The independent student newspaper of Northeastern University

The Huntington News
Editor's Pick
The independent student newspaper of Northeastern University

The Huntington News
The independent student newspaper of Northeastern University

The Huntington News
Recent Stories
Employees work on the rink floor of Matthews Arena. Matthews Arena opened for the first time in 1910 for an ice carnival, and is now the worlds oldest artificial ice sheet. Photo courtesy Northeastern University Archives and Special Collections.
Where it all began: A look back at Matthews Arena as Bruins reach centennial season
May 9, 2024
An American flag waves from the exterior of Matthews Arena. Concerns about the arenas structural stability have risen in recent years.
‘Reaching the end of its useful life’: As historic Matthews Arena faces foundational issues, Northeastern weighs new arena
May 8, 2024
Students walk in what is now Krentzman Quad in 1965 with signs protesting the Vietnam War. By 1968, the nationwide Vietnam War resistance movement had reached Northeastern. Photo courtesy Northeastern University Archives and Special Collections.
‘It was a thrilling time to be a college student’: Amid pro-Palestine protests, alumni reflect on activism during Vietnam War
May 8, 2024
Retro Review: ‘Pride and Prejudice’ (2005) is beloved, celebrated for a reason
Retro Review: ‘Pride and Prejudice’ (2005) is beloved, celebrated for a reason
May 8, 2024
GET OUR WEEKLY NEWSLETTER:



Advertisement




Got an idea? A concern? A problem? Let The Huntington News know:

InfoCommons safeguarded

February 25, 2003

By Patrick Zummo

A former Boston College student was arraigned in federal court Tuesday for allegedly installing illegal software on more than 100 computers and using these programs to obtain personal information on students, faculty and staff.

The technology utilized by the BC student is known as “key logging,” or keystroke recording, something that, until recently, could be easily done at NU. A program is installed on a computer and runs in the background, recording everything that is typed into that machine. The key logging program saves the information to a text file that can be opened and read using Microsoft Word or simpler programs, such and TextEdit or Notepad. More complex key logging programs are even capable of automatically saving this text file, or log and sending it anywhere in the world as an attachment to an e-mail.

The most advanced versions of this technology may be used in the corporate environment to monitor workers and assure that they are being productive and not using company resources to “chat” with people, conduct personal e-mail correspondance, or perhaps spend their days playing online games. Such software packages may cost thousands of dollars.

However, greatly simplified key logging programs are easily available on the Internet for free. They are small files and download quickly. Most even come with instructions on how to set them up. According to the source that conducted an experiment for The News, key logging software can be installed, configured and actively recording in as little as four minutes.

Sensitive information, such as e-mail and instant messenger passwords, school registration records and bank account information, may be accessed by users of the InfoComons – the key logging software can capture it all.

Upon hearing about the incident at BC, a student source came to The News and expressed the concern that the personal information of Northeastern University’s faculty, staff and student body may be vulnerable to a similar computer assault. The source conducted an experiment to see how vulnerable NU really is.

On average, as many as 1,600 people swipe into the InfoCommons on a given day, according to Pam Erksine, director of Information Services Customer Service.

To provide evidence that there is a real, significant threat to the security of the users of the InfoCommons, our source installed key loggers on four different machines – two Windows-based PCs and two Apple iMacs. After a two-week period of lying quietly in the background of these machines collecting data, a combined total of more than 200 pages of logged text was compiled, according to the source. This information was collected to prove that with very little effort, the false sense of security, presumably enjoyed by the patrons of the InfoCommons, could be exploited. This “evidence” was then destroyed.

Melissa Yurasits, a freshman communications major, is uneasy about the potential breach of her security.

“I feel that the school should be advanced enough to prevent something like that from happening. The InfoCommons should be safe. My information should be protected,” Yurasits said.

The Office of Information Technology at NU maintains hundreds of computers around campus. The source says that after further experiments, it was found that the computers designated as “computer services kiosks” located in such places as the Curry Student Center, Ryder and Shillman Halls are impervious to these types of invasions. The machines are securely set up and can only access Northeastern Web pages. A user cannot download files (key loggers), and there is no available access to disk drives so loggers cannot be uploaded from a disk.

Vice President of Information Services Robert Weir acknowledges that the possibility of using key logging software exists. Because The News has presented this issue and speculated on its effects on the university community, there has been a great deal of effort concentrated on addressing the problem.

“One of the challenges we have in an academic environment is having to balance security and openness. Once you say that, we end up welcoming the good with the bad,” Weir said.

According to Weir, in the past, there have been searches conducted for key logger software, but the program used has become outdated and ineffective. Also, all programs and system files are reinstalled on a weekly basis.

As of Tuesday night, new measures were being employed to help maintain a safe, constructive computing experience. For example, there will be an increase in the frequency of the reinstallation of the the programs and system files.

“We are not going to ‘lock down’ the computers, however, we will limit exposure in a couple of different ways,” Weir said. “We have acquired much more sophisticated software that will scan for key loggers as well as other ‘hostile code.'”

If a student, faculty, or staff member at Northeastern uses key loggers in the InfoCommons or other lopcations on campus, they will be in direct violation of the Appropriate Use Policy as well as several federal laws.

The Appropriate Use Policy prohibits the use of Northeastern University’s computer systems to “capture, decipher or record user IDs and/or passwords,” as well as “intercept electronic communications not intended for the recipient.”

Malicious use of key logging software is also a potential violation of state and federal laws. Massachusetts General Laws Chapter 266, Subsections 33(a) and 120(f) Chapter 266 imposes sanctions for gaining unauthorized access to a database or computer system, as well as several other actions. The United States Code, Title 18, Computer Fraud and Abuse Act, involves knowingly accessing a computer without authorization or in excess of authorized access, knowingly causing damage to protected computers, or trafficking in password information.

“Everyone using computers should be aware of the assets that they’re transacting,” said Glenn C. Hill, IT security manager. “Have awareness of the information that you’re managing. Also, changing your passwords frequently is one of the most effective things you can do to protect the safety of your data assets.”

Sophomore business major Kyle McCrann says of IT’s efforts, “It’s good to know that they are looking out for our best interests.”

In the past, a key logger may have been able to actively record for as long as one week, but renewed efforts by the Office of Information Services has cut that window down to, at most, two days. This, combined with users regularly changing their passwords, should help keep our university community secure on the information superhighway.
More to Discover
More in Campus
Students walk in what is now Krentzman Quad in 1965 with signs protesting the Vietnam War. By 1968, the nationwide Vietnam War resistance movement had reached Northeastern. Photo courtesy Northeastern University Archives and Special Collections.
‘It was a thrilling time to be a college student’: Amid pro-Palestine protests, alumni reflect on activism during Vietnam War
The class of 2024 watch as fireworks explode over Fenway Park during the undergraduate commencement ceremony May 5. Many members of the graduating class started college during the COVID-19 lockdown, a theme mentioned in many speakers speeches.
‘You will shape the 21st century’: Class of 2024 celebrates commencement at Fenway Park
One week later: scenes from the Centennial Common encampment
One week later: scenes from the Centennial Common encampment
Kyler Shinkle-Stolar (center) stands linking arms with Sahra Ahmed (left) and August Escandon, two student protesters who were arrested for their involvement in the Centennial Common encampment. Shinkle-Stolar’s trespassing charges were dismissed during an arraignment April 29 at Boston Municipal Court in Roxbury.
‘The university is afraid of its students’: First arrested protester arraigned, arrested Northeastern student protesters hold press conference
A No Trespassing sign hangs from a a barricade that blocked off Centennial Common following the clearing of the pro-Palestine encampment April 27. JAG expressed gratefulness to university leadership and the NUPD for ending the encampment in a statement emailed to the News.
Jewish Affinity Group commends Northeastern administration for clearing pro-Palestinian encampment
Police officers dismantle the pro-Palestine encampment on Centennial Common April 27. A coalition of over 100 Northeastern student organizations signed on to a statement addressed to campus administration condemning the university’s response to the encampment.
Student organization coalition condemns university’s handling of encampment

The Huntington News

The independent student newspaper of Northeastern University
© 2024 The Huntington News. All rights reserved. • FLEX Pro WordPress Theme by SNOLog in