TCCS logo
Tufts Computing and Communications Services
 FSP LookupInfoboardSearchSite Map
Inside TCCS Services Resources & Support About TCCS IT Organization Policies & Standards Home
subtopic off Responsible Use
subtopic off IT Resource Security Policy
subtopic off Overview of Rights and Responsibilities
subtopic off Computer Crime
subtopic off Intellectual Property
subtopic off Eligibility for IT
subtopic off Licensing Policy
subtopic off Email Policy
subtopic off IT Standards
subtopic off Wireless Policy
subtopic off Virus Infection Policy
subtopic off Security Incident Response
subtopic off Network Use Policy
subtopic off IT Acquisitions Policy
How can we help you? go photo

Policies & Standards

Tufts University Information Technology
Resource Security Policy

Introduction | Purpose | Definitions | Systems | Networks | Desktops, Terminals, and Devices | Data | Applications | Access Control | Notifications | Sanctions | Ongoing

Security of the Network

At Tufts University, TCCS (Tufts Computer and Communications Services) manages the data and voice networks. In that capacity, TCCS management must assume the largest share of responsibility for identifying and analyzing potential threats to the networks as well as for network security planning, implementation, maintenance and monitoring.

  1. TCCS network managers will identify and analyze potential threats to uninterrupted voice and data network availability and identify appropriate responses. The analysis and preparatory work will be recorded, maintained and updated as conditions change.

  2. Network managers will implement appropriate controls to ensure that connected users or computer services do not compromise the security of any other networked service.

  3. TCCS network managers are responsible for the implementation of any controls necessary to ensure that access is limited to authorized users of the network.

  4. TCCS network or system managers as appropriate, will establish procedures to identify and remove network services, protocols and network devices that expose the network to unauthorized access or attacks.

  5. Each network manager will take reasonable action to provide necessary protection against natural disasters and will prepare adequate disaster recovery plans and procedures for that part of the network for which he/she is responsible.

  6. TCCS network managers are responsible for establishing and maintaining standards for network naming and numbering. The head of each school/division's IT support organization is responsible for managing the local implementation of TCCS' network numbering and naming standards in concert with several TCCS departments: Network Engineering, WebCentral and the Microsoft LAN group.

  7. TCCS network managers are responsible for the maintenance and publication of network services responsible use guidelines to maximize network integrity and performance.

  8. Each network manager is responsible for conducting periodic reviews of implemented security plans, measures, procedures and controls.

  9. Each network manager must provide the means to permit authorized personnel to audit and establish individual accountability for any activity involving the network and which may or does result in a security breach.

  10. Each system or network manager must initiate an investigation of any suspected security breach involving his/her network(s) and is responsible for documenting the suspected breach and actions taken.

Next   Return to top

Last modified: 9/10/04 12:10 PM

Tufts University © 2001 Tufts University   |   Contact Us