Information Technology News Archive

1996 - 2017

You are here: Home / Archives for Voice and Data Services / Network Security

Network Security

UCI Identity and Access Management Website

by

IDM

IAT-NACS provides a suite of identity management, authentication, and authorization services collectively referred to as Identity and Access Management services. A group of web pages has been developed describing UCI network identities (e.g., UCInetIDs), how they work, and how they will evolve.  There is a wealth of information for those interested in technical details.  Here are some highlights.

The campus directory provides contact information for campus affiliates, and allows you to control certain information pertaining to your network presence on campus, such as the server your UCI email should be sent to.

UCInetIDs are network identities issued to campus affiliates.  With your UCInetID and password, you can access a variety of online services, many through WebAuth.  IAT has recently extended UCInetID authentication, with appropriate limits, to applicants for admission, and third parties for whom some services will be provided.

UC Trust is a system for using each campus’s network authentication system (UCInetIDs at UCI) to access services, as appropriate, provided by other UC campuses as well as some companies whose services are restricted to UC affiliates.

Because UCInetIDs are so vital to conducting University business, IAT has developed plans for enhancing UCInetID security.  Also, as the number of users, past and present, grows, it will be necessary to upgrade UCInetIDs beyond their current 8-character limit.  You can read about this project online as well.

Secure Instant Messaging

by

chat logo

NACS has introduced a new component of our communication and collaboration services: Instant Messaging (IM).

This service allows real-time communication between two or more people.  You can type brief messages back and forth, ask and answer quick questions, share links, and transfer files. In addition to person-to-person communications, it can be used to host a group “chat room”, to assist help desk or reception activities, or for contact between faculty and students.

As this service is designed for and operated at UC Irvine, it has many advantages over commercial IM services:

  • UCInetID Identification — Your instant messaging ID is the same as your campus login: UCInetID@uci.edu. With the UCInetID system you always know with whom you’re speaking; no need to guess or verify whether an instant messaging handle actually belongs to your coworker.
  • Spam-Free — NACS Instant Messaging is not accessible by commercial instant messaging systems. In addition, you must authorize senders before they may send messages to you.
  • Security — All transmissions are encrypted using SSL/TLS.

NACS offers documentation for selected instant messaging clients for Windows, Mac OS X and Linux.

For additional information and connection instructions, please see http://www.nacs.uci.edu/computing/im/

Most Spam is Blocked

by

In 2008, UCI email readers were spared almost one billion spam messages which were blocked by the NACS spam-mitigation system prior to delivery.  This represents more than 21,000 messages for each faculty, staff, and student at UCI last year.

Of the messages accepted for delivery, 12 million were labeled as potentially spam so that people could quarantine them and inspect them at their convenience.  Here is a summary of the spam and mail delivery statistics for 2008:

Total Messages Blocked: 869,295,065
Total Messages Accepted: 97,484,167
Total Messages Accepted marked as spam: 11,786,134

The chart shows the number of spam messagess blocked each day in 2008 (in red) and the number of messages accepted for delivery (in blue.)  You can find more information on spam and spam filtering on line.

Phishing on the Rise

by


Phishing

Phishing is a name for fraudulent email messages sent by thieves to lure the recipient into divulging personal or financial information. Thieves can then use this information for mischief or profit.

These email messages pretend to be from well-known, legitimate businesses or organizations, and increasingly look as if they actually are.  We’ve seen phishing messages sent to UCI email accounts that have used the NACS name and logo in an attempt to look as genuine as possible.

These messages will often try to create a sense of urgency so the recipient won’t stop to think about the legitimacy of the message.

If you suspect that you have received a phishing email, do not respond to it or click on the links. Reputable organizations, including NACS, will never send an email message requesting personal information such as passwords or financial information. Always be wary of messages requesting such personal information.

For ways to recognize phishing email messages, and for additional information about phishing, see http://security.uci.edu/email/phishing.php

If you are unsure whether an email message about your account is a phishing email or not, call the organization directly to determine the status of your account. The NACS Response Center may be contacted at 949-824-2222 for questions about UCI accounts.