OpenAthens MD Dealing with account misuse

514 views

Published on

Sarah Quintin, a software engineer at Eduserv, discusses how to monitor accounts and deal with misuse.

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
514
On SlideShare
0
From Embeds
0
Number of Embeds
17
Actions
Shares
0
Downloads
0
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

OpenAthens MD Dealing with account misuse

  1. 1. OpenAthens MD<br />Sarah Quintin – software engineer<br />www.eduserv.org.uk<br />http://www.flickr.com/photos/jenny-pics/3327645231/<br />Monitoring and dealing with account misuse<br />
  2. 2. Account misuse and why it’s a problem<br />Account details shared with, or stolen by non-authorised parties<br />Breaches:<br />OpenAthensMD terms and conditions<br />Your own policies<br />Licence conditions of Service Providers<br />
  3. 3. What we currently do<br />Monitoring since 2005 <br />Highlight unlikely patterns of use<br />False positives can be ignored<br />Suspect accounts are suspended<br />Administrators are notified<br />54 accounts suspended during last three months<br />…what do we mean by “unlikely patterns”?<br />
  4. 4. Three or more countries within 24 hours<br />Account used from three or more countries within a 24 hour period<br />08:45<br />Account: student01 <br />Accessed from: UK<br />17:15<br />Account: student01 <br />Accessed from: Canada<br />22:10<br />Account: student1 <br />Accessed from: Australia<br />
  5. 5. Frequent usage from two or more countries<br />Account used in more than two countries within 24 hours on ten separate occasions<br />Day 1<br />Account: student02 <br />Accessed from: UK and the USA<br />Day 2<br />Account: student02<br />Accessed from: USA and France<br />Day 3<br />Account: student02<br />Accessed from: UK and India<br />Day 4<br />Account: student02<br />Accessed from: UK and the USA<br />Day 5<br />Account: student02<br />Accessed from: UK and the USA<br />Days 6, 7, 8 and 9<br />Account: student02<br />Accessed from two or more countries per day<br />Day 10<br />Account: student02<br />Accessed from: UK and China<br />
  6. 6. Enhancements<br />Greater control to administrators<br />Generate enhanced reports of suspected misuse<br />Configure what is (and what isn’t) monitored<br />Review accounts that have been suspended<br />New checks to catch “hops” between countries…<br />
  7. 7. What do we mean by “hops”?<br />Account usage alternates frequently between different countries over a period of seven days<br />Saturday<br />Account: student04 <br />Accessed from: UK<br />Monday<br />Account: student04<br />Accessed from: Mexico<br />Thursday<br />Account: student04<br />Accessed from: UK<br />Friday<br />Account: student04<br />Accessed from: Mexico<br />Administrator is alerted<br />
  8. 8. Live demonstration of new features<br />
  9. 9. Coming soon… <br />Due for release mid 2010<br />Show expired activation codes<br />Enhanced summary on front page<br />Download spreadsheets<br />Maps<br />
  10. 10.
  11. 11. http://www.flickr.com/photos/crystaljingsr/3914729343<br />

×