This site is brought to you by the Electrical and Computer Engineering department

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 32 Next »

The University's Executive Compliance Committee (ECC) has made a policy change that requires all commodity servers to be physically or virtually located in the University Data Center.  Such a change helps to address a number of risks that the committee has been monitoring over the years.  Note: The policy change has been published, but it will not be made effective until September 01, 2014.

More details on the policy change can be found at: http://security.utexas.edu/policies/irusp.html#section_5_23_3

Commodity servers are defined as systems providing basic information technology services to university affiliates (e.g., web services, mail services, file services, database services, directory services, collaboration services).  

There were roughly 600 commodity servers identified as having high-volume activity that were located outside of the University Data Center. The ECC has asked the Information Security Office to work with each affected unit on the final disposition of each server.

 

 

Collaboration Services

University Wiki Service

UTBox

Database Services (MySQL)

MySQL is an open source relational database management system (RDBMS). It is commonly used for database services for other open source and web applications.
https://www.utexas.edu/its/mysql/

Features:

  • 1 gigabyte of storage space on the central MySQL database servers.
  • Daily Backups with two week retention.
  • Ability to safely store Category-I data in databases.
  • Access to phpMyAdmin and the MySQL command line client for database management and administration.
  • Access to the ITS Systems MySQL team for advice and troubleshooting.
  • Access to commercial MySQL support via the ITS Systems MySQL team.

Cost:

The MySQL database service is available at no cost for departments for up to six named databases. Additional named databases can be purchased in quantities of six for an additional $150 per year. Additional storage space is $7 per gigabyte per year.

MySQL Order Form: https://www.utexas.edu/its/mysql/forms/

MySQL Help:

https://www.utexas.edu/its/help/mysql

Directory Services

A directory service is a system system that stores, organizes and provides access to information in a directory.  It allows the look-up of values given a name, similar to a dictionary.  In a directory, a name may be associated with multiple, different pieces of information.

Examples:

  • Lightweight Directory Access Protocol (LDAP)
  • Network Information Services (NIS)
  • Domain Name Systems (DNS)

A mechanism in place for user account creation and management within an infrastructure and/or service (e.g. mail, web, computer access)

File Services (storage)

Austin Disk Services (https://www.utexas.edu/its/storage/)

Features:

  • Meets the minimum standards set by ISO for storing Category I Data using IPSec, secure WebDAV, or SFTP to connect. Please see the SLA before storing protected research data on Austin Disk
  • Automatically synchronize work you do offline with austin.utexas.edu any time you log on with the Offline Folders feature of Microsoft Windows
  • Automatically backs up your files three times per day to ensure your data is secure
  • Two week retention period
  • Supports end-user recovery of backups with compatible clients (machine must be on the Austin Domain)
  • Works best with Windows

Cost:

Effective September 1, 2013, the cost for individual Austin Disk shares will be $2.00 per GB per year, a drop from the previous $2.80 per GB per year. Individuals can purchase disk space online in 1 GB increments, up to 20 GB. Departments can also purchase disk space online, with a minimum allocation of 50 GB, at an annual rate of $140 per 50 GB allotment.

Austin Disk Support: https://www.utexas.edu/its/help/storage

UT Enterprise Bulk Storage (UTEBS)

Service description

UT Enterprise Bulk Storage is a cost-effective, reliable, self-managed, iSCSI-based, storage solution. The UT Enterprise Bulk Storage arrays are housed in the University Data Centers (UDC) and are accessible via 10Gb network interfaces within the University Data Centers. UT Enterprise Bulk Storage is provisioned in 512GB units, with a starting minimum of 1024GB (1TB).

Customers must manage access client protocols, such as CIFS, NFS, and AFP via a server front-end.  It is required that customer servers are located within UDC-C to connect to UT Enterprise Bulk Storage. 

Features:

  • High bandwidth connectivity within the University Data Centers
  • Compatible with other ITS services: UT Virtual (UT-V), CrashPlan server backup
  • Highly reliable due to a fault-tolerant hardware architecture
  • Scalable storage framework to meet storage growth on campus

Cost:

Each 1 GB costs $0.40 per year. Storage is available for purchase in 512 GB increments, with a starting minimum of 1024GB (1TB).

Bulk Storage SLA:  https://www.utexas.edu/its/sla/sla.php?id=1609

Mail Services

Web Services

Exception Process

You should consider structuring your exceptions around the following:
http://security.utexas.edu/policies/irusp.html#section_5_19 

  • business case for exception
  • physical controls for exception
  • logical controls for exception

What is meant by logical controls?

According to the Information Security Office (ISO), logical security controls would consist of implementing permissions, logging, and auditing mechanisms for access to unattended systems.  For example, physical access of the "server room" should have an Access Control System in place to track who has access to a particular area, and logs when an individual has entered the controlled area.

Exception Form: https://security.utexas.edu/exception/

In the last field of the exception form,

University Affiliates

University affiliates are individuals who have relationships with The University of Texas at Austin outside of traditional employment. The incumbent can be paid or unpaid, and may have a university affiliate assignment in addition to other assignments at the university. They may be individuals who need access to university services, such as laboratories or parking privileges, and prior to HRMS, received these accesses through 0% appointments or through Official Visitor letters. Not all university affiliates require access to university services; designating the most appropriate level of privileges determines eligibility and access to services for all incumbents assigned to a position.

University Affiliate Types

University Affiliate Assignment Requirements

 

 

  • No labels