Towards a Secure Dartmouth
Submitted by Web Services Editor on Mon, 05/11/2015 - 1:41pm
As part of our ongoing commitment to protecting your data and identity within the Dartmouth Community, Information Technology Services will make several changes in the coming months to improve the security of Dartmouth’s data, as well as the usability of systems that protect our data. These changes are briefly described below.
International Student Accounts: Starting April 7th we provided incoming international students with accounts in our directory system. This is approximately one month prior to all other incoming students. With this change, international students can submit their information to OVIS using their Dartmouth NetID and password to log in, rather than credentials for a prospective student account.
Web Authentication: A new look for the Dartmouth Web Authentication (WebAuth) system was implemented on April 22nd. People use the WebAuth system to log into many web-based applications and systems with their NetID and password. This change improved the login process by presenting screens that are less cluttered, easier to use, and scalable for many different types of devices (computers, smartphones, tablets).
OnBase Unity Client: In order to provide further protection to the documents and data stored in the OnBase system, effective the evening of Tuesday, April 28th, you must establish a VPN connection before starting the Unity client in order to connect to OnBase. If you do not, when you attempt to start Unity, the client will freeze.
WebGateway: The provider for our WebGateway system, https://webgateway.dartmouth.edu/, will change. This service provides secure access to Dartmouth web-based resources (e.g. Library databases) from off campus. When we make this change, the URL will remain the same but users will see a new screen. We will contact anyone who used this service in the past six months directly with information about this change.
Virtual Private Network (VPN) Application: A new VPN application will be deployed. This service provides secure access to Dartmouth resources that run via an application or Web browser. This change requires VPN users to remove current software (Juniper/Junos Pulse/Network Connect) and install a new application. The current VPN software will continue to work for a period so we can transition all VPN users over to the new system. This change is in response to input from users relating to the functionality of our current VPN system. We will contact anyone who used the VPN in the past six months directly with information about this change.
Secure Data Backup: We will begin rolling out a new backup service to faculty in the Arts and Sciences to ensure that their data is always protected against computer loss or hardware failure. We will contact all Arts and Sciences faculty directly with information about this service when it becomes available.
Java Upgrade: We will update many of our central applications to use a newer version of Java. We will email users of the central systems that can now use the later version of Java.
BWA Login: We will update to a newer version the web page that people see when prompted to log into BWA.dartmouth.edu. When we make this change, the web address (URL) will remain the same but users will see a new screen where they enter their NetID and password.
Wireless Network Authentication: We will start working with people to have their computers/devices use a new certificate when accessing our wireless networks. The current certificate expires at the end of July, so all devices will be required to re-authenticate before using the Eduroam and/or Dartmouth Secure networks. We are putting a new certificate on the network in May to enable members of the Dartmouth community to transition before the expiration of the current certificate.
BWA Authentication: We will change the authentication system that is used for logging into Office 365, Sharepoint Online and OneDrive (BWA) to make these systems more secure.
Enhanced Security for Web-Based Applications: We will update many of our web-based systems to require an additional level of authentication. Once we make this change, in addition to entering your NetID and password as part of the login process, you will be asked to answer one of the security questions you set when you “claimed” your account.
Enhanced Security for Highly Confidential Data: We will require specific users who access highly confidential data (e.g. HIPAA data) to use “one time PINs” in addition to their Dartmouth NetID and password. These users will need to register a phone number(s) which can be used to receive a PIN each time they log into one of these systems. This change does NOT impact most Dartmouth users. We will contact the impacted users directly.
The timeframes listed for these changes are only targets. We will update this site with detailed information as the specific dates are confirmed. In addition, detailed information about the changes will appear in VOX Daily as they get rolled out.