Additional Technology Security Measures

Multi-factor authentication to be required for access to the Duke@Work self-service website effective July 1, 2016

We have made important strides in strengthening the security of Duke’s IT systems during the last few years, but threats remain.  This year, we are introducing several additional measures to protect Duke’s systems, sensitive data, and the accounts of Duke faculty, staff and students.  

Multi-factor authentication

Beginning July 1, 2016, we will require the use of multi-factor authentication (Net ID plus a second form of electronic identification) to access the Duke@Work self-service portal.  More than 30,000 faculty, staff and students are already registered for multi-factor authentication, and requiring its use across the university will give us one of the more effective protections against a system breach.  Refer to the IT Security Office website or Duke Today regarding registration.

Encrypted Wireless Network

Duke has introduced a new wireless network (“Dukeblue”) that provides encrypted (scrambled) transmission of data.  With this network, information cannot be intercepted while it is in transit between personal devices and Duke’s main network.  Encrypted wireless is a more secure way to use the Internet, email or share personal and Duke data electronically.

Establishing an initial connection to the Dukeblue secure wireless network will require a Duke NetID and password, and depending on the device and system, may involve additional initial steps.  Once the connection is established, devices will connect to it automatically on campus.  Duke’s IT Security Office will be working with schools and departments to assist in the transition to the new network.

Device Management

In the coming months, Duke’s IT Security Office will be working with IT units in the schools and departments to configure computers and mobile devices to use locally-operated security management systems.  We need to ensure that appropriate and timely patches, software updates and virus protections are in place to protect personal and institutional data.  Be assured, and help us assure those in your units, that this will involve monitoring of software only, and in no way involve monitoring of content.  Devices which are not routinely maintained with software updates expose us to substantial risk of external attack, and may be removed from the Duke network if they are not promptly brought into compliance.

Expansion of Eduroam 

Finally, the wireless network “eduroam” will be expanded to provide high-quality and secure online access for use at partner universities across the country, and abroad.  Duke users should configure their computers for eduroam access before they leave campus, and they can then easily and securely access the encrypted wireless network at participating universities (listed on the eduroam website). 

These initiatives will enhance our efforts to protect Duke’s systems and sensitive data, as well as the personal data of Duke faculty, staff and students.