U-M’s network Intrusion Prevention System (IPS) now protects the recently launched MSetup network from malicious internet traffic. The IPS covers most Ann Arbor campus networks, excluding the Health System. The work was completed during the maintenance window on January 29.
MSetup allows many more wireless devices to connect to the U-M network than ever before—including smart speakers, wearables, game consoles, and other devices.
ITS intends to use IPS as an interim solution. A pair of Cisco FirePower firewalls will be installed in place of the IPS as a long-term solution in the coming months.
Internet of (vulnerable) Things
Security is a big issue for the Internet of Things (IoT). Many of the devices that can now be connected using MSetup are vulnerable to attacks as a result of:
- Weak or unchangeable passwords
- Unencrypted communications
- Insecure web interfaces that grant unauthorized access
- Inability to make secure updates
Benefits of intrusion protection
Adding protection to the network infrastructure, like IPS, is an important way to protect U-M networks from these vulnerabilities. Benefits include:
- Fewer security incidents
- Less disruption for university systems
- Privacy protection
- Multiple threat protection
- Read more IPS benefits
Previously, in September 2015, MWireless infrastructure gained IPS protection. At the time, former U-M chief information officer said:
“The network IPS is an important component of the U-M security program, and I am pleased that it is now protecting MWireless users and their devices from malicious Internet traffic, such as webpages known to be involved in phishing scams or to download malicious code. It also contributes to overall security, as most attacks start small and work their way to bigger targets.”—Don Welch in an email to U-M’s IT Security Community. Sep 21, 2015.
For assistance or questions
ITS wants to know about any issues you encounter with MSetup. Contact the ITS Service Center to report your experience or to get help.