Information Technology Services

Electronic Communication: Security

and Protection of Data

New Faculty OrientationAugust 19, 2013

Information Technology Services

Protecting NDSU Resources

• As a faculty member, you are assigned an NDSU owned computer and a network account with a user ID and a password for

Job functions

Research

Educational purposes

Information Technology Services 3

Acceptable Computer Use Policies

Acceptable Computer Use Policies: • North Dakota University System Computer Use Policy

1901.2

• NDSU 158: Acceptable Use for Electronic Communication Devices

• NDSU 158.1 E-mail as an Official Communication Method for Employees

• NDSU 710: Computer and Electronic Communication Facilities

Information Technology Services 4

Acceptable Use Policy and Procedure

• AURC – Acceptable Use Review Committee

– NDSU Procedure for Investigation of Potential Employee Violations of Acceptable Use of Electronic Communication Devices

– http://www.ndsu.edu/its/au

Information Technology Services 5

Protection of Data

and

Electronic Resources

Information Technology Services 6

Which one is not like the other?

1. Social Security Numbers 2. Bank account number3. Directory name4. Date of Birth5. Test grades6. Contracts 7. EmplID

Information Technology Services

Data Standards

• NDUS Data Standards– http://www.ndus.edu/uploads/resources/794/1901.2-DATA.PDF

• SSN removal project– http://www.ndsu.edu/vpfa/ssn_management/

• Server security and registration– http://www.ndsu.edu/its/security/security/server_registration_hub/

7

Information Technology Services 8

Data Protection Best Practices

• Never leave your computer unattended. • Use a password-protected screensaver• Log off or turn your computer off when you are

done for the day• Update operating system, applications• Must have: Antivirus – Forefront/ClamAV

Information Technology Services

Select the best password

1. gondsu

2. G0bison

3. 123456

4. password

5. tHeCat1nt7eH@t

6. letmein

7. f00Tba11

9

Information Technology Services 10

Mobile Security

• Maintain copies of important data.• Back up all data – keep backups current.• Use encryption for protected data.• Login and password are required to

access computer.• Enable power on authentication.• Do not share NDSU-owned equipment

with family or friends.

Information Technology Services 11

Remote/Wireless Security

• Remote access not recommended

• Wireless: Use NDSU Secure Wireless

www.ndsu.edu/its/wireless

Information Technology Services

• If you will be traveling abroad for work/research related to NDSU please observe these guidelines.

• www.ndsu.edu/its/security/traveling_abroad_with_electronic_devices/

12

Information Technology Services 13

Copyright

Teach Act - Fair Use

Software & Web-based Services

Information Technology Services 14

Copyright and Fair Use Guidelines

• Copyright law codified in Title 17, the “Copyright Act,” of the United States Code

• Exclusive rights – The legal rights granted to an author, a composer, a

playwright, a publisher, or a distributor of exclusive publication, production, sale, distribution, adaptation, public performance of a literary, musical, dramatic, or artistic work.

– A strict liability without an intent requirement– Provides for “statutory damages” for each infringed

work

Information Technology Services 15

Copyright law continued

• Protects published and unpublished works• Protects original works of authorship when in

fixed tangible medium of expression– Sound recordings, musical works,

photographs, literary works, dramatic works, motion pictures, other audiovisual works and computer software

• Must be creative – facts not included, but method in which presented is considered CR

Information Technology Services 16

Digital Millennium Copyright Act

• Purpose: To update copyright law for the digital age

• Areas of interest:–Anti-circumvention provisions–Limitation on liability for online service

providers–Notice and take down procedures

Information Technology Services 17

NDSU HEOA Noticewww.ndsu.edu/its/copyright

Information Technology Services 18

The Teach Act

• Technology, Education, & Copyright Harmonization Act (TEACH)– Allows for the performance and display of copyrighted

materials for distance education– Primary purpose: to balance the needs of distance

learners and educators with the rights of copyright holders

• Does not supersede fair use or existing digital license agreements

• Tips and Tricks Video

Information Technology Services 19

When in doubt

• Assume the work is copyright protected and ask permission to use it

• Even if you properly quote and/or credit a work’s author, you may still be accused of copyright infringement

• Public Domain or Creative Commons – good resources

Information Technology Services 20

Fair Use Doctrine

• Created to allow the use of copyrighted works for criticism, commentary, parody, news reporting, research and scholarship, and classroom instruction

• Provides a limited basis for people to use the copyrighted work without getting permission from the creator

Information Technology Services 21

Points for technology users

• Information on the Internet: Most likely not in the public domain

• Most software, including freeware, is not in the public domain

• Asking permission is polite, even if you’re not required to do so

• Don’t assume the work posted on the Web is legal

Information Technology Services

Software Guidelines

• License & contractual issues• Privacy concerns• Security issues• Product’s intended usewww.ndsu.edu/its/intellectual_property_copyright/softwareandweb_basedservicesguidelines/

What software is available?

www.ndsu.edu/its/software/

22

Information Technology Services 23

If you have questions, contact:

NDSU Chief IT Security OfficerTheresa SemmensIACC Building, Room 210A231-5870 (office) 212-2064 (cell)Theresa.Semmens@ndsu.edu

NDSU Help DeskIACC Building, Room 150231-8685ndsu.helpdesk@ndsu.edu

Information Technology Services

Electronic Communication: Security

and Protection of Data

New Faculty OrientationAugust 19, 2013