Search Google Appliance

Best Practices for Web Application Security

More than half of all successful data breaches involve web applications. Learn more about how this happens and what actions developers and project managers can take – while web applications are still in development – to reduce the number of vulnerabilities.

Graphic of Duo authentication steps
Two Factors Are Better Than One: Sign up Now for Duo Authentication

To strengthen online security, IS&T is providing access to Duo, a two-factor authentication system. It’s being used for Touchstone-enabled web applications at MIT – from Atlas and Stellar to the Roles Database and MIT Wiki Service.

Screenshot of Cognos report
Curious About Cognos? These IAP Sessions Will Bring You Up to Speed

If you create reports for your DLC, you probably use Cognos, a web-based reporting tool that accesses the Data Warehouse. Whether you’re new to this application or have some experience, IS&T's IAP sessions on Cognos can take you to the next level.

Phishing Alert: Be on the Lookout for a Payroll Scam That Targets Faculty and Staff

Be on the lookout for a payroll phishing scam that targets faculty and staff. It uses harvested credentials to alter direct deposit information.

Update on Dropbox Security Breach

Update from IS&T: Dropbox itself was not compromised and no MIT Dropbox for Business accounts were impacted. MIT Dropbox accounts are integrated with Touchstone for single sign-on; your password is never sent to Dropbox or stored in any of their systems.

October: Dedicated to Raising Cyber Security Awareness

National Cyber Security Awareness Month is designed to engage and educate the public and private sectors on the notion that cyber security is a shared responsibility. IS&T kicked off the month with a table in the Student Center and has two more events planned.

IS&T Simplifying Wireless Network Choices on Campus

If you’ve ever been confused by the variety of wireless networks at MIT, you’ll be happy to hear that selecting the right network will soon be a no-brainer. On October 27, IS&T will retire the “MIT N” and “MIT SECURE N” wireless networks, leaving MIT Secure as the wireless network of choice.

Transitioning to SSL Certificates Signed with SHA-2

Are you an MIT community member who operates a secure (HTTPS) website with Secure Socket Layer (SSL) server certificates from the MIT IS&T / InCommon SSL Certificate Authority? Find out about upcoming changes due to an industry-wide transition from the SHA-1 signing algorithm to the more secure SHA-2.

Octocat image
Good with GitHub? Enterprise Version Now Available to the MIT Community

As with Dropbox and Crashplan, IS&T is rolling out an enterprise version of GitHub to the community free of charge, giving users access to a rich set of web-based tools. Developers at MIT will now find it easier to collaborate, exchange ideas, share snippets of code, and track open issues.

Eduroam Provides Secure WiFi Access, Here and There

MIT community members can now use their existing credentials to connect to eduroam, a secure, worldwide WiFi service that provides members with access to networks at thousands of educational and research institutions in the U.S. and over 50 countries.