Skip to main content
Section Content

Information Security at the University of Hawai‘i

Annual Server Registration and Personal Information Survey

Server Registration

As required by University Executive Policy E2.215 (https://www.hawaii.edu/policy/e2.215), ALL servers operating on the University network must be registered and regularly scanned for sensitive information and vulnerabilities.

Updates to the University Executive Policy E2.215 have been made and a new UH Data Classification and Technical Guidance Policy (EP2.214, https://www.hawaii.edu/policy/e2.214) has been created to organize UH Institutional Data into data classification categories based on different levels of security risks and penalties that may result from the inadvertent disclosure of the data.

The University's OpenVAS web vulnerability scanner has been updated with a new interface and new links. Please visit https://hawaii.edu/askus/1772 for details on how to use the new interface.

SERVER REGISTRATION FOR THIS YEAR MUST BE COMPLETED BY SEPTEMBER 28, 2018.

Links for Completing Server Registrations:

Personal Information Survey

As required by State law HRS 487N-7 (https://www.capitol.hawaii.gov/hrscurrent/Vol11_Ch0476-0490/HRS0487N/HRS_0487N-0007.htm), any Personal Information System (regardless if it is paper-based or electronic) needs to be reported. For the University of Hawai‘i, that information needs to be recorded in a Personal Information Survey.

Updates to the University Executive Policy E2.215 have been made and a new UH Data Classification and Technical Guidance Policy (EP2.214, https://www.hawaii.edu/policy/e2.214) has been created to organize UH Institutional Data into data classification categories based on different levels of security risks and penalties that may result from the inadvertent disclosure of the data.

The Information Survey website has not been updated to reflect these new policies. Please report all systems that store "regulated" data under the new policy (EP2.2.14) until the appropriate changes are made to the Personal Information Survey website in 2019.

ALL PERSONAL INFORMATION SURVEYS MUST BE UPDATED BY SEPTEMBER 28, 2018.

Links for Completing Personal Information Surveys:


Do You Have a Personal Backup Plan?

The only way to protect yourself against valuable data loss is through regular backups. Ideally, important files should be backed up at minimum once a week, or every day, depending on how critical they are to you. This can be done manually, automatically, or using combination of the two methods.

When it comes to backups, just like security, you want to find a balance of being thorough but efficient. We have all heard disastrous stories of losing homework due to the blue screen of death or a misplaced cell phone that tragically stored the only copy of family photos. In addition, you could fall victim to ransomware or another malicious attack that leaves you with no choice but to reimage your computer. It never hurts to consider your backup strategy and come up with a plan that leaves you feeling safe and secure. Here are some tips to get you started.

  • Data loss happens all the time, but it is entirely preventable. You just need to create a backup plan.
  • Your critical data should never reside in a single place.
  • The ideal backup strategy will typically include both an online backup service (e.g., Dropbox, Box, OneDrive, Google Drive, CrashPlan, iCloud) and an offline backup utility (e.g., external hard drives, flash drives) to ensure your data is secure no matter what happens to your mobile device or computer.
  • Running consistent, automatic backups is a straightforward process that will take little time to set up and will require even less to maintain.
  • Backups can be configured to run in real time when files on your computer are changed.
  • Routinely test your backup solution to ensure you can recover your data in the event that you do actually need to restore from a backup.
Image of two mountain climbers sleeping on a hanging platform off the edge of a cliff saying 'Sleepwalking is the only thing you should be worried about. #LockDownURlogin' Lock Down Your Login Logo, lockdownyourlogin.org

Source: STOP. THINK. CONNECT. sleepwalking meme

US-CERT Vulnerability Alerts

The United States Computer Emergency Readiness Team (US-CERT) provides the latest updates about current threats and vulnerabilities. You can subscribe to their feed to get the latest updates about ongoing vulnerabilities and other cyber threats.

Visit https://www.us-cert.gov/ to learn more.


Don't Fall for Phishing:
Stop. Examine. Ask. Report.
S.E.A.R. the Phish

SEAR the Phish Logo

SEAR the Phish