1. Announcements
2. Data Administration, Data Warehouse Project - Report by Bob Loessberg-Zahl
3. University of California Office of the President, BFB - IS3, Information Security Guidelines - John Bruno
4. Library Proxy Server, Project Update - John Bruno / Dan Dorough

Staff to the Council: Ian Blake, Gilda Garcia, and Bob Loessberg-Zahl, and Cathy Horiuchi (for Randy Moory).

Guests: Herbert Diaz-Flores, Dan Dorough, Michele Fulton, and Sandra Stewart.

1. Announcements

   From Chair Laub:
   Dean Laub reminded Council members that the July AdC3 meeting is canceled. The next meeting is scheduled on August 7.

   From John Bruno:
   PricewaterhouseCoopers will be on campus on June 26 for approximately one week to perform an external audit of the data systems. Internal Audit is available to John for consultation should it be necessary.

   As reported last month, three proposals were received for remote access from Pacific Bell, AT&T, and Coastal Web Online. Kevin Rhodes, Ken Woodard, Randy Moory, and Perry Browning are reviewing Pacific Bell's proposal. Another issue being reviewed is how to do billing if it's decided that costs need to be recovered.

   Another project is the wide area networking between UCD and UCDMC. Hoteling space will need to be acquired to locate connections to the various entities. Space at 770 L St. in Sacramento is being used by many of the carriers (GTE and MCI among others). IT is negotiating some space there and developing an MOU with CENIC and California State University. No date on availability of this hoteling space is set yet, pending remodeling and the resolution of other issues.

    
   

2. Data Administration, Data Warehouse Project - Report by Bob Loessberg-Zahl

   Handouts:
   

   1. Planning and Budget Office Supplemental Analysis - Data Administration Revised Proposal for 2000-01 and 2001-02
      
   2. Memo from Mary Jo Anderson and Sandra Stewart to Bob Loessberg-Zahl and Randall Moory, dated June 5, 2000, regarding Revised Data Administration Proposal

   At the last AdC3 meeting, concerns were raised about the rationale for the data warehouse. The three main concerns are: a) which users are demanding the data warehouse?; b) identifying the strategic objectives for the project; and c) what are the costs and benefits of the project? Bob Loessberg-Zahl provided a summary of the revised proposal. The project was scaled back from $1.4 million to $1.1 million under alternative 1, the requested alternative to reduce the scope of the project. Also, the proposal shifts from a request for permanent funding to two-year funding. The updated document ads information sought in the prior AdC3 meeting. The three alternatives to the original plan proposed by the team appear as Attachment 1. AdC3 was asked to recommend one of the alternatives. The council discussed the different alternatives offered in the proposal.

   Some of the questions that need to be answered are:
        - What's in it for users?
        - Where is the funding coming from?
        - How is the quality of data evaluated at the end of the pilot period?
   Answering these questions will provide us with major elements of the strategic plan.

   An example of a possible use of the data warehouse is the ability to maintain employee history. The Payroll Personnel System does not have this history and every school/college is tracking data on its own.

   Action: AdC3 recommends alternative #1 as a pilot project with evaluation at the end of the pilot and review of funding in 12 months.

    
   

3. University of California Office of the President, BFB - IS3, Information Security Guidelines - John Bruno
   Handout: Letter from Richard Atkinson to UC Regents dated May 15, 2000

   John reported that Dr. Grey has charged him to help coordinate information security at the campus level. The IS3 document outlines the UC-wide compliance requirements (http://www.ucop.edu/ucophome/policies/bfb/bfbis.html). The letter from President Atkinson is accompanied by a detailed listing stating which security policies and practices are already in place, and phased projects that will increase security. This listing may not accurately depict UCD's current degree of compliance with IS3. A point was raised that perhaps a considerable amount of the compliance work was completed as part of the Y2K project. The implications of IS3 may also come up during the audit mentioned in item I above.

   Randy Moory has developed a checklist for system sensitivity and is working on related issues as well. The security coordinator who should be appointed soon will handle campuswide security coordination and assist in meeting the IS3 standards.

    
   

4. Library Proxy Server, Project Update - John Bruno / Dan Dorough
   Handout: Memo from UCOP Office of Academic Advancement to Academic Vice Chancellors, dated May 24, 2000, regarding Authentication of Authorized UC Library Users for Access to Digital Library Collections and Services

   Dan Dorough provided a summary of Public Key Infrastructure (PKI) and how it relates to faculty, students, and staff. The technology proves someone's identity via digital certificates on computers. Because PKI issues are complex and it will take a long time to implement PKI in the UC system, this project will install a proxy server in lieu of using digital certificates. IT is working with the Library to put together a proxy server. This is especially helpful to faculty, students, and staff using ISPs outside Davis, who need a way to access materials available only to authorized UCD systems.

   Other uses for PKI certificate technology were mentioned in addition to assuring Web-based patrons of the library are authorized members of the UCD community, among them the many forms printed, signed, and forwarded daily. It was suggested that the issue of digital signatures be raised with PricewaterhouseCoopers during the audit.