Site Menu
Recent News
The Compensating Controls & Exceptions Form is up
Here are the Compensating Controls & Exception process submision forms for the UCSS.
October is IT Security Month
The annual OSU Information Security Day is October 9th. Events will be held this year at Pfahl Hall features some outstanding industry speakers. You can find more information on the OSU IT Security Day page.
Security Boot Camp outline up for comment
The CIO Security Group is developing an "Information Security Boot Camp" program that will be taught later this year. Comment on the proposed outline is encouraged during development. Check out the basic outline here
Check the Blackhole List
To see the current Blackhole listing click here
Report an Incident
To report a security breach or other security incident send an email to Security@osu.edu
Approved Compensating Controls and Exceptions for the University Computer Security Standards
Here you will find a list, organized by UCSS standard, of the devices that have been granted an approved compensating control or exception. Information on this page is left purposefully vague so as to protect key information about the university's infrastructure and help prevent exploitation of these controls and exceptions.
If you see a device listed below that you would like to request a control for, we encourage you to post a question to the distcons and/or DNA-private mailing lists and ask for help from the unit(s) who requested the control. The CIO Security group is not at liberty to disclose information about individual controls as we are not intimately familiar with each unit's infrastructure and cannot make judgments as to what might or might not compromise a unit's security. Individual units must make the decisions as to whether or not they will share compensating control requests with other units.
Return to the Compensating Controls and Exceptions Request Page
Return to the University Computer Security Standards Page
Devices for the Minimum Computer Security Standard (MCSS)
Devices for the Critical Server Security Standard (CSSS)
Devices for the Web Server Security Standard (WSSS)
Devices for the Database Server Security Standard (DSSS)
Approved Compensating Control and Exceptions by Device - MCSS
|
HP Procurve Switch | Technos MPX PC | Buffalo NAS |
| Micros 9700 Point of Sale system | SonicWall Firewall Applicance | Nursing Stations |
| Keywatcher | Blackboard IP Converter | Blackboard IP Door Reader SA3000 |
| Blackboard IP Copy Reader CR3000 | Blackboard IP Vending Reader VR/MDBMP | Blackboard Activity Reader AT3000 |
| Kronos Pool Chemical Controller | Johnson Controls Network Automation Engine | Polycom VSX 5000 |
| Polycom H.323 Videoconferencing Camera | Barracuda Networks Spam Firewall | Windows 2003 RRAS Server |
| Axis Web Camera | WYSE S30 Thin-Client | KIOSK stations |
| Beowulf Cluster | Micros DVR | 3Com VOIP Phone System |
| EMC NS350 | FAS250 / F819 | Proofpoint Protection Server |
| Snap Server 2000/4000/4100/4500 | Cisco NAC | MS 2003 Exchange Servers |
| Security Group Scanning Servers | Windows Mobile PDA | HP-UX Clinical Information Server |
| Agilent 4156C | Agilent E2050 | Bosch VideoJet 8008 |
| Mac OS-X based Lab computers | Windows based Lab/classroom computers | Micros Network Camera System |
| Kronos Time Clock | Alphacom Network Intercom | Digital View Media Network TV |
| Campus Dining Menu Board | Tridium Vykon JACE-403AX | Linksys WRT55AG |
| Campus Security System | Satellite Weather Network | Battery Lab Computer Cluster |
| ERA Radar Unit |
Approved Compensating Control and Exceptions by Device - CSSS
Approved Compensating Control and Exceptions by Device - WSSS
Approved Compensating Control and Exceptions by Device - DSSS
Return to the Compensating Controls and Exceptions Request Page
Return to the University Computer Security Standards Page
