Identity Finder

From CVL Wiki

(Difference between revisions)
Jump to: navigation, search
 
(45 intermediate revisions by 2 users not shown)
Line 1: Line 1:
Protecting sensitive information is important to Virginia Tech and ECE. Virginia Tech’s [http://www.it.vt.edu/publications/pdf/3_PIIStandardFinal13June-signed.pdf Standard for Storing and Transmitting Personally Identifying Information] defines 7 data elements that must be protected with encryption when kept on your computer.
+
*Protecting sensitive information is important to Virginia Tech and ECE. Virginia Tech’s [http://www.it.vt.edu/publications/pdf/3_PIIStandardFinal13June-signed.pdf Standard for Storing and Transmitting Personally Identifying Information] defines 7 data elements that must be protected with encryption when kept on your computer.
  
*Social security number  
+
::*Social security number  
*Bank account numbers
+
::*Bank account numbers
*Driver’s license numbers
+
::*Driver’s license numbers
*Credit card numbers
+
::*Credit card numbers
*Debit card numbers
+
::*Debit card numbers
*Passport numbers
+
::*Passport numbers
*Date of Birth in the same document as first and last name
+
::*Date of Birth in the same document as first and last name
  
  
Finding these data elements can be challenging.  To help find this sensitive information, Virginia Tech has purchased a site license for [http://www.security.vt.edu/idf/index.html Identity Finder]. '''Identity Finder''' is commercial software that searches for sensitive data such as social security numbers, credit card numbers, and a variety of other data elements.  It is a powerful tool that faculty and staff can use to find sensitive data on their Virginia Tech owned machines and storage. For more information on the VT Policies for securely storing and using sensitive data, please see the following:
+
*Finding these data elements can be challenging.  To help find this sensitive information, Virginia Tech has purchased a site license for [http://www.security.vt.edu/idf/index.html Identity Finder]. Identity Finder is commercial software that searches for sensitive data such as social security numbers, credit card numbers, and a variety of other data elements.  It is a powerful tool that faculty and staff can use to find sensitive data on their Virginia Tech owned machines and storage. For more information on the VT Policies for securely storing and using sensitive data, please see the following:
*[http://www.it.vt.edu/publications/pdf/3_PIIStandardFinal13June-signed.pdf VT Policy for Standard for Storing and Transmitting Personally Identifying Information]
+
::*http://www.security.vt.edu/sensitiveinfo.html
*[http://www.computing.vt.edu/administrative_systems/banner/security%20standards_5July05.pdf VT Security Standards for Social Security Numbers]
+
::*[http://www.it.vt.edu/publications/pdf/3_PIIStandardFinal13June-signed.pdf VT Policy for Standard for Storing and Transmitting Personally Identifying Information]
 +
::*[http://www.computing.vt.edu/administrative_systems/banner/security%20standards_5July05.pdf VT Security Standards for Social Security Numbers]
  
  
The Bradley Department of Computer and Electrical Engineering encourages using '''Identity Finder''' to find any sensitive information on your computer(s). When this information is found, we recommend either removing it securely or by encrypting the data using using [http://www.truecrypt.org/ TrueCrypt] and the [http://www.pki.vt.edu/pdc/index.html VT eToken]
+
*The Bradley Department of Computer and Electrical Engineering encourages using '''Identity Finder''' to find any sensitive information on your computers. When this information is found, you must either securely removing the files or emails using the Identity Finder '''Shred''' function or by encrypting the data using using [http://www.truecrypt.org/ TrueCrypt] and the [http://www.pki.vt.edu/pdc/index.html VT eToken] (see below)
 +
 
 +
:*Please see the [http://www.security.vt.edu/idf/index.html VT Identity Finder] page for more information on using Identity Finder to scan your computers.
  
 
----
 
----
 
=Installing Identity Finder=
 
=Installing Identity Finder=
The Bradley Department of Computer and Electrical Engineering recommends registering your copy of '''Identity Finder''' with our ECE Server Console. By registering with our Console, your '''Identity Finder''' install will be centrally managed by the ECE IT team and your computer will be scanned automatically once a month.  
+
*To install a stand-alone version of Identity Finder, please see the instructions at the [http://www.security.vt.edu/idf/index.html VT Identity Finder] page.
  
If you want to install a stand-alone version of Identity Finder, please see the instructions at the [http://www.security.vt.edu/idf/index.html VT Identity Finder] page.
+
*The Bradley Department of Computer and Electrical Engineering recommends installing the ECE Identity Finder. By registering with our Server, your Identity Finder install will be centrally managed by the ECE IT team and will receive automatic updates of the client software and policies.  
  
----
+
:*Please review the ECE Policy regarding [https://computing.ece.vt.edu/software/idf/ECE_Scanning_for_Sensitive_Data.pdf Personally Identifying Information and University-Owned Computers].
  
===Install and Register Identity Finder with the ECE Server Console (Windows)===
+
 
#Open a web page to https://identity.ece.vt.edu/Services
+
----
#Click the link for your version of Windows and save the file to your computer
+
===Install Identity Finder with the ECE Server (Windows)===
#*[http://support.microsoft.com/kb/827218#WinVista7 How to check if Windows is 32-bit or 64-bit]
+
#Download ECE Identity Finder from https://computing.ece.vt.edu/software/www/index.php?software=IdentityFinder
#*See below if you are using a Macintosh
+
#Open your download folder, double click on ECE_IdentityFinder_7.msi and follow the instructions below.  
#Open the containing folder and double click the '''ClientSettings.reg''' file
+
#*'''Note''': Firefox appends a .txt to the file, you need to rename the file to remove the .txt
+
#Accept the prompts to edit the registry
+
#Download Identity Finder from http://network.software.vt.edu
+
#Install Identity Finder
+
 
#*[http://www.security.vt.edu/idf/windows_install.html Windows Install Instructions]
 
#*[http://www.security.vt.edu/idf/windows_install.html Windows Install Instructions]
#*[http://www.security.vt.edu/idf/mac_install.html Macintosh Install Instructions]
+
#You may now start Identity Finder and [http://security.vt.edu/idf/windows_use.html run as scan].
#Once Identity Finder is installed, you're done. You can scan the computer on your own, or let the ECE Server Console handle the scheduling.  
+
  
 
*'''Note''': If you have already installed Identity Finder and wish to register your copy with the ECE Server Console, please follow Steps 1-4 above and then '''restart''' the '''Identity Finder Endpoint Service'''
 
**Click '''Start''', click '''Control Panel''', double-click '''Administrative Tools''', and then double-click '''Services'''.
 
**In the Details Pane, scroll down to '''Identity Finder Endpoint Service''', right-click and select '''Start'''
 
 
----
 
----
===Install and Register Identity Finder with the ECE Server Console (Macintosh)===
 
Instructions forthcoming
 
  
 +
===Install Identity Finder with the ECE Server (Macintosh)===
 +
#Download ECE Identity Finder from https://computing.ece.vt.edu/software/www/index.php?software=IdentityFinder
 +
#Open the download folder, double click IdentityFinderMac_7.0.0.3.dmg and follow the [http://security.vt.edu/idf/mac_install.html install instructions].
 +
#You may now start Identity Finder and [http://www.security.vt.edu/idf/mac_use.html run a scan].
  
=Using TrueCrypt and VT Personal eToken to encrypt your data=
+
=Scanning your computer=
*ECE recommends using the VT Personal eToken with a [http://www.truecrypt.org/docs/?s=keyfiles keyfile] instead of a normal password. This method provides both physical security and lets you to copy the keyfile to a remote secure location for backup and recovery. The ECE IT Group strongly recommends backing up your keyfile, and offers backup services to this end.
+
After installing Identity Finder on your computer(s), please immediately scan your entire system. We recommend changing the scan location from '''My Documents''' to '''My Computer'''.
----
+
 
===Creating the TrueCrypt Volume and Keyfile===
+
Basic instructions can be found here: http://security.vt.edu/idf/windows_use.html
*Download and install [http://www.truecrypt.org/downloads TrueCrypt] and the [http://www.pki.vt.edu/pdc/ Virginia Tech eToken] software
+
 
#Open TrueCrypt
+
<p style="font-size:140%">'''While we understand that you might wish to sort through the files, time is of the essence. Malicious virus attacks can and will happen at any point. It is imperative that any files or emails containing Social Security Numbers be deleted immediately using the [http://www.identityfinder.com/Help/Client_Win/index.htm#digitally_shredding_files_with_personal_information.htm Shred] feature. If you cannot Shred the files or emails immediately, please use the [http://www.identityfinder.com/help/client_win/index.htm#securing_personal_information.htm Secure] feature to encrypt the data while you sort them for deletion or redaction.'''</p>
#Click on '''Settings''' menu -> '''Security Tokens...'''
+
 
#In the dialog box enter the following and click '''OK''':
+
If you wish to retain files or emails for record keeping (such as old grade logs) you must remove the SSN from the file. The [http://www.identityfinder.com/help/client_win/index.htm#scrubbing_or_redacting_personal_information.htm Scrub] feature can be used to remove just SSN from files, however it only works with Microsoft Office files.
#* '''Windows''': C:\Windows\system32\etpkcs11.dll
+
 
#*'''OS X''': /usr/local/lib/libeTPkcs11.dylib
+
While there should be no reason to retain any files with SSN, if you save a file or email for long term storage, these files must be encrypted. We recommend TrueCrypt for this purpose. Please see our article on using the VT eToken and [[TrueCrypt]].
#Click on '''Tools''' menu -> '''Keyfile Generator'''
+
#*'''Note''': Technically any file can be a [http://www.truecrypt.org/docs/?s=keyfiles keyfile], however we recommend creating a new one with the built-in tool
+
#Follow the instructions at the top of the window, then select '''Generate and Save Keyfile...''' and choose a easy-to-remember filename.
+
#Click '''OK''' to close the Keyfiles window
+
#Insert your VT eToken into a USB slot
+
#Click on '''Tools''' menu -> '''Manage Security Token Keyfiles...''' and enter the eToken password
+
#*'''Note''': If you are not prompted for your eToken password, please make sure that you have properly installed the [http://www.pki.vt.edu/pdc/matrix.html eToken software].
+
#Click on '''Import Keyfile to Token...'''
+
#Select the keyfile you created in step 5 and click '''Open'''
+
#Click '''OK''' twice to close out of the Security Token windows.  
+
#Click on '''Settings''' menu -> '''Default Keyfiles...'''
+
#Click on '''Add Token Files...'''
+
#Select your eToken name and click '''OK''' twice to close the windows.
+
#Read the prompt and click '''Yes'''
+
#Click on '''Create Volume''' to start the Volume Creation Wizard
+
#Select '''Create an encrypted file container''' and click '''Next'''
+
#Select '''Standard TrueCrypt volume''' and click '''Next'''
+
#Click '''Select File...''', choose a filename and location for your TrueCrypt volume and click '''Next'''
+
#*'''IMPORTANT''': This file is the encrypted "folder" where you will be putting your sensitive data, remember where you save it!!
+
#Select '''AES''' in the drop-down menu and click '''Next'''
+
#Choose a volume size appropriate for your files. This is a static volume size, you will need to make a new TrueCrypt volume if you run out of room for your files.  
+
#Leave the password boxes clear, check '''Use keyfiles''' and click on '''Keyfiles...'''
+
#Select your eToken name and click '''OK''',
+
#Click '''Next'''
+
#Enter your eToken password
+
#Keep the default Filesystem options (FAT, Default, uncheck Dynamic) and move your mouse as randomly as possible for a brief time before clicking '''Format'''
+
#Click '''OK''', then '''Next''', then '''Cancel''' to close the Volume Creation Wizard
+
#Click '''Settings''' menu -> '''Preferences'''
+
#Under the Auto-Dismount section:
+
#*Check "User logs off" (default)
+
#*Check "Screen saver is launched"
+
#*Check "Auto-dismount volume after no data has been read/written to it for ____ minutes" (Recommended 25 minutes)
+
#*Check "Force auto-dismount even if volume contains open files or directories" (default)
+
#Click '''OK''' to close the preference window
+
#See the next section for instructions on mounting the TrueCrypt Volume you have just created
+
 
----
 
----
===Mounting your TrueCrypt Volume===
+
Please contact John Harris or Branden McKagen for questions or concerns.
#Open TrueCrypt
+
#Insert your VT eToken into a USB slot
+
#Select a drive letter in the main window
+
#In the "Volume" section, click on '''Select File...'
+
#Select the TrueCrypt Volume file you created in the section above and click '''Open'''
+
#Click on '''Mount'''
+
#Enter your eToken password and click '''OK'''
+
#Your TrueCrypt Volume will open in a new Windows Explorer window, and you can move your files to the folder. The volume is mounted as an additional drive under Computer
+
#* Remember that your TrueCrypt Volume will dismount automatically if you do not use it for the ____ minutes set in the instructions above
+
#When you are finished working with your TrueCrypt volume, remember to '''Dismount'''!
+

Latest revision as of 11:01, 15 October 2013

  • Social security number
  • Bank account numbers
  • Driver’s license numbers
  • Credit card numbers
  • Debit card numbers
  • Passport numbers
  • Date of Birth in the same document as first and last name


  • Finding these data elements can be challenging. To help find this sensitive information, Virginia Tech has purchased a site license for Identity Finder. Identity Finder is commercial software that searches for sensitive data such as social security numbers, credit card numbers, and a variety of other data elements. It is a powerful tool that faculty and staff can use to find sensitive data on their Virginia Tech owned machines and storage. For more information on the VT Policies for securely storing and using sensitive data, please see the following:


  • The Bradley Department of Computer and Electrical Engineering encourages using Identity Finder to find any sensitive information on your computers. When this information is found, you must either securely removing the files or emails using the Identity Finder Shred function or by encrypting the data using using TrueCrypt and the VT eToken (see below)
  • Please see the VT Identity Finder page for more information on using Identity Finder to scan your computers.

Contents

[edit] Installing Identity Finder

  • To install a stand-alone version of Identity Finder, please see the instructions at the VT Identity Finder page.
  • The Bradley Department of Computer and Electrical Engineering recommends installing the ECE Identity Finder. By registering with our Server, your Identity Finder install will be centrally managed by the ECE IT team and will receive automatic updates of the client software and policies.



[edit] Install Identity Finder with the ECE Server (Windows)

  1. Download ECE Identity Finder from https://computing.ece.vt.edu/software/www/index.php?software=IdentityFinder
  2. Open your download folder, double click on ECE_IdentityFinder_7.msi and follow the instructions below.
  3. You may now start Identity Finder and run as scan.

[edit] Install Identity Finder with the ECE Server (Macintosh)

  1. Download ECE Identity Finder from https://computing.ece.vt.edu/software/www/index.php?software=IdentityFinder
  2. Open the download folder, double click IdentityFinderMac_7.0.0.3.dmg and follow the install instructions.
  3. You may now start Identity Finder and run a scan.

[edit] Scanning your computer

After installing Identity Finder on your computer(s), please immediately scan your entire system. We recommend changing the scan location from My Documents to My Computer.

Basic instructions can be found here: http://security.vt.edu/idf/windows_use.html

While we understand that you might wish to sort through the files, time is of the essence. Malicious virus attacks can and will happen at any point. It is imperative that any files or emails containing Social Security Numbers be deleted immediately using the Shred feature. If you cannot Shred the files or emails immediately, please use the Secure feature to encrypt the data while you sort them for deletion or redaction.

If you wish to retain files or emails for record keeping (such as old grade logs) you must remove the SSN from the file. The Scrub feature can be used to remove just SSN from files, however it only works with Microsoft Office files.

While there should be no reason to retain any files with SSN, if you save a file or email for long term storage, these files must be encrypted. We recommend TrueCrypt for this purpose. Please see our article on using the VT eToken and TrueCrypt.


Please contact John Harris or Branden McKagen for questions or concerns.

Views
Personal tools
Support