The ANR Computer Security Project is an effort is to implement a computer security system for UCCE and REC offices that will allow remote, automatic distribution of antivirus and operating system updates and patches, let us implement and check on security policies, and perform remote diagnostic testing and vulnerability scanning. The goal is to provide additional service and security for ANR offices while allowing users to do their daily work independently and with minimal interference.

View a Short Presentation regarding the ANR Desktop Security Project

To accomplish all of this, the ANR Computer Security Project relies heavily on Microsoft's Active Directory (AD) system. The initial implementation will apply exclusively to computers using Windows and Vista operating systems.

The Internet is a dangerous place. The goal of this Project is to protect ANR users from network security threats as part of a comprehensive defense strategy. Attacks can come randomly to individual computers as viruses, Trojans, or worms. There are also random and targeted attempts to mine data. These can take the form of broadcast spyware or more deliberate attempts to gain access to databases or sensitive information.

The clean-up after a computer is infected by a malicious virus, Trojan, or worm can require significant human and monetary resources. It takes time and expertise to clean an infected computer, and even then valuable data may be lost. A security breach of sensitive data can have legal ramifications, cause problems for ANR clientele, and hurt our institution's credibility.

State law and University policy require compliance with various levels of computer and network security. This Project helps ANR meet those requirements and adds another layer to our defense strategy.

The ANR Computer Security Project will enable the Communication Services IT Support Group to do the following (so that you won't need to):

• Deploy and maintain antivirus software
• Configure automatic update processes to download and install the latest critical system and security updates for your computer's operating system
• Apply and maintain security settings to conform to IT security policies
• Provide secure access to DaFIS financial tools through a Virtual Priviate Network (VPN)
• Diagnostic testing
• Vulnerability scanning
• Shared calendaring (requires UC Davis Exchange Service)

GP Fix (exp 7/1/09)