First Year’s Actual Operational Results of Efficient Security Measure System with Automatic Isolation in TUAT

To reinforce a security measure on our campus network, we implemented a brand-new style of secure campus network system in 2017. The variety of the device in campus network is more complicated. The existence of various devices also increases the possibility of security incidents. In Tokyo University of Agriculture and Technology (TUAT), since Bring Your Own Device (BYOD) was started from 2016, the types of devices connected to our campus network is increased. Therefore, as a security measure, we designed and implemented a campus network security system based on automatic isolation. In our system, network traffic is monitored on the campus network side (e.g. core switch, edge switch), and a device considered as high security risk is automatically isolated from the campus network on the edge switch. In our system, it is possible not only to perform shutdown automatically but also to automatically perform recovery processing by end-user, and reduce operational cost. After more than a year since the operation began, we clarified the actual operation conditions of our system. In this paper, we introduce the overview of our system, and summarize the operational situation from the start of operation. This makes it possible to overview the appearance of our actual system and the situation of security incident status at the Japanese National University in the science area. By considering the results of our system, we will also help to think about security measures in university environment.