Desktop security in an academic environment...: how to herd cats successfully

Abstract

This paper describes a successful methodology for achieving more secure computing in an Academic Environment where getting the disparate client populations to accept any desktop computer standards can often seem like herding (or training) cats. In a highly distributed, highly decentralized computing environment such as the George Washington University, it is exceedingly difficult to ensure compliance with desktop security measures. This is true whether they are the requisite and almost constant patches or the use of properly configured and updated antivirus and firewall software. Through the use of volume purchasing power, quality service delivery, University wide collaboration and targeted incentives (both tangible and intangible) GWU has moved from knowing very little about the patch and virus/firewall state of its 6000+ desktop computers to being able to remediate vulnerabilities across the enterprise and determine the status of that remediation in realtime.