Common Systems Group (CSG)

 

September 27, 2005

Meeting Summary

 

 

CSG Attendees: Paul Craft, Jim Davis, Steve Duim, Jason Frand, Mats Granlund (for Carol King), Bill Jepson, Robert Konishi, Max Kopelevich, Michelle Lew, Sean Pine, Nick Reddingius, Vincent Riggs (for Tom Phelan), Terry Ryan, Mike Schilling, Eric Splaver, John Talbert (for Kathleen O’Kane), Kent Wada, Esther Woo-Benjamin, Don Worth

 

Guests: Jeff Baughan (CTS/BOL), Karen Ribback (OIT), David Snow (Medicine), Tom Trappler (OIT)

 

 

Agenda

 

1)   BOL Enhancements

 

The following are some BOL enhancements made over the summer:

·       Upgraded Webmail software, featuring enhancements and bug fixes, including many configurable options and ability to import/export address books, calendar, and tasks list between most commonly-used programs

·       Self-service password resets and username lookups available online

·       Web hosting service improvements, including increased quota to 15MB

·       Wireless network improvements, including coverage expansion, improved wireless authentication using the campus portal, and guest access tool which allows user with a UID to request short term guest accounts for wireless users

 

Additionally, BOL will be distributing anti-spyware software to the campus in the coming weeks as a result of the new University site license for Webroot’s Spy Sweeper.

 

BOL is also providing lifetime email forwarding for alumni. Upon graduation, a student can keep his/her @ucla.edu email address indefinitely and have all email forwarded to his/her preferred email address.

 

2)   Applied Security Task Force Update

 

A subgroup met to review the 13 applications. Two variables were considered: 1) interest and enthusiasm as represented by the “paragraph of interest” that each submitted, and 2) skills and knowledge as represented by the resume. The subgroup agreed that the first year required a group of people who could “hit the ground running” so the scoring was weighted in favor of skills and knowledge. Seven candidates stood out for most of the subgroup, so those are the ones being recommended. As a final step, Marsha Smith will be contacting each of the finalist’s supervisors to ensure there is understanding of the goals of the Task Force and agreement on the commitment required. A six person team will be selected out of the seven. The Task Force will start meeting the first or second week of October.

 

The CSG agreed on the seven finalists and recommended expanding the Applied Task Force membership to include all seven.

 

3)   Minimum Security Standards

 

The policy has already been endorsed but is going through final edits, with completion expected in January 2006. In practice, the campus is being asked to adhere to the policy, beginning October 1, 2005. 

 

4)   UCOP Protected Data Security

 

In response to pressure from the state legislature for higher education institutions to be more proactive, a UC leadership group was convened in May to recommend strategies to ensure effective stewardship of personal and restricted information accessed and used in the University’s academic, business and healthcare operations. In August, this Information Security Workgroup issued a report with recommended strategies to pursue at the system-wide, campus, unit, and individual levels for achieving greater degrees of information security. Some recommendations that stand out as potentially having technical implications are related to certification, risk assessment, and data encryption. For addressing these issues, UCLA already has a broad framework in place, an incident response plan and minimum security standards.

 

The CSG suggested that UCLA look at the following areas: providing guidelines on best practices, establishing encryption standards and providing tools, providing guidelines for establishing security plans at the unit level, and providing guidelines on how long to keep web logs.

 

5)   Issues Discussion brought by Jason Frand

 

On behalf of the Campus Computing Council (CCC), Jason Frand brought three topics for CSG recommendation on how to proceed to get more information.

 

a.      Technology Infrastructure Fee (TIF)

The Group had a list of implementation as well policy and governance questions regarding the TIF.

 

Actions: Mike Schilling requested a comprehensive list of questions and agreed to prepare answers for the next CSG meeting.

 

b.      Low Voltage Wiring

The Group had questions about policy and requirements.

 

Action: Mike Schilling agreed to return to the next CSG meeting with more clarity on the topic.

 

c.       Persistent Email

The Group had questions about the definition of ‘Official Campus Business’ and how this relates to units that provide local non-persistent email accounts. There was agreement that these are implementation issues that need to be clarified.

 

Action: Jim Davis agreed to formation of a sub group to help clarify the issues as part of implementation and transition planning.

 

Meeting Schedule for Remainder of 2005:

 

Tuesday	October 25	2:00 – 4:00 p.m.	2121 Murphy
Tuesday	November 22	2:00 – 4:00 p.m.	2121 Murphy
Tuesday	December 20	2:00 – 4:00 p.m.	2121 Murphy