It is National Cybersecurity Awareness Month (NCSAM) and I thought I will share some of the ways I protect my information. Spoiler alert: you may not find anything that you already don’t know and I may have written about these earlier. And if you came to the event at Wellesley last Friday, you already heard about these from me. But I hope this serves as a good reminder about some of the best practices for keeping your information safe.
Passwords & Passphrases
I use fairly long and complex passwords. I prefer passphrases wherever they are supported. It is so sad that so many systems still do not support passphrases and are restrictive in terms of the length of the passwords. As a rule, I use different passwords for different systems. I will be very happy to privately share with anyone who is interested in knowing more about how I maintain/remember all of these passwords. I also avoid saving passwords for some of the critical systems and financial institutions in my browser’s password manager. They are safe and continue to be safer, but, if ever someone steals my Google Password AND bypasses two factor authentication, they will have access to all my passwords (paranoia!).
To change the passwords often or not is an age old question and I believe that having a long and hard to guess password is much better than changing passwords often. One of the reasons for mandating the password change was that if hackers had access to your password, changing it prevents them from accessing your data and that it is hard for them to guess your new password. With the exponential increase in computing power, the moment your password has been hacked, a lot of your information has already been accessed before you can change the password. Secondly, it has been shown that mandatory password changes result in predictable password patterns that are easier to guess than one can imagine. I encourage you to read this article “Time to rethink mandatory password changes” on this subject. So, my advice – make passwords long and hard to guess. (more…)
There is no day that passes where we don’t hear about hacking of one kind or the other. The most prevalent ones are phishing attacks because they are easy to carry out and the dividends for the hackers are pretty high. Here is another link that shows more statistics on phishing. Please note that the statistics probably are way underestimating the reality because they are generally based on surveys. Since there are no legal requirements to report a phishing attack unless there has been compromises involving personally identifiable information, there is no other database of phishing attacks.
Because of the advances in operating systems and other tools such as antivirus, malware & spyware protection as well as local firewalls, personal computing devices have become much harder to invade directly, unless of course, for a variety of reasons (including the cost of virus protection software), someone decides not to install and run these protection tools. In addition, browsers have become sophisticated in helping protect our information. Again, it requires some effort in terms of updating the browser and sometimes installing additional extensions etc. I strongly recommend you reading “Securing Your Browser” from US-CERT (Computer Emergency Readiness Team), however, use your discretion in reading this given that this is from the US government which has a strong surveillance program. May be a few of their recommendations are to help them gather your information 🙂
(more…)
As everyone says “I don’t know where the summer went”. Right, it came and went before we knew it. In LTS, as always, summer was very productive. Our staff worked on several exciting projects, notably, a large contingent of both LTS staff and those from Human Resources and Finance were working extremely hard on Workday related activities as well as others working to make sure that the classroom technologies were in good shape for the start of the semester. Based on the feedback we have received so far, classroom problem calls are down to a handful, which is great news.
We also have had a few glitches that we will be attending to aggressively to sort out. Most notably, our course browser and waitlist system were way too slow for a period of time and we have already provisioned additional hardware with more memory and CPUs which hopefully will help address these issues.
We rolled out an initial version of dashboards for alumnae data using Microsoft SQL server, which I think will vastly simplify the way many offices access this data. The modern and easy to use PowerBI interface from Microsoft drives all of this and our technologists have done a terrific job of packaging the data and creating easy to use interfaces to slice and dice the data. (more…)
As always, we are engaged in a lot of exciting things and I thought I would touch on a few items here.
MOOCs – Two of our self study courses that opened in January are drawing to a close. Italian Language and Culture: Beginner and Personal Finance, Part 1: Investing in Yourself have been very well received. They have had much higher engagement percentages going into last couple of weeks (between 9 and 12%) than the typical MOOCs. And the learners are loving the courses. Please see here for several additional courses that are opening up in the next few weeks. A couple of them have been run before, but are redone to be shorter ones which seem to be more appropriate for this medium. Enroll yourself and enjoy!
Blended Learning – We are doing really great in this Mellon funded project. We continue to receive requests for support and experimentation. I strongly suggest that you view this website, especially the embedded video. Talking about blended learning, a second jointly taught course between Davidson College and Wellesley is going great by the reviews we have received so far. Van Hillard from Davidson and Justin Armstrong from Wellesley have been co-teaching a first year writing course. These are truly collaborative projects involving faculty members, students, staff members from Research and Instructional Support and Library Collections. For example, Helene Bilis is planning to jointly teach a course with a faculty member from Smith for which they are working on a project on making a digital clickable edition of an 18th-century almanac that once belonged to Marie-Antoinette. This book was acquired by special collections and a member of RIS team is assisting with digitization and the creation of clickable online version of this book!
(more…)