New, Improved, and Continued Services
Co-Location Center
Consulting Services
Digital Identity Management
- eAuthentication Pilot
DCE Upgrade
Directory Services (LDAP)
Kerberos Service Change (from propagation to replication)
Password Strength
Penn State WebAccess
Print-to-Online Forms Conversion
Shibboleth
Signature Stations
Windows Active Directory
File Backup Services
File Service Upgrades
Networking
Open Source Calendaring
Napster - Penn State Music Online
Penn State Oracle Collaboration Suite Calendar
Penn State Portal
Penn State Search Engine Upgrades
Penn State SSL Server Certificates Program
Penn State WebMail v2.0
QuickTime Streaming Service Management Interface
Report Hate Web site
SAKAI
TrackITS
WebLion
Windows Software Update Service
Of Special Note: Dr. Stanley Aungst
Co-location Center (COLO)
The Co-location Center (COLO), housed in the Computer Building was created nearly five years ago to meet the University community's demand for machine room environmental conditions, since a number of systems are currently housed in unsuitable environments throughout the University. The COLO, a central-housing facility for computer systems, is available to Penn State departments and units for a monthly fee. The fee is based on the amount of needed and consumed resources, such as the volume of space required, network connections, and power connections. Environmental conditions provided include a raised floor, conditioned air, UPS power, and secured physical access.
The COLO is almost always filled to capacity, and this year is no different. During 2005-06, over 140 machines from 19 different academic units are housed in the COLO. More information about the COLO is found at http://aset.its.psu.edu/colo/.
Consulting Services
UNIX consultants in AIT continued to provide troubleshooting and planning assistance to the Penn State community. Client requests typically include assistance with diagnosing software errors, help with operating system patches, and/or designing custom hardware and software solutions to fit a specific need.
This year, the entire UNIX infrastructure of the Department of Economics, in the College of Liberal Arts, was updated. A newer version of Solaris was installed on every machine, and all of the software used for research and teaching was upgraded to the latest versions. Plans are underway for integrating all local UNIX accounts with the ITS-managed digital identity management infrastructure; future hardware replacements and upgrades are also expected. Consultants also assisted staff in Penn State's World Campus with a new hardware upgrade for their Oracle DB system. As a result, World Campus began to move their hardware from our machine room to their new facility. Upon full completion, the upgrade and move will provide for redundant database service on a cluster of new machines.
Staff in AIT also provide consulting support (hardware and software) for ten Powerbook G4 and MacBook Pro users within ITS Financial Services. AIT also provides a secure and shared, but segmented, file server for ITS Financial Services (both Windows and Mac users). Multiple areas exist on the same server for different sub-groups of people who need to share specific files.
In addition and on occasion, Macintosh support is provided to the Vice Provost for Information Technology office staff in Old Main.
Digital Identity Management
Digital identity management at Penn State continues to be a major and ongoing effort. The ITS Accounts Services Office, partly managed in ASET and partly managed in Consulting and Support Services (CSS), oversees the processes and policies associated with the Penn State Access Account. The Penn State Access Account, in tandem with the Penn State Online Directory (which uses Lightweight Directory Access Protocol (LDAP), a standardized method for providing directory information), provides the foundation for digital identity authentication (proving who one is) and authorization (what one has access to once authentication occurs). During the 2005-06 year, many activities, both day-to-day and new, occurred in relation to digital identity management at Penn State. The following list provides a detailed summary of some of the more prominent activities:
eAuthentication Pilot
Penn State is participating, along with the University of Washington, Cornell University, and the University of Maryland at Baltimore County, in the federal government's eAuthentication Initiative. The first phase of this involvement included an on-site credential assessment of Penn State's identity management system. Stephen Sill and Sharon Terango of the eAuthentication Initiative met with representatives from Security Operations and Services (SOS), Consulting and Support Services (CSS), and ASET to assess the various components of Penn State's identity management system. They provided the University with the Credential Assessment Framework (CAF), complete with suggestions for best practices, as defined by the federal government eAuthentication agency. The assessment results of the four universities were used to create a Gap Analysis document that determined the possibility of higher education meeting the federal government's requirements for credential providers.
As a follow-up to this credential assessment, the universities have entered into a pilot along with NSF to use Shibboleth to access FastLane. FastLane is an application used by faculty at Penn State to submit grant proposals and follow the proposal through the approval process. The goal of this project is a proof-of-concept for managing the trust agreements between higher education institutions and federal government agencies. This pilot project will require each university to join the federal government federation. The long-term goal is to provide a trust relationship between InCommon and the federal government federation rather than require each university to join both federations. An Interfederation Interoperability Working Group has been created to determine the feasibility and direction for this interfederation trust. This group wrote a charter defining the deliverables targeted for a September 2005 deadline.
As a result, staff in AIT implemented changes to the digital identity management infrastructure, including strengthened password guidelines, as outlined below.DCE Upgrade
Directory Services
ASET continued to upgrade and develop directory-enabled services at the University. Penn State's Directory Services, which uses Lightweight Directory Access Protocol (LDAP), a standardized method for providing directory information, was enhanced with finer-grained roles and attributes in order to better integrate with other services reliant upon this architecture. In addition to serving directory information, LDAP serves as the authorization (what one has access to once authentication occurs) mechanism for Penn State's digital identity management infrastructure. LDAP's use of attributes, groups, and roles to manage and standardize information helps to ensure proper authorization for a variety of services via:- Access Control List (ACLs): control access and allow for update of attributes within LDAP.
- Attributes: single- and multi-valued characteristics that describe an LDAP entry; for example, Penn State student identification numbers are single values, but telephone numbers are multi- valued. The Access Accounts Database (also known as CACTUS, or Central Accounts Coordination Tracking of User Services) feeds information into the LDAP master, which in turn sends information to its replicas.
- Groups: collections of people who work with ACLs to keep attributes up to date.
- Roles: groups with specific attributes that make them unique.
Kerberos Service Change (from propagation to replication)
The MIT Kerberos V Kerberos Distribution Centers (KDCs) were updated to change their method for synchronization. Previously, synching between the master and its replicas was accomplished by using a process called propagation. This process would make a copy of the database and send it to each replica. This became very time consuming. In September 2005, a patch, provided by the University of Michigan, was administered in order to implement immediate Kerberos replication. This means that any Access Account changes (password changes, locks, adds, etc.) are instantaneous, eliminating any delays caused by the former propagation method.Password Strength
As a direct result of the Credential Assessment Framework (CAF) audit, several improvements for strengthening the Access Account password were identified, including password length, the types and amounts of characters one may use to create a password, and checking for similarities to previous passwords. During 2005, changes were put in place to address these issues. The guidelines noted on the "Change Your Password" page via the ITS Secure Server reflect these modifications. Password strengthening will be continued throughout 2006, beginning with enforced password expiration.Penn State WebAccess
Penn State WebAccess continued to gain interest and momentum this year, as the ANGEL course management system was converted to use WebAccess via the Shibboleth framework. Other popular sites that require authentication also are enrolled in this service, including the Penn State Portal, Penn State WebMail, Penn State Web-Based Training, the ITS Secure Server, downloads.its.psu.edu, eLion, the Penn State Web Developers' Forum, the ITS Seminar Registration Management System, and the Multicultural Resource Calendar.
WebAccess, which uses the University of Michigan's CoSign technology (a development effort that is funded by the National Science Foundation's National Middleware Initiative-Enterprise and Desktop Technologies program), provides an environment in which users authenticate/login once with their respective Access Account userids and password to a central server in order to access multiple services protected with WebAccess without needing to re-authenticate.
The WebAccess production system has been enhanced for multi-realm support, checking authentication against both Access Accounts and Friends of Penn State accounts. For support of multiple realms, the server first checks the Access Account realm; if the account name and password are not a match, then the FPS realm is checked.
Whether a user reaches the WebAccess login page directly or via a protected service, the authentication process is the same. Users must enter their respective Access Account userids and passwords in order to authenticate and gain access to a particular service if they haven't already done so via another WebAccess-enrolled service. For example, a user may authenticate via Penn State WebAccess and then access services such as the Penn State Portal and Penn State WebMail without needing to authenticate again to those or any other WebAccess-enrolled services. Likewise, if a user first authenticates to the Penn State Portal and then needs to use the ITS Secure Server, he/she will not need to re-authenticate in order to do so. If the WebAccess login page is first accessed via a protected service, the Web browser will redirect the user back to the service once he/she successfully authenticates. If the WebAccess login page is first accessed directly via https://webaccess.psu.edu/, the user will be presented with a list of WebAccess-enrolled services. Likewise, users should logout via WebAccess or the logout function provided by the service. For details, please visit the WebAccess Help Page.Print-to-Online Forms Conversion
Throughout the year, programmers worked on converting the current, Web-based, PDF-formatted application forms for Access Account-related services to Web-based forms. To compliment the effort, a centralized repository of all forms, available through the ITS Accounts Services Office Web site, was created. This year, energies were focused on the Requesting a Course Group and Short Term Access Account (STAA) forms. Work on the print-to-online initiative will continue throughout the 2006-07 year. The conversion to online forms, however, will not totally eliminate paper versions. Both PDF and printed versions of all forms will continue to be available online and on a per-request basis, although those who wish to apply for such services are encouraged to use the online versions. Efforts on the paper-to-Web forms conversion initiative will continue throughout 2006-07. More information is available through the announcement at Penn State Live.- Course Groups
Requesting a Course Group Online Form: This form provides a quick and easy way for professors and instructors to automatically create and populate User Managed Groups for specific courses. Only the users in the course group have access to the course materials. A course group is generated and populated automatically per class lists; however, users may be manually added/removed once the course group is created. - STAA
STAA Distribution Center Online Form/Web site: Through this Web-based interface, administrators can easily manage pools of STAAs and distribute accounts to users on a per-needed basis. In addition to a new look, the new site also allows STAA administrators to submit the required information about minors online. Step-by-step instructions on how to use the site are provided as well.
STAA Management Center Online Form/Web site: Through this Web-based interface, supervisors of pools of STAAs can designate administrators for each pool - giving faculty, IT managers and other full-time employees at Penn State the freedom to distribute accounts, on a per-needed basis, to a variety of programs. Similar to the new STAA Distribution Center, the new STAA Management Center Web site offers a new look and how-to instructions. New functionalities include designating a backup supervisor for a pool, as well as creating new programs to associate with a pool.
STAA Printing: Users who requested the printing feature can print from public labs at University Park and Harrisburg campuses. This is a for-fee service, and the department is charged for all pages printed at the current rate of $.05/page. Shibboleth
Adoption of Shibboleth, an Internet2 middleware initiative designed to provide federated access management between Web-based resources, with an emphasis on security, scalability, and privacy as an infrastructure for inter-domain authentication and authorization, continued at Penn State, as well as nationally, this year. Services such as WebAssign access (online Physics course management) and Napster renewals are currently being handled by Shibboleth. AIT continued to work toward implementing solutions for the Office of Student Aid (online loan processing), the Worldwide Universities Network (WUN), online GIS course management, and Federal government eAuthentication FastLane grant proposal applications. AIT also assisted staff in TLT with ANGEL's adoption of Shibboleth with WebAccess for inter-domain authentication and authorization via Access Accounts or Friends of Penn State Accounts.
In addition, Penn State's Shibboleth Identity Provider (IdP) was upgraded to version 1.3c, and colleagues in ASET's ET group developed a plug-in for the Shibboleth IdP Attribute Authority servlet. AIT and ET also partnered to implement the SASL-CA, a key security component of LionShare. The SASL-CA allows institutions with different authentication and directory services to generate a common authentication credential for use in LionShare. Credentials obtained from the SASL-CA can be used with a Shibboleth Identity Provider (IdP), allowing authorization based on federated attributes in a LionShare network. Design work is underway to make the SASL-CA a generic credential conversion service for uses outside of LionShare.
For more information, please see the Project Initiatives and Highlights section of this report.Signature Stations
During 2005, updates were made to the ITS Signature Stations to streamline printing and password resets.Windows Active Directory
AIT staff continued to work on developing and providing an Access Account Windows Active Directory® (AD) Root domain for use within the University community to leverage the existing infrastructure, providing for a unified authentication and authorization domain between Windows Active Directory® and the current open standards-based infrastructure. Participants include: Commonwealth College; Penn State New Kensington; Penn State Altoona; Penn State Berks; Penn State Beaver; Penn State Mont Alto; Penn State McKeesport; the College of Earth and Mineral Sciences; the College of Arts and Architecture; the College of Health and Human Development; the Division of Student Affairs; the Departments of Chemistry and Physics in the Eberly College of Science; the Office of the Vice Provost for Educational Equity; the Office of Student Aid; and the Morgan Academic Support Center for Student Athletes.
The items below highlight some of the efforts made to better integrate this service with the existing digital identity management infrastructure. In addition, members of the Windows AD team provided consulting and troubleshooting support to participants. More information about this service is found via the Windows® Services at Penn State Web site.
Participation in R2 TAP Program
During summer 2005, ASET participated in a program to help Microsoft improve the Active Directory Federated Services (ADFS) application in Windows 2003 Server Release 2 (R2).
User attributes synchronized with the Penn State directory (LDAP)
During fall 2005, ASET added the ability for Active Directory applications to utilize central Penn State directory information such as an individual's full name, office information and email address.
MOM & SMS
In spring 2006, ASET began a pilot of central Systems Management Server (SMS) and Microsoft Operations Manager (MOM) services to be available to anyone in the access.psu.edu forest. ASET hopes to provide these services during the fall 2006 semester.
MOM will monitor the health of the forest and also enable any IT administrator within the forest to monitor specific servers or services offered on a server.
SMS will provide an easy method for centrally applying/managing computers, software, and patches. This will allow administrators to reduce time and effort in systems management.
See also Windows Software Update Service update.
During December and January, ASET performed a two-level maintenance upgrade to the dce.psu.edu authentication cell. This upgrade moved the master and three secondary Distributed Computing Environment (DCE) servers to newer hardware and a newer version of the supporting operating system software. As a result, several University-wide services reliant upon Penn State's digital identity management infrastructure, including the Distributed File System (DFS) used for PASS, were greatly improved with much better performance. Some applications using the DCE/DFS framework had a growing number of intermittent problems during the fall 2005 semester, which were corrected by the January 2006 upgrade.
File Backup
Losing important data is catastrophic to those whose information is permanently lost. Off-site backup is the best way to avoid costly permanent loss. For several years, AIT has provided a for-fee backup service known as IBM Tivoli Storage Manager (TSM). TSM is a central backup service, which acts as a file backup and archive server for the disk drives of any workstation or personal computer connected to the Internet. It supports twenty-five different platforms as clients and offers disaster recovery and Hierarchical Storage Management (HSM). The number of data in backups/archives increased from last year's 130 to 224 terabytes this year. Of this 224, approximately 60 terabytes are PASS backups. A total of 1,700 Penn State machines, increased from last year's 1,400, back up with TSM at least once a month.
File Service
Two improvements to PASS, supported by the Distributed File Service (DFS) were offered in tandem:
Increased disk space offerings for PASS/Student Organizations - increased quota to 1GB
New PASS/Student Organization Web Space Self-Service Quota Increase Utility
ASET also launched a new PASS disk quota increase utility for all students, staff and faculty, as well as for student organizations web space. The Web-based tool allows users to increase their PASS or space on www.clubs.psu.edu in 100MB increments from the 500MB default to 1GB. This tool is an expansion of the existing "Directory Quotas" tool available through the ITS Secure Server.
Beginning in early fall 2005, ASET increased disk space offerings for PASS and Student Organization Web space on www.clubs.psu.edu up to 1GB, doubling the previous allocation of 500 MB.
As part of this increased disk space offering, ASET continues to expand total capacity for PASS. By fall 2005, PASS had a total 16TB capacity.
Networking
- Wireless Services
For over two years, the Computer Building's wireless network has used an 802.1X test network. In January 2006, AIT re-configured this network to match the ITS Wireless specification, finalized and determined by the ITS Wireless Committee, in a production environment. This specification permits authenticated and encrypted wireless connections without the need for a VPN. - Participation in ITS Wireless Committee
Staff members from ASET, specifically AIT and ET, actively participated in the ITS Wireless Committee, which continued to look into the next generation of wireless network service for Penn State. In addition, this committee finalized the 802.1X specification as noted above. Eventually, this network will be deployed in future ITS Wireless locations. As a result, on-campus use of the VPN will be unnecessary; however, the VPN service for off-campus connections will not be decommissioned. The committee consisted of representatives from ASET, TNS, CSS, and SOS. For more information, visit the ITS Wireless SecureNet Web page. - Virtual Hosting service (stats)
ASET offers Web hosting for other ITS units and services and other departments of the University. For example, a Penn State department with departmental Web space at http://www.psu.edu/some_dept/ may request to serve the content from a virtual Web host like http://www.some_dept.psu.edu/. Requests for virtual hosts are acquired and billed through the ITS Accounts Services Office, and ASET sets up the virtual host. This year, ASET managed 21 virtual Web hosts for ITS units and services and 39 virtual Web hosts for other academic units.
Open Source Calendaring
Staff in AIT continued to monitor and evaluate the Westwood version of the Open Source Application Foundation's (OSAF) Chandler. Chandler is a Personal Information Manager (PIM), part of which is an open source calendaring system, geared toward academic institutions. For more information, visit the OSAF Web site.
Napster - Penn State Music Online
ASET continued to maintain the infrastructure for Penn State's Online Music service, Napster. Its infrastructure leverages the current University authentication and authorization infrastructure in a way that permits secure account creation with Napster while keeping network traffic in check. Shibboleth, an Internet2 middleware initiative designed to provide federated access management between Web-based resources, with an emphasis on security, scalability, and privacy, is used for account creation. Shibboleth enables Penn State students to authenticate to the service using the Penn State Access Account. In addition, a local Napster caching server, which streams music/videos and is owned and operated by Napster, has been setup within the Penn State network and is maintained by AIT. The local caching server permits faster downloads and a reduction of network traffic. For more information, visit the Online Music: Napster at Penn State Web site.
Penn State Oracle Collaboration Suite Calendar
The Oracle Collaboration Suite Calendar (formerly CorporateTime Calendar) and scheduling client continued as a service to the Penn State community. This networked calendaring system allows users to create meetings and events, compare schedules with others via the group agenda, as well as manage the scheduling and use of high-demand resources, such as conference rooms, equipment, and labs. While clients are available for UNIX, Linux, Macintosh, Solaris and Windows, users can easily access and update their calendars via the Calendaring Web server, provided one has a valid license.
During the year, the calendar server was pruned (all calendar, to-do, and other entries older than two years were deleted from the backend database), and the server software was upgraded to the latest version.
Currently, 2,924 user licenses are in use, with 560 resources and 51 public groups.
Penn State Portal
Again, the Penn State Portal continued to be supported, gaining momentum and popularity, and its usage numbers steadily rose throughout the year. While no major changes or additions were made to the Portal during 2005-06, plans are underway for "Portal 2.0," which will involve a major redesign to better partner with current social software technologies and communication tools.
Penn State Search Engine Upgrades
AIT continued to maintain the Google Search Appliance as Penn State's search engine. The license for the current Google Search Appliance, model GB-5005, version 3.4.14 is due to expire on September 1, 2006. This summer, the appliance was upgraded to a new model/license, GB-5005, version 4.4.94. Main feature changes include:
- a more efficient "continuous" crawl to replace the "all at once" crawl
- increased capacity
- new license allows for 2 million documents, 500 thousand more than previous license
- faster hardware and arrays of increased/larger disk space
- improved ability to find more content
- search invocation from Web sites using collections & custom format (via proxystylesheet parameter) syntax changes
- a more convenient custom search results format tool
AIT/ASET also plans to investigate other new features in the appliance for use by the University community. More information is available through the 2006 Search Engine Upgrade Notes.
Penn State SSL Server Certificate Group Purchase Program
The Penn State SSL Server Certificates Program, originally started and managed by AIT, was fully transitioned to the Penn State Computer Store, in September 2005. The arrangement with Thawte Technologies permits the bulk purchase of SSL certificates for servers within pre-authenticated sub-domains of psu.edu. In addition to considerable cost savings, this relationship positions ITS to provide a quick turnaround time of less than three hours within a normal business day to deliver a signed certificate, for a nominal, reduced fee, for those who wish to take advantage of the service. More information is found via the Thawte SSL Certificate Purchase Procedure Web page.
Penn State WebMail2
Penn State's Web-based e-mail client, which is similar to Google's GMail, provides Penn Staters with convenient and secure access to a Penn State e-mail account via a Web browser. Among many other features, this easy-to-use interface allows users to create and organize mailboxes; access directory services; create and add personalized signatures; and change settings. Originally, WebMail was designed to be an e-mail reader for mobile users. Since its creation in 2000, it has grown in popularity and is now used as a primary e-mail client throughout the University community, serving more than 55,000 users per day.
WebMail has been fully redesigned and reengineered for its fall 2006 release as WebMail2. Several major performance and features upgrades have been made to WebMail2 that include:
- Better and faster message handling
- An added, optional filter for spam
- a tabbed interface, allowing users to open multiple mailboxes at once
- a full HTML editor for composing/responding to messages
- use of a dedicated, high performance file system to store users' e-mail
- an improved spell checker
- filters for organizing messages
For additional information and to begin using WebMail2, please visit https://webmail.psu.edu/.
QuickTime Streaming Service Management Interface
During 2005, Teaching and Learning with Technology (TLT) transitioned from IBM's VideoCharger to Apple's QuickTime Streaming Server for media content delivery. AIT developed the management interface designed to give faculty an easy, Web-based way to manage their respective media assets. In addition, AIT assisted with implementing Penn State WebAccess for authentication.
Report Hate Web site
This year, staff in AIT provided programming support to the Office of the Vice Provost for Educational Equity by rewriting the Report Hate Web site reporting form. The reporting form was completely rewritten to address problems with the site's overall performance and usability, and was given a new look and feel.
SAKAI
During 2005, AIT began to investigate Sakai applications for use with the Penn State Portal. The Sakai Project is a community source software development effort to design, build, and deploy a new Collaboration and Learning Environment (CLE) for higher education. Sakai testing and exploration will continue throughout the year.
TrackITS
TrackITS, formerly known as BOLD, was completely redesigned and rewritten prior to entering its internal pilot with AIT during this reporting period. BOLD is a collaborative project between AIT and ITS Financial Services. TrackITS provides order entry and asset tracking features, which allow ITS managers and employees to view vital statistics about any purchased hardware products by including basic information, as well as budget descriptions and contract information. Currently, TrackITS is used exclusively by ITS Financial Services and has become an important aid within ITS, specifically AIT, for managing purchasing contracts with vendors. A phased pilot with other ITS units is planned for 2006-07.
WebLion
Staff in AIT and TLT continued the development of the WebLion Content Management System at Penn State. WebLion is based on the Zope Application Server and Content Management Framework (CMF), with Plone acting as a user-friendly way to manage the content on the system. AIT staff have helped to integrate WebAccess for authentication and LDAP roles for authorization, in order to assure that WebLion can operate with Penn State's existing infrastructure.
WebLion is being used as the underlying content management system for AIT's soon-to-be-released Web site, and it will eventually be used for ASET's primary Web pages and sites. In addition, it was used to manage and generate ASET's 2005-06 annual report.
Windows Software Update Service (WSUS)
AIT upgraded the Penn State WSUS during the fall 2005 semester to include non-critical updates. The WSUS at Penn State provides a means for safe installation of critical updates for Windows machines on Penn State networks. For more information, visit the Penn State WSUS Web site.
Of Special Note: Dr. Stanley Aungst
During 2005-066, Dr. Stanley Aungst, Faculty Research Fellow, continued his partnership with AIT and CSS. Stan, who has worked with AIT for several years, continues to work with his research group on projects related to Secure End-to-End (E2E), mobile, wireless computing, cryptography and System on the Chip (SoC) programming. This year, his primary focus has been dedicated to data, voice, and video encryption including secure video conferencing.
In December of 2005, a seamless integration research strategy and secure hardware prototype concept was presented to the National Science Foundation in Washington D.C. by Dr. Russell Barton, Professor of Supply Chain Management and Information Systems in the Smeal College of Business. NSF encouraged the research group to apply for the Network Technology and Systems (NETS) Grant. A proposal tiled: “Beyond Third Generation Networks (B3G): Next Generation Secure Converged Services” a strategy for the seamless integration between the cellular world and the IP world was submitted in March, and is currently pending NSF approval.
ITS, under the guidance of Dr. Aungst and the College of Engineering and the Department of Industrial and Management Systems Engineering, sponsored an Industry Capstone Design project. Students in Engineering partnered with staff/students in ITS to successfully design a manufactured and programmed secure Video Over IP conferencing phone. The completed prototype also was presented to ITS senior management and Vice Provost J. Gary Augustson, and was extremely well received.
In addition, Dr. Aungst has applied for and received several grants to support his collaborative research efforts, including the publication of a chapter in the 2007 edition of The Handbook of Multisensor Data Fusion. Dr. Aungst teaches Information Sciences and technology courses, and has been selected to participate in a new online graduate major with College of Information Sciences and Technology and the College of Earth and Mineral Science on Geospatial Intelligence.