The URL can be used to link to this page

Home My WebLink AboutAGENDA REPORT 2007 0207 CC SPC ITEM 04AMOORPARK CITY COUNCIL AGENDA REPORT ITEM 4. A. cl) j city Como; Meeting TO: Honorable City Council �D5T FROM: Deborah S. Traffenstedt, Administrative Services Director /City Clerk DATE: February 5, 2007 (CC Special Meeting of 2/7/07) SUBJECT: Consider Resolution Amending Fiscal Year 2006 -07 Budget to Fund Wireless Internet Security Improvements BACKGROUND The City's information systems consultant, CPI Solutions, has recommended that the wireless internet access points at various City facilities need improved security. This information was only recently brought to the attention of City staff during discussions regarding providing a wireless hotspot for the Moorpark Library. The security risks associated with wireless hot spots include network attacks (passive eavesdropping, session - hijacking) and rogue access points. With the right equipment, which typically costs less than a few hundred dollars, online vandals can connect from even beyond the premises, and hide their tracks easily and completely. Below several methods of network attack are described: Method: WEP Attack Description: By exploiting the flaws in the Wired Equivalent Privacy (WEP) security protocol, an attacker can crack the encryption on the communications between an access point and a legitimate client. Method: Access Point Spoofing Attack Description: An attacker sets up his or her own access point, known as a rogue, near the target network or in a public place where the victim might believe that wireless Internet access is available. If the rogue access point's signal is stronger than the signal of the real access point, then in many cases, the victim's computer will connect to the rogue access point. Then, the attacker can wait for the victim to type in passwords or inject attack code into the information flow to compromise the victim's computer. 000001 Honorable City Council February 7, 2007, Special Meeting Page 2 Method: Man -in- the - Middle Attack Description: Similar to the access point spoofing, the attacker combines an access point with a virtual private network (VPN) server of the same type as the one on the target network. When the victim attempts to connect to the real server, the spoofed server sends a reply back, leading the victim to connect to the fake server. In each of these scenarios, the goal of the attacker is snooping, password acquisition, identity theft, and network access. Another danger is that the intruder can mimic or assume the digital identity of the owner of the hotspot. This could result in a range of activities, including illegal activities, such as slandering or downloading child pornography. The owner who has the hotspot could incur legal liability. DISCUSSION CPI has recommended implementing a Cisco security solution that will allow City Information Systems staff to monitor all the wireless activity, and at the same time actively search for rougue access points. The new wireless network software will allow visitors in all City Community Center buildings, including the Library, to access the internet; however, such use will require an acknowledgement of the City's disclaimer from fault before the wireless connection may be used. With the new software, the City will actually be able to limit the wireless internet use to the physical dimensions of each City building, or certain rooms. The estimated cost of the software, installaton of equipment, integration and training is $20,000. A budget amendment is needed to fund the improvements. Staff proposes that one half of the cost of the wireless security improvements be funded by the Moorpark Library Services Fund through an inter -fund loan from the General Fund, which will be repaid with future Library property tax revenue. The wireless use at the Library will actually probably exceed any public use of the internet in the other City Community Center buildings. STAFF RECOMMENDATION (ROLL CALL VOTE) Adopt Resolution No. 2007- Attachment: Draft Resolution 000002 ATTACHMENT RESOLUTION NO. 2007- A RESOLUTION OF THE CITY COUNCIL OF THE CITY OF MOORPARK, CALIFORNIA, AMENDING THE FISCAL YEAR 2006 -07 BUDGET TO ALLOCATE $20,000 TO THE INFORMATION SYSTEMS DIVISION (3120) [$10,000 FROM INTERNAL SERVICES FUND (0100) AND $10,000 FROM LIBRARY SERVICES FUND (1010)) FOR WIRELESS INTERNET SECURITY IMPROVEMENTS WHEREAS, on June 21, 2006, the City Council adopted the budget for Fiscal year 2006/07; and WHEREAS, a staff report has been presented to said Council requesting a budget amendment to fund wireless internet security improvements for City facilities, including the Moorpark Library; and WHEREAS, wireless internet security improvements that are needed for the Moorpark Library will be paid for by an inter -fund loan from the General Fund in an amount not to exceed $10,000 to cover actual expenditures occurring in fiscal year 2006 -07, which will be repaid with future Library property tax revenue; and WHEREAS, Exhibit "A" hereof describes said budget amendment and its resultant impact to the budget line item(s). NOW, THEREFORE, THE CITY COUNCIL OF THE CITY OF MOORPARK DOES HEREBY RESOLVE AS FOLLOWS: SECTION 1. That a budget amendment in the aggregate amount of $20,000, as more particularly described in Exhibit "A" is hereby approved. SECTION 2. The City Clerk shall certify to the adoption of this resolution and shall cause a certified resolution to be filed in the book of original resolutions. PASSED AND ADOPTED this 7th day of February, 2007. Patrick Hunter, Mayor ATTEST: Deborah S. Traffenstedt, City Clerk Attachment: Exhibit A — Budget Amendment 000003 Resolution No. 2007 - Page 2 EXHIBIT A FY 2006 -07 Budget Amendment Wireless Internet Security Improvements A. Fund Balance: Fund No. Fund Name Amount 0100 Internet Services Fund $10,000 $10,000* 1010 Library Services Fund TOTAL 11,500.00 $20,000 $14,768.00 * Anticipated library related property tax revenue, once received, will be used to reimburse half the cost of expenditures; meanwhile, general fund balance will be utilized and then replenished up to $10,000. 34,160.00 B. Budget Appropriation: BUDGET NUMBER BUDGETED REVISION NEW BUDGET 0100.3120.0000.9102 103,800.00 $3,016.00 $106,816.00 0100.3120.0000.9205 11,500.00 $3,268.00 $14,768.00 0100.3120.0000.9503 34,160.00 $3,716.00 $37,876.00 1010.3120.0000.9102 0 $3,016.00 $3,016.00 1010.3120.0000.9102 0 $3,268.00 $3,268.00 1010.3120.0000.9102 0 $3,716.00 $3,716.00 TOTALS $149,460.00 $20,000.00 $169,460.00 Approved: v 000004