CIT implemented NetReg in the summer of 2004.
When you plug a new device into the network, that device will be placed into a very restricted portion of the network. Firing up a browser will take you automatically to a web page where you can "register" your device by entering your NetworkID and password.
This service is another tool CIT can use to help monitor and manage unpatched systems which are vulnerable to attack, and systems that have already been compromised and are actively attacking systems nearby.
There are many versions of NetReg: one good site for general information is the NetReg site at Sourceforge http://netreg.sourceforge.net/ . The original version of NetReg is Southwestern University's, available at http://www.netreg.org/.
Currently, registrations last 150 days. This is intended to be used to make sure people's computers are kept reasonably up-to-date at the cost of requiring folks to perform a short re-registration. We may "deregister" everyone occasionally if we have a significant event and need to encourage folks to apply some specific maintenance.
One of the goals of the project is to scan your system for known vulnerabilities, facilitate your applying necessary OS maintenance, and facilitate your installing current anti-virus software, all during the registration of your device. We are still investigating technologies to accomplish these "advanced" features, so we aren't sure at this point how much we will roll out in this first phase. Just being able to tie device hardware addresses to specific users will go a long way toward improving our ability to respond to compromised systems.
We do not currently plan to implement a "guest account" system. If someone who does not have a UVM NetworkID needs to use the wired network, a UVM affiliate may register the device in their name, recognizing they will be contacted if the device is compromised or violating acceptable use policies. UVM's acceptable use policy is here: http://www.uvm.edu/~uvmppg/ppg/cit/compuse.htm .
Netreg is deployed in the residence halls, as well as certain administrative subnets in Trinity. We continue to add tests for new and common vulnerabilities that appear in popular operating systems and applications. As time goes on we will add more administrative subnets.
CIT staff (and probably others at UVM) can access current technical details at our wiki.
Questions about NetReg at UVM? Write to Jim Lawson.
Last modified August 23 2005 01:52 PM
