Information Technology Services – Fred Miller, Chief Information Officer

Title: Web Standards and Security Measures Policy

Applicable: Furman University [Students, Staff and Faculty]

Contacts: Computer Help Desk ext. 3277

Background: As the use of web technologies increase on Furman’s campus, it has become necessary to create a policy that states Furman’s web standards and preferred security measures.

Policy: All campus web services and sites that transmit or receive unique user input via forms or other technologies should be implemented with industry standard encryption. Before web sites are posted or technologies implemented, the security requirements should be considered. Systems that allow for generic or anonymous posting should be implemented with features or additional modules that allow for protection against spam and other abuse trends. New technologies will be considered based on the possible need to integrate with our portal technology.

Guidelines:

  1. All campus web services and sites that transmit or receive unique personal identifying user input via forms or other technologies should support and as appropriate be implemented with industry standard encryption (SSL). Along with the implemented encryption, users should apply best practices for these methods if they are selected campus solutions.
  2. Before web sites are posted or technologies implemented, the security requirements should be considered and implemented with technologies that will meet the needs both from the perspective of the protection of Furman University and that of the web users' protection and privacy.
  3. Initial needs do not always indicate future needs, web systems that do not have current needs for encryption does not imply there is no future need for encryption.
  4. Web technologies are required to employ adequate encryption if they are accepting or distributing usernames, passwords or other appropriate-for-securing information.
  5. Newly implemented web-based technologies such as blogging, bulletin boards, guestbooks, and other systems that allow for generic or anonymous (no unique per-user login credentials) posting should be implemented with ITS approved features or additional modules that allow for protection against spam and other abuse trends (Ex, captchas). Guids, cookies, web bugs, ip addresses or other pseudo-anonymous systems that do not require end-user registration or account assignment are considered "anonymous" in the context of this requirement
  6. Where applicable, privacy policies should be developed, followed in practice, and available for web users to review prior to employing use of the system in question.
  7. Users implementing new web sites are advised of the importance of encrypting all logins (regardless of the content of the material made accessible via the login). This offers some protection for the University from users who recycle their passwords for secured systems with those for insecure systems.
  8. Basic auditing should be available, and implemented where appropriate, for newly implemented web solutions, particularly for those that employ unique users. The extent of the auditing requirements is dependent on the application and resources assigned.
  9. Newly implemented technologies will be considered based on the possible need to integrate with our portal technology. Attention should be given to appropriate authentication methods currently Ldap (recommended) or radius (backup) that allow existing security infrastructure without unnecessary increase in security or integration costs.
  10. Existing technologies should be upgraded or moved to platforms that support these goals.
  11. All special requests must be approved by Furman’s Chief Information Officer.

Connect with Admission

Furman University is one of the nation's premier undergraduate liberal arts colleges. We offer outstanding academics, opportunities for a broad range of talented students with a passion for learning, a robust arts program, and NCAA Division I athletics.

Want more information about the admission process at Furman?

Contact us

Once you see our campus, making the right college decision will be so much easier.

Plan a visit

Undergraduate Evening Studies provides adults the opportunity to receive an education from one of the premier liberal arts universities in the nation.

Whether you are starting or continuing your education, or have been away from the classroom for a few months or several years, our program provides many services to assist you with accomplishing your educational and professional goals.

Apply now

Our graduate studies program is designed for the professional educator.

We know the challenges teachers and administrators face every day, and we are committed to helping you become a leader within your school system or district.

Apply now