Difference between revisions of "Acceptable Use Policy"
From PDP/Grid Wiki
Jump to navigationJump to searchm |
m |
||
| Line 7: | Line 7: | ||
# '''Respect intellectual property and confidentiality agreements''' | # '''Respect intellectual property and confidentiality agreements''' | ||
# '''Protect your access keys (passwords and certificates)''' | # '''Protect your access keys (passwords and certificates)''' | ||
| − | # <div class="NavFrame"><div class="NavHead">Report suspected security breaches and misuse</div><div class="NavContent">When you discover vulnerabilities, witness abuse or other forms of non-acceptable use, you should report these incidents to the Nikhef Computer Security Incident Response Team through the help desk (helpdesk@nikhef.nl). Of course, you should not attempt to exploit such vulnerabilities | + | # <div class="NavFrame"><div class="NavHead">Report suspected security breaches and misuse</div><div class="NavContent">When you discover vulnerabilities, witness abuse, or see other forms of non-acceptable use, you should report these incidents to the Nikhef Computer Security Incident Response Team through the help desk (helpdesk@nikhef.nl). Of course, you should not attempt to exploit such vulnerabilities to circumvent security controls or harm Nikhef, it's services, staff or reputation in any way - such attempts in itself are a violation of this Acceptable Use Policy.</div></div> |
# '''Do no harm to Nikhef, it's services, staff or reputation''' | # '''Do no harm to Nikhef, it's services, staff or reputation''' | ||
| − | # | + | # <div class="NavFrame"><div class="NavHead">Comply with the policies of Nikhef's service providers</div><div class="NavContent">Nikhef provides access to to brokers services of third parties for its users, such as connectivity to the public Internet through SURFnet, access to Federated Services, or other hosted services like backup and calendering. You should at all times also comply with the policies, terms and conditions of use of these service providers. |
| − | |||
# '''You share resources with others - be nice''' | # '''You share resources with others - be nice''' | ||
#:Even when staying within the intended use, it is possible to strain resources to such an extent that other users can no longer make use them. In such cases users should work together with system administrators to find less disruptive alternatives. | #:Even when staying within the intended use, it is possible to strain resources to such an extent that other users can no longer make use them. In such cases users should work together with system administrators to find less disruptive alternatives. | ||
Revision as of 21:07, 26 April 2011
This Acceptable Use Policy governs the use of the Nikhef networking and computer services; all users of these services are expected to understand and comply to these rules.
- Use for intended purpose
- Nikhef offers the services to enable the users (employees, students and collaborators) to do their work. The services may not be used for commercial or political purposes. A limited amount of private use is allowed as long as it does not interfere with normal duties.
- Obey the law
- Respect the authorization restrictions set by Nikhef system administrators
- Respect intellectual property and confidentiality agreements
- Protect your access keys (passwords and certificates)
- Report suspected security breaches and misuseWhen you discover vulnerabilities, witness abuse, or see other forms of non-acceptable use, you should report these incidents to the Nikhef Computer Security Incident Response Team through the help desk (helpdesk@nikhef.nl). Of course, you should not attempt to exploit such vulnerabilities to circumvent security controls or harm Nikhef, it's services, staff or reputation in any way - such attempts in itself are a violation of this Acceptable Use Policy.
- Do no harm to Nikhef, it's services, staff or reputation
- Comply with the policies of Nikhef's service providersNikhef provides access to to brokers services of third parties for its users, such as connectivity to the public Internet through SURFnet, access to Federated Services, or other hosted services like backup and calendering. You should at all times also comply with the policies, terms and conditions of use of these service providers.
- You share resources with others - be nice
- Even when staying within the intended use, it is possible to strain resources to such an extent that other users can no longer make use them. In such cases users should work together with system administrators to find less disruptive alternatives.
- Monitoring and logging of network traffic and e-mail
- The network is being monitored in order to detect trouble in an early stage, and have a rapid response to mitigate possible damage. In order to trace problems on the network to the source, logs of network traffic are kept for a limited time period. E-mail traffic is logged in a secured system, and retained for a maximum of 90 days. User e-mail will only be inspected if there is a heavy suspicion of misuse of services, or illegal activities.
- Enforcement
- Access to the services may at all times be suspended or terminated by the system administration if this is deemed necessary to prevent serious consequences.
