Student- and employee-owned devices, including laptop computers, gaming devices, “smart” phones, and other network-capable devices, may be connected to the Shepherd University network for access to the commodity Internet only. Non-Shepherd computers may not access internal Shepherd resources, such as shared network drives, directly. Registration of the devices with IT Services may be required in some circumstances ()e.g., for wireless connectivity) and must meet certain minimum security standards, such as wireless encryption standards (if applicable) and installation of anti-virus software, operating system updates, or a personal firewall. Some employee-owned devices, such as “smart” phones, may access internal Shepherd resources upon approval of the IT Services director on a case-by-case basis according to the device.
To augment the small size of the IT networking staff, we use a network management system. This system interrogates client devices to ensure that they meet Shepherd-defined criteria before any network traffic is routed to and from the device. This greatly reduces the probability a machine infected with malicious software or “malware” (such as spyware, Trojans, viruses, keyloggers, or rootkits) will connect to our network.
Infected machines can infect other machines, and compromise network and data security. Much data flowing on the Shepherd University network is confidential in nature (e.g., students private or personally identifiable information). Disallowing personally owned computers from the internal network helps protect that data. We expect to deploy technology that will provide secured remote access to on-campus resources from off-campus or from non-Shepherd devices in the near future.