCIRT) to coordinate responses to exceptional attacks on campus computer or network resources that may have severe consequences. These would include possible threats to health and safety, significant financial impact, or compromise of confidential data such as financial records. This team will contact the appropriate campus officials if it is believed that a situation requires a comprehensive investigation. Since special investigatory methods may be required, departments are advised not to attempt to engage in investigations without the advice of the UC Police Department.
To bring an incident to the attention of the CCIRT, send email to security@berkeley.edu, abuse@berkeley.edu, or call the UC Police at 642-6760. Staff who monitor those contacts are included in CCIRT communications and are poised to activate the team when a situation warrants exceptional attention, beyond the scope of a "normal" security incident.
Previous BC&C newsletters have carried many articles covering security issues to help the campus understand the range of security risks. These offer information for system administrators to better secure their systems. (For the range of articles, go to the BC&C home page [/bcc/] and use the "search" feature to find security-related articles.) We urge you to review BC&C articles and also to check the SNS website (http://security.berkeley.edu/) for important security information.
[ Next Article | Contents | Search BC&C | BC&C Main Menu | IST | UC Berkeley ]
Berkeley Computing & Communications,
Volume 12, Number 4 (Fall 2002)
Copyright 2002, The Regents of the University of California