Student- and employee-owned devices, including laptop computers,
gaming devices, “smart” phones, and other network-capable devices, may be
connected to the Shepherd University network for access to the commodity
Internet only. Non-Shepherd computers may not access internal Shepherd
resources, such as shared network drives, directly. Registration of the
devices with IT Services may be required in some circumstances
(e.g., for wireless connectivity) and must meet certain minimum
security standards, such as wireless encryption standards (if applicable)
and installation of anti-virus software, operating system updates, or a
personal firewall. Some employee-owned devices, such as “smart” phones,
may access internal Shepherd resources upon approval of the IT Services
director on a case-by-case basis according to the device.
To augment the small size of the IT
networking staff, we use a network management system. This system
interrogates client devices to ensure that they meet Shepherd-defined
criteria before any network traffic is routed to and from the device.
This greatly reduces the probability that a machine infected with
malicious software or “malware” (such as spyware, Trojans, viruses,
keyloggers, or rootkits) will get on our network.
Infected machines can infect other machines, and compromise network
and data security. Much data flowing on the Shepherd University network
is confidential in nature (e.g., students’ private or personally
identifiable information). Disallowing personally owned computers
from the internal network helps protect that data. We expect to deploy
technology that will provide secured remote access to on-campus resources
from off-campus or from non-Shepherd devices in the near future.