Information security is one of our highest priorities. We use state-of-the-art software and other technologies to prevent unauthorized users from accessing our systems, especially those accessible from the Internet. Some of the measures we take are very apparent - encryption of sensitive data, password protections, etc. Some protocols, although less obvious, are equally effective.
Following are descriptions of some of the layers of technology we employ to help ensure the confidentiality of the data within the Compliance Assistant Internet:
Browser Encryption
We require the use of a 128-bit secure browser to login to the application. Secure browsers employ secure sockets layer (SSL) technology to communicate with servers. This technology encrypts or scrambles the communication, so it's virtually impossible for anyone other than the NCAA to read it.
Username and Password (Two Levels)
There are two levels of username and password to sign into the application to ensure that an institution's data is secure from unauthorized access. The first username and password is the institution username and password designated by the NCAA. An administrator at each institution maintains the second username and password.
Network Security
The data repository for the application resides behind our firewall. Firewalls are used to shield our systems from any unauthorized Internet traffic. The purpose of a firewall is to ensure only authorized traffic is allowed to pass to our systems and networks; all other traffic from the Internet is rejected. Firewalls also create logs of network traffic that allow for centralized auditing and security monitoring.
The contact for this page is complianceassistant@ncaa.org
© The National Collegiate Athletic Association