Universities

Education, especially universities and colleges, are entities that need specialized security systems nowadays. Why?

 

They need to balance network control with simplified network access. Securing the network while ensuring easy, automatic access to a large number of different endpoints is one of their greatest challenges.
The increasing number of devices connected to the network - both those owned by students and lecturers and those owned by the university - has a great impact on the security of the university network. According to research, one student has an average of 3 to 5 devices. This results in much greater use of wireless networks and an increased risk of potential threats.
An inadequately secured university network can be used for illegal purposes and become a target of attack itself. Universities process a lot of important data - from financial, medical, and personal to government and commercial. Therefore, they should define and implement solutions ensuring comprehensive control and dynamic network visibility, allowing for automatic response to threats.

 

Education industry challenges

  • Granting access to authorized students while ensuring a very clear separation of network and resources availability
  • Taking into consideration the increasing number of connected devices (BYOD, IoT)
  • Increased device vulnerability to malware
  • The complexity of attacks and data breach attempts by students and guests
  • Liability issues arising from illegal file sharing and downloading of copyrighted material

End devices visibility

Monitor the status of the current number of devices connected to the network, their historical activity and the physical place of connection to the network.

Access policies based on user groups

Separate the student network from the network for employees by creating appropriate user groups and using detailed access policies.

Integration with AD

Connect the NACVIEW system to the domain and allow in to login to the network with AD credentials.

Existing databases usage

Automate the process of sending and receiving access to the network thanks to the integration of the system with a database that stores information about students and university employees. Each graduating student or employee leaving the job will be automatically denied access to the network based on information from an external database.

EDUROAM

Launch the EDUROAM network in the NACVIEW system and allow users to connect to the Internet in any scientific institution in the world participating in the Eduroam project.

IP addresses identification

Use integrated NACVIEW DHCP server or forward DHCP frames to NACVIEW to see who is currently leasing a specific IP address at a particular point in the past. In the event of incorrect or prohibited operation on the network, it will be possible to identify a specific person responsible for the infringement.

Automation and integration

Automate the isolation of potentially vulnerable devices from the rest of the network. It is practically impossible for you to be able to effectively perform this action manually, so automatically sent threat messages from network devices are an essential solution.

Guest access and self-registration

Allow the guests visiting the university to register devices in the network on their own. For this purpose, the NACVIEW system has a wide range of possibilities: Captive Portal, registration via social media, temporary accounts, an agent installed on end-users devices.