Home About CSP Departments Archives Buyer's Guide Media Kit e-News Subscribe Contact


WELCOME TO CHRISTIAN SCHOOL PRODUCTS
Implementing Strong Network Security Without Breaking the Bank
By: Chris McKie

Solid network security does not happen by chance; it has to be implemented. Schools must protect their network from external threats, as well as the risk of unauthorized intrusions by users within the network. A few firewall basics are covered below to get you started in protecting your teachers, administrators, and, most importantly, children in the Christian learning environment.

1. Choose multi-function firewall vendors and resellers that understand educational environments.
A huge enterprise vendor does not understand the landscape of a small learning situation and may try to sell you features that do not apply to your needs, nor will you be able to administer the products due to the complexity. A right-sized solution will provide protection against intrusions, viruses, worms, and spyware, from both external and internal sources.

A well-designed multi-function firewall will stop offensive material being sent to the staff and kids in e-mail, also known as spam. Anti-virus software will halt incoming harmful bugs that can shut the network down or compromise its integrity. URL filtering scans for inappropriate content on Web sites that are not suited to children. Secure VPN connections for remote users will increase productivity and access valuable information when off campus. Intrusion detection blocks zero day attacks and prohibits manipulation of data within the network. All of these features are government compliant with the Child Internet Protection Act (CIPA) as well.

A multi-function firewall with spam protection, URL filtering, anti-virus filters, intrusion detection, and VPN for remote access are essential to a secure school networks. Easy-to-use interface and reporting capabilities will make the firewall administration process relatively painless. Add installation assistance from the reseller, and you will have a secure network in a snap and still remain on budget.

2. Create a set of security policies.
A well-written guideline for appropriate use of the school network is essential to enforcing the security policy, as it sets the expectations. Computer and network security policies define proper and improper behavior; they spell out what is permitted and what is denied. Firewalls, intrusion detection systems (IDS), anti-virus (AV), backup and restore strategies, locked doors, and system administration checklists are all some of the items that may be used in the security policy.

Security policies provide the blueprint for using them: the what, how, why, when, and by whom.   Schools have special requirements and government regulations to keep children safe; these must be adhered to in the policy. The key points of the security policy are below:

Computer Acceptable Use
This is a general document covering all computer use by employees and contractors, including desktop, mobile, home PCs, and servers. The school needs to determine if personal use is permitted in any circumstance, including social networking sites such as Facebook, LinkedIn, and MySpace.

Passwords
This is a description of the requirements for password protecting computer systems, the rules for choosing passwords, how often they must be changed, and how the password policy is enforced.

E-mail
This policy covers the use of e-mail sent from the school e-mail address and received at any school computer system.  One situation would be if teachers should e-mail parents or students regarding social events or just strictly classroom-related information.

Internet
This is a specification of what browsers may be used, how they should be configured, and any restrictions on which sites employees can visit. Online shopping, pornography, and other sites should be evaluated for acceptable use.

Remote Access
This is a policy stating who can access what information from which locations. Teachers posting grades from home and administration updates on school events or closures would be examples of permissible remote access uses.

Wireless Access
This is a specification stating how wireless access will be managed on your network; how access points will be plugged in, secured, and maintained; who is allowed to use them; and what devices are approved.

Incident Response Plan
No policy is complete until it addresses the process of handling a failure. Who handles the crisis and when the police, FBI, or other authorities should be called?

Following these simple steps will give you a great shot at producing a brief, usable, and, most importantly, understandable policy document in a reasonable amount of time. 

3.  Get parents involved.
Sharing the school’s policies and actions to protect students with the parents is a win-win scenario. Parents can be the best allies in reinforcing the proper use of the school computers and what constitutes Web sites that are off limits. A statement from the parents to their child on expectations and consequences for violating the school policies is very effective. If the child is clear on what is allowed, there will be no issue with identifying inappropriate content, as the child will bring it to an adult’s attention in the library or classroom situation. The responsiveness from the school staff will put parents at ease and encourage their continued support in the security efforts.

By following these suggestions, getting a handle on security problems and preventing unauthorized intrusions, whether from outside or inside the network, should be quick and easy.

Chris McKie is director of public relations and industry compliance at WatchGuard Technologies, www.watchguard.com.


Voice Broadcasting







©Copyright 2012 Christian School Products

For Religious Products, Goods And Resources, Visit The Religious Product News Website
Christian School Products Archives
2012 | 2011 | 2010 | 2009 | 2008 | 2007 | 2006 | 2005
Christian School Products