Text Only

VSU Directory

Select a VSU Department Academic Affairs Access Office Accounting and Finance Admissions Adult & Career Education Adult Degree and Military Programs Advancement Services Advancement, University African American Studies Air Force ROTC Alcohol & Other Drug Education Alumni Relations Anthropology Program Art Arts & Sciences, College of Arts, College of the Astronomy Athletics Auxiliary Services Biology BlazeFM: WVVS (90.9 FM) BlazeNet Board of Regents Bookstore Bursary (Tuition Cost & Fee    Payment) Business Admin. Grad Programs Business Admin., Langdale College    of Business Services Campus Activities Board Campus Alert System Campus Recreation Campus Wellness CampusConnect Career Services Catalogs, Undergraduate &    Graduate Center for Applied Research Center for Business and Economic    Research Center for Economic Education Chemistry Commencement Communication Arts Communication Disorders Communications Unit Conflict Resolution Continuing Education Cooperative Education Council of Department Heads Council on Staff Affairs Counseling Center Crime Stats Criminal Justice Curriculum & Instructional    Technology Curriculum, Leadership, and    Technology Department Dance Deaf Education Dean of Students Debate Team Dining Services Disability Services Distance Learning Early Childhood & Special    Education eCore Education, College of Educational Leadership Employee and Organizational    Development Employee Self Service Login Engineering Studies Engineering Transfer to Georgia    Tech (RETP) English English Language Institute Enterprise Application Services Environmental and Occupational    Safety Environmental Geosciences Environmental Issues Committee European Council Evening Program Event Services Faculty Research Grants Faculty Scholarship Faculty Senate Finance and Administration Financial Aid Financial Services Freshman Learning Communities Freshmen Year Experience General Studies Geosciences Governor's Honors Program Graduate School Graduation Grants & Contracts Greek Life HallNet Health Promotions Health Services Helpdesk, Information Technology History Honors Program Hotline Housing & Residence Life HUB Learning Cooperative Human Resources Information Technology Institutional Planning Committee Institutional Review Board for the    Protection of Human    Subjects Internal Audits International Programs International Students Journalism Kinesiology & Physical    Education Kings Bay Naval Submarine Base Leadership Programs Legal Affairs Management Marketing & Economics Marriage & Family Therapy Mass Media Master of Library & Info    Science Master of Social Work Program Mathematics & Computer Science Media Center Middle Grades Education Modern & Classical Languages Music Native American Studies Network Services Nursing, College of OASIS Odum Library Off-Campus Credit Program Info Office of Social Equity One Card Services Organization & Mission Orientation Parent Resource Center Parking & Transportation Peach State Summer Theatre Perspectives Philosophy and Religious Studies Physics Planned Giving Planning and Budget Council Plant Operations Police Department Policies Political Science President's Office Prior Learning Assessment (PLA) Psychology & Counseling Public Administration Public Services Publication and Design Services Quality Enhancement Plan (QEP) Reading Education Records Policy Registrar Religious Studies SACS Accreditation Satellite Services Science Seminar Secondary Education Small Business Development Center Social Work, Division of Sociology, Anthropology, Criminal    Justice South Georgia College Entry Program Special Education Spectator Speech Communication Sponsored Programs & Research    Administration Strategic Research & Analysis Student Affairs Student Conduct Office Student Development Organization Student Employment Student Government Association Student Handbook Student Life Student Organizations Student Success Center Student Union Tech Shop Telecommunications Testing Theatre Training and Development Undergraduate Research Council University Advancement University Assessment Committee University System of Georgia Upward Bound Valdosta Educators Credit Union Vending Services Veteran's Affairs Video Production Services Volunteer Services VSU Foundation VSU TV VSU TV Live WebCT Wireless Internet for VSU Women's and Gender Studies WVVS 90.9

Prospective Students | Current Students | Faculty & Staff | Alumni & Friends | Parents & Visitors | Portals

Home > Information Technology > Information Security > Information Security Policy

Information Security Policy

 

Valdosta State University

Information Security Policy

Date: October 26, 2004

1. Purpose

This is a statement of policy regarding the use and administration of Valdosta State University computer and data communication facilities. It relates to the use and administration of data communications equipment (including computer networks involving wireless and traditional LANS, and the Internet) as well as mainframe, midrange, minicomputer, workstation, and personal computer systems. Thus, it covers all activities involving computing and data communication facilities of Valdosta State University. Every user of these systems is expected to know and follow this policy.

2. Policy

This policy applies to any individual using or administering Valdosta State University computer and/or data communication facilities. Not covered are activities solely involving personal property and therefore not connected in any manner to the data communication facilities of Valdosta State University. Related university policies and guidelines that must be respected by such individuals are listed in the references section of this document.

2.1 General Use

Data communication facilities at Valdosta State University have been developed to encourage widespread access and distribution of data and information. Computing systems facilitate manipulation and sharing of data and information. Together, these systems and facilities can be used in similar fashion to mail and telephone services, and so are governed by principles of appropriate use for those services.

 University data communication and computing resources are used to support the educational, research, and public service missions of the institution. Activities involving these resources must be in accord with the university honor codes, Employee Handbook, student handbooks, and relevant local, state, federal, and international laws and regulations.

For use and administration to be acceptable, it must demonstrate respect of:

• The rights of others to privacy;
• Intellectual property rights (e.g., as reflected in licenses and copyrights);
• Ownership of data;
• System mechanisms designed to limit access; and
• Individuals' rights to be free of intimidation, harassment, and unwarranted annoyance.

2.2 Policy Enforcement

The university regards any violation of this policy as a serious offense. Violators of this policy are subject to university disciplinary action as prescribed in the undergraduate and graduate honor codes, and the student and employee handbooks. Offenders may be prosecuted under the Georgia Computer Systems Protection Act (O.C.G.A. 16-9-20) and other applicable state and federal laws.

3. General Security Concepts

3.1 User-IDs and Passwords

Valdosta State University requires that each Student, Faculty, or Staff accessing multi-user information systems have a unique user-ID and a private password.  Each user is personally responsible for the usage of his or her user-ID and password and should be aware of the applicable federal and state laws.  

3.2 Anonymous User-IDs

With the exception of electronic bulletin boards, Internet web sites, intranet web sites, and other systems where all regular users are intended to be anonymous as approved by the University’s Director of Information Technology or his/her designees, users are prohibited from logging into any Valdosta State University system or network anonymously.   

3.3 Physical Security to Control Information Access

Access to every office, computer machine room, network closet, and other Valdosta State University work area containing sensitive information must be physically restricted to those people with a need-to-know. 

3.4 Internal Network Connections

All Valdosta State University computers that store sensitive information and that are permanently or intermittently connected to internal computer networks must have a password-based access control system approved by the Director of Information Technology or her or his designees. 

3.5 External Network Connections

All in-bound session connections to Valdosta State University computers from external networks must be protected with an approved password access control system.    In general terms, Valdosta State University authorized users must not establish connections with external networks (including Internet Service Providers) unless these connections have been approved by the Director of Information Technology or her or his designees.

3.6 Network Changes

Changes to Valdosta State University internal networks including loading new data communications software, changing network addresses, reconfiguring routers, adding dial-up/ dial-in lines, and the like (with the exception of emergency situations) must be:

(a) documented in a work order request, and (b) approved in advance by the Information Technology Division.  All emergency changes to Valdosta State University networks must only be made by persons who are authorized by the Information Technology Division. 

3.7 Security Compromise Tools

Unless specifically authorized by the Director of Information Technology, Valdosta State University users must not acquire, possess, trade, or use hardware or software tools that could be employed to evaluate or compromise information systems security.  Examples of such tools include those which defeat software copy-protection, discover secret passwords, identify security vulnerabilities, or decrypt encrypted files.  Similarly, without this type of approval, users are prohibited from using "sniffers" or any other hardware or software which monitors the traffic on a network or the activity on a computer.

3.8 External Disclosure of Security Information

Information about security measures for Valdosta State University computer and network systems is confidential and must not be released to people who are not authorized users of the involved systems unless the permission of the Director of Information Technology or her or his designees has first been obtained.

4. Procedures

4.1 Reporting Suspected Security Breaches

Anyone who has reason to suspect a deliberate or significant breach of established security policy or procedure should promptly report it to the appropriate Dean, Director, or Department Head, and who shall report the same information to the Department of Information Technology. If the breach is serious and needs immediate attention, the Valdosta State University Department of Public Safety should be contacted.

5. Interpretations

Any questions regarding the implementation of or the interpretation of this policy should be directed to Valdosta State University’s Director of Information Technology or his or her designees. 

6. References

Georgia Computer System Protection Act

 USG Academic Affairs Handbook, Personnel Policies, etc.

 USG Board of Regents Computer Security Policy Statement

 USG Facilities Guidelines for Instructional Technology

 USG Peachnet Acceptable Use Policy

 VSU Campus Homeland Security Policy

 VSU E-mail Policy

 VSU Fax Confidentiality and Security Policy:

 VSU Information Resources Acceptable Use Policy

 VSU Information Security Policy

 VSU Intellectual Property Policy

 VSU Policy on Confidentiality and Privacy Policy under HIPAA

 VSU Policy Pursuant to the Gramm Leach Bliley Act

 VSU Records Retention Policy

 VSU Web Server Usage Policies

 

Printable copy