Security Assessment

Information security assessment is conducted at department level by independent consultancy firms.  Selected departments will be invited to participate in this yearly exercise.

Vulnerability scanning will also be arranged on departmental servers running on HKU network to identify security vulnerabilities such as outdated operating system through the submission of CF163.  Examples are

  • Computer servers reported with security problems (e.g. suspected hacking and spam email originating from the servers) to ensure the problems are fixed before network access will be resumed.
  • Application for using the services of ITS e.g. SSL certificate and Central Authentication System (CAS).
  • Servers hosting on ITS Cloud to ensure their healthiness.



Multi-Factor Authentication

February 2024
February 2024

Mandatory for all staff accounts

May 2024
May 2024

Mandatory for all student accounts