Government Technology

Houston Transit Authority Deploys Network Monitoring Tool



Harris County Metro Bus
Harris County Metro Bus

June 2, 2010 By

While most government agencies can track where their employees go on the Internet and what they access on the network, doing so before problems arise can be impractical.

To monitor internal network activity, a government IT department typically uses a protocol like NetFlow, a standard developed by Cisco Systems for making network data readable. Other standards exist as well.

NetFlow sends huge amounts of data to a server, which can be overwhelming to analyze without a way to sift it, according to Neal Gravatt, network report specialist for the Metropolitan Transit Authority of Harris County in Houston.

However, after spending $5,000 to install software called Scrutinizer from vendor Plixer International in November 2009, Gravatt was able to see instantly where the highest Web traffic existed on the agency's network. This was especially useful because heavy traffic areas are usually where many security incidents happen. The software constantly records the activity of every government user so that when suspicious traffic is flagged, Gravatt can see a history of each user's activity.

In the past, Gravatt had to wait for someone to alert him to questionable traffic and then reactively deploy freeware that would track the user from that point forward. He couldn't install the freeware in advance because it collected superfluous data, which would have clogged the network. The new software, by contrast, collects only data he needs to investigate potential security breaches, making it less of a drain.

The software also shows this data with intuitive visuals, Gravatt said. "It presents a graph that shows the spikes in traffic," he explained. "Instead of just looking at the numbers, it shows them in timeline format."

From there, he tracks where the user has been on the Web and what the user has accessed on the network. Even more important to Gravatt is that the software gives him clues about traffic happening without a user's knowledge.

"For instance, say a computer has a virus. I'll go and look at [the user's] traffic. Say he had a lot of traffic last night and this morning at 2 a.m. He was obviously home asleep. There is probably some malicious activity happening on that machine," Gravatt said.

The Metropolitan Transit Authority's $5,000 expenditure for Scrutinizer came with unlimited licensing. The software monitors roughly 1,000 computers at the agency and can plug into most traffic monitoring routers.

 


| More

Comments

Carol    |    Commented September 22, 2011

What are the authority of internet monitoring system?


Add Your Comment

You are solely responsible for the content of your comments. We reserve the right to remove comments that are considered profane, vulgar, obscene, factually inaccurate, off-topic, or considered a personal attack.

In Our Library

White Papers | Exclusives Reports | Webinar Archives | Best Practices and Case Studies
Maintain Your IT Budget with Consistent Compliance Practices
Between the demands of meeting federal IT compliance mandates, increasing cybersecurity threats, and ever-shrinking budgets, it’s not uncommon for routine maintenance tasks to slip among state and local government IT departments. If it’s been months, or even only days, since you have maintained your systems, your agency may not be prepared for a compliance audit—and that could have severe financial consequences. Regardless of your mission, consistent systems keep your data secure, your age
Best Practice Guide for Cloud and As-A-Service Procurements
While technology service options for government continue to evolve, procurement processes and policies have remained firmly rooted in practices that are no longer effective. This guide, built upon the collaborative work of state and local government and industry executives, outlines and explains the changes needed for more flexible and agile procurement processes.
Fresh Ideas In Online Security for Public Safety Organizations
Lesley Carhart, Senior Information Security Specialist at Motorola Solutions, knows that online and computer security are more challenging than ever. Personal smartphones, removable devices like USB storage drives, and social media have a significant impact on security. In “Fresh Ideas in Online Security for Public Safely Organizations,” Lesley provides recommendations to improve your online security against threats from social networks, removable devices, weak passwords and digital photos.
View All

Featured Papers