UAB IT and HSIS have successfully collaborated on a standard data classification requirement that will streamline protection of UAB institutional data.

Data classification supports the university's and the hospital's efforts to comply with regulations and contracts across the institution.

The proposed classication model categorizes UAB data into one of three confidentiality levels: Public, Sensitive or Restricted/PHI (personal health information). Data protection requirements are derived from the classification.

The Data Classification Requirement is scheduled for implementation in mid-2017. More information and training for the new data classification system will be forthcoming to assist the UAB community with implementation of the new requirement.

To read the proposed standard, click here.
As we integrate more of our lives into social networking sites, keep these dos and don’ts in mind when sharing online.

Dos

  • Keep your personal information private. Assess whether it’s necessary to share sensitive information such as your birthday, mailing address, phone number, e-mail, mother’s maiden name, sexual orientation, or Social Security number.
  • Be cautious about accepting requests to connect online. Connect only to people you trust who will not misuse the information you post.
  • Check the location settings on photos and videos you post to social networking sites.
  • Avoid joining online groups where you don’t know all the members or what they stand for.
  • Use passphrases to protect your social media accounts. A passphrase is a set of words that create a phrase that is 20 to 30 characters long.


Don’ts

  • Don’t share too much information that could be used to complete a profile about you. For example, share your birthday, but not the year you were born. Or share your hometown, but not the address where you live.
  • Don’t share any information that is being used for verification purposes such as your mother’s maiden name, the name of your first pet, or the street where first lived. Consider making up alternate answers to those questions that only you would know.
  • Don’t post when you are traveling or going out of town on vacation. It’s an open invitation letting criminals know that you are in a different location and that your home is vacant.
  • Don’t post photos of inappropriate or illegal activities.
  • Don’t click on attachments or links without checking the source.
  • Don’t “check in” to every place you visit. That information could be used to identify you in a vulnerable location.
  • Don’t use weak passwords, and never share your passwords!
To better protect the campus network and sensitive data, UAB IT is updating and modernizing its campus edge protections to limit the impact of attempted intrusions by external attackers.

By the end of December, UAB will modify its border firewall posture to what is known as "default-deny," a best practice for enterprise environments. What this means is that only approved network services will be allowed; everything else will be denied to help protect the network and UAB employees' and students' data. 

UAB IT has been working with campus IT professionals behind the scenes for months to ensure a seamless transition.

Campus IT professionals can request a firewall rule change exception through a new form in the IT Service Portal.  

For more information about the change, please review our frequently asked questions.

The upcoming change does not impact any servers or services located within the UAB Health System network, as HSIS utilizes the default-deny firewall policy for their network segment.

All firewall requests from VLAN administrators should be entered by Dec. 29 if at all possible. 

Any VLAN administrators who have completed their requests and are ready to be flipped to a default-deny state can request that ahead of Dec. 29. UAB IT will schedule flipping to this default-deny state and troubleshoot any issues encountered with the campus IT staff. 

If you have any specific technical questions, feel free to contact the Enterprise Information Security staff at 975-0842 or via email at datasecurity@uab.edu.
TechConnect holiday

Need a new laptop for your student? 

TechConnect, UAB’s student-centered tech store powered by UAB IT, has great deals just in time for the holidays. 

Starting Dec. 1, customers can receive a free $150 Dell eGift card with the purchase of a Dell PC valued at $699 or more. The eGift card deal lasts until Jan. 31. 

All of the Dell laptops sold at TechConnect qualify for the eGift card and also include on-campus service and a loaner program (exclusive to the TechConnect Notebook program) if something goes wrong with your laptop and repairs are needed. 

For more information, visit TechConnect in the Hill Student Center or online at uab.edu/techconnect.
Page 1 of 20