• Services
• Get Help
• Accounts
• Computer Labs
• Software
• Training
• Network
• Hardware Purchases & Repair
• Information Systems Applications
• Information
• Alerts & News
• Security
• Policies & Standards
• Forms
• About Information Technology
• IT Planning
• Staff
• Organizational Chart

Information Security

• Introduction
• Definitions
• General Requirements for all Network Connected Devices
• Procedures for Off-Campus Network Access and Provisioning
• Procedures for Desktop Remote Control Software
• Procedures for Wireless Access Paths

Definitions

• Server - A computer program or collection of programs making a computer's files, information, or services available to client programs. Examples are web servers, file servers, telnet servers, and Windows remote control servers.
• Client - A computer program or collection of programs making use of a server's files, information, or services. Examples include web browsers, email clients, ftp clients, and telnet clients. It should be noted that the same computer may, and often does, run both client and server programs.
• Computer - Along with the more traditional devices, this term also includes such things as Internet enabled cell-phones, wireless devices, two-way pagers, game consoles, and any other device capable of interfacing to the University information systems or network. Wireless mice and keyboards are considered part of the computer they are supposed to be controlling.
• Remote Access - The use of a client on one computer to access a server on another.
• Remote Provisioning - The act of making available a server to remote clients.
• Access Path - The physical paths over which the remote access takes place. Examples include the Public Switched Telephone Network (i.e. dial-up), ISDN, Wireless, the JMU Campus Intranet (i.e. the Internet inside the JMU physical network), the Internet (i.e. the Internet outside the physical JMU network), satellite, etc
• Access Method - The protocol used between the client and server. The Access Method often consists of layered protocols, the lower layers of which may be determined somewhat by the Access Path. For example, web access over a dial-up line usually implies an underlying PPP protocol.
• On-Campus computer - a computer physically residing on the JMU campus network
  • Campuslink subscribers and those using the JMU provided ISDN connections are considered "On campus" even though their access path is over a Public Switched Telephone Network. This will be true as long as the following conditions are true:
    • The service provisioning equipment, less the client side access device, remains owned and operated by JMU.
    • The service provisioning equipment, less the client side access device, remains on campus.
    • The IP addresses used by the clients have the 134.126 prefix.
  • Apartment complexes fed from the JMU network are considered "On campus".

Vulnerability and threats vary depending upon the particular client, server, access path, and access method. Therefore, procedures and best practices vary somewhat.