Restricted/Limited Access Network costing vs. behavior trade-offs

Wednesday, February 3, 2016; 1:30 p.m.; RB14-225N

Attended

William Dougherty, Greg Kroll, Randy Marchany, Scot Ransbottom, Brad Tilley

Meeting Notes

  1. See RLANCostingOptionsMeetingHandouts.pdf
  2. For background information see RLAN-client-options.pdf  and http://www.cns.vt.edu/data_departmentRate.html
  3. ITSO recommends that Human Resources (HR) be added to the RLAN.
  4. Discussion about a virtual server solution for departmental access to the RLAN.
    1. Brad Sumpter the new Director for Finance Information Technology department wants to install a virtual server for connection to the RLAN for the departments he is responsible for. They have determined this is a cheaper solution to paying monthly connection fees to CNS.
    2. Estimated that 50-100 users would connect through this virtual server environment.
    3. This is similar to Marc DeBonis' original Virtual Desktop thin client solution (client option #4 in this document RLAN-client-options.pdf)
    4. Brad said that he believes this will eventually replace the current solution for the Bursar, Controller, and Financial Aid.
    5. Discussion about Virtual Desktop Infrastructure (VDI) on an enterprise level.
      1. Randy believes there are too many variable and enclaves for a single monolithic server. Randy recommends several hosted servers.
      2. William suggests we offer VDI as a service to departments but managed by central IT.
  5. Scot recommended writing a white paper on the RLAN which began in 2011 to show what has been done and the current status 5 years later and include current exposures.
  6. Need to communicate risks to eligible departments whether they are using the RLAN or not.
  7. It was suggested that Randy, as the VT Information Technology Security Officer, contact the university data trustees and discuss the security risks for departments under their purview that work with Personally Identifiable Information (PII). Action item: Randy will speak with Scott Midkiff about the possibility of Randy talking to data trustees about the RLAN, security risks, and PII data.