Resource Administration

Security

 

Computer security is a priority for Student Affairs and is the responsibility of everyone within the division. The objective of our computing security efforts is to ensure the confidentiality,availability and integrity of our information assets. The division has adopted an Acceptable Use Policy to ensure everyone is aware of their responsibilities in this area. This page will briefly explain the various threats to security and how you can avoid them. The ITS office will also provide a security training session for your department upon request.  PasswordsYour username and password combination uniquely identify you to various computer systems at Duke.  Safeguarding this information is the most important line of defense in electronic security.  Never share your passwordNever allow others to use a system you are logged in toNever use your name, userid, birthdate or other easily guessed information as a part of your password.Strong password policy enforced for division accounts (this is your password for Athos and other division systems)passwords must be at least 8 characters longpasswords must contain a character that is not a letter or number (+&@":)passwords must contain at least one numeric character (123456.)accounts will be locked after eight failed login attempts.The DukeIT Security Office offers some good information for choosing a strong passwordNo one at Duke should ever ask you for your password.  This includes the Student Affairs ITS staff, Duke OIT staff, and everyone else.Please call the ITS office if you have any questions about your passwordRemote AccessMost information that you access in the office can also be obtained when you are away from your desk.  However, since your computer is no longer on Duke's network some additional security precautions should be taken. Use the Duke VPN client when working away from campus. The VPN client creates a secure connection between your computer and Duke's network. This lets your computer appear to the Duke network like it is at Duke rather than remotely connected.Do not save Duke data to your home computer, or any computer that is not owned by Duke.Instant MessagesInstant messaging is an easy and efficient way to communicate with other staff members.  If you use instant messaging in your office, please follow these guidelines. Never transmit sensitive or confidential information using instant messaging. Use Duke's instant messaging system, not your personal account from AOL, Yahoo! or others.  If you need assistance in configuring your IM client to use Duke's system, please contact us. VirusesViruses will usually infect a computer when you open an email attachment. In order to protect yourself, be aware of what you areopening before you attempt to open it. Pay attention to clues which may indicate a malicious attachment. If you are in doubt don't open the attachment or contact the sender to verify that the attachment is legitimate.Software UpdatesThe Student Affairs ITS office will push system updates to division computers from our central update server.  Desktop computers are updated at night, so no interaction is required.  Laptop users will be presented with the software update application when new updates are ready.  Please install all of the available updates when asked to ensure the security of your computer.