Category Archives: Security

Upcoming Changes to myOswego

Look for some login changes coming to myOswego and its associated applications in the next few weeks.

CTS has been working on streamlining authentication into multiple systems that use the same username and password, primarily your Laker NetID.  Two of those systems are myOswego and DegreeWorks.  In the next few weeks, a new technology called Single Sign-On will be implemented to accomplish this.  The myOswego webpage will be changed to something similar to the following.

 

Existing students, faculty and staff will use the “Single Sign On” button to login.

What is Single Sign-on (SSO)?  It is a technology that allows services to share authentication credentials without having the user login to each service.   In the context of myOswego, once you login to myOswego, you will also be logged into Degreeworks.  You will not have to enter your Laker NetID again to access Degreeworks.  However, this also means you must be vigilant about logging out of all systems using SSO.  If you forget to log out, you leave yourself signed into both systems.

CTS will be expanding single sign-on to other services in the future.

 

Did You Miss the Cyber Security Awareness Training?

During October and November 2012, CTS hired GreyCastle Security to provide Cyber Security Awareness trainings to all SUNY Oswego faculty, staff and students.

Tyler Wrightson from GreyCastle Security conducted all sessions in a very knowledgeable and engaging style.  He covered topics such as using strong passwords, social engineering practices used to obtain usernames and passwords, social media security (such as Facebook), mobile device security, shoulder surfing, physical security and spam and phishing scams.  All principles taught could be applied to both work and home situations.

Some anonymous feedback from attendees of the sessions had this to say about Tyler and the training:

“It was very interesting and I learned a little more about my internet security at work as well as at home.  I appreciate that I was able to ask questions related to my home use of the internet, not just my business use.”

“He was very interesting and gave excellent info without being too technical.”

“The Castle speaker was so knowledgeable so had great examples of the problems he presented.”

If you missed the training, there are still a couple of options available to you.

  • Tyler will be back on campus on January 16th offering two more sessions during Winter BreakOut.  They are:
  • GreyCastle allowed CTS to record a session and make it available to campus members only.  We have the recording available from the CTS Security page.  Note, you will need to sign in with your Laker NetID to access it.  You’ll be prompted to do so.

CTS will be following-up the Security Awareness Training with our own session on learning more about the differences between spam and phishing emails and how to accurately report them in Gmail.  This will also be offered during Winter BreakOut: