At IU, what is Secunia Personal Software Inspector (PSI)?
Secunia Personal Software Inspector (PSI), available for Windows operating systems, helps you identify the software installed on your computer and keep it up to date. Secunia PSI scans your computer for thousands of known programs, checks for missing security patches and vulnerabilities in those programs, and reports back to you with information on how to update them.
Note: Secunia PSI is not a comprehensive security program, and should not be used in place of antivirus software.
Indiana University's University Information Policy Office (UIPO) has licensed PSI to assist students who have difficulty assuring programs they have tried to remove (e.g., peer-to-peer file sharing programs) have actually been removed. These UIPO notification services are only offered when the IU version of PSI is installed through IUware, Get Connected, or Group Policy Object. Installations of PSI from Secunia's web site do not allow for reporting from the UIPO.
Note: IU students, faculty, and staff can download PSI from IUware free of charge. Download PSI from IUware.
PSI examines only the software programs on your computer (not your personal files), and then sends information to Secunia's servers, which match the data against the Secunia File Signatures engine to determine the exact software programs you have installed. All data sent to Secunia is communicated via an encrypted connection (SSL), and is treated as confidential. For details, see Secunia's Privacy Statement.
Additionally, the IUware, Get Connected, and Group Policy Object versions of PSI automatically install Secunia Corporate Software Inspector (CSI), a silent service with no graphical user interface. CSI sends information only about the software programs on your computer (not your personal files) to UIPO, rather than Secunia. All data sent to IU is communicated via an encrypted connection (SSL), and is used to send notifications about software security risks requiring attention to users on the IU network and, for university-owned computers, users' departmental local support providers (LSPs). If your LSP has opted to receive notices regarding personally owned machines of users the LSP supports, then the LSP is required to notify the users supported.
IU departmental use
LSPs who wish to deploy CSI via Group Policy Object (GPO) can link to the "IU-UISO-CSI" GPO. Departments choosing to implement CSI through this GPO will be able to take advantage of reports and notifications of vulnerable software applications from UIPO. IU LSPs who deploy CSI agents to systems should provide notification to the users describing who will use the tool, how, and for what purpose, as well as anticipated use of the resulting information.
Additionally, the UIPO licensed Secunia Corporate Software Inspector (CSI) provides IT professionals with an easy way to monitor software vulnerabilities. For more, see UIPO's Options for IT Professionals.
Last modified on March 15, 2013.