Information Security Manual
Section 400: Network and Telecommunications Security
Effective: 01/11/2010

Purpose

The purpose of this section is to state OSU’s procedures regarding network security and firewall architecture to protect Protected Information.

Procedure

OSU Network Services establishes Secured Zones using current firewall technology and the appropriate network access control rule set to ensure that only authorized access is permitted to information systems which contain or will have access to Protected Information.  The overall architecture is based on separation of servers and workstations and the creation of various security zones based on the relative sensitivity.  Departmental zones are established for local servers and services and authority to manage the rules set for those zones is delegated to authorized departmental personnel.  Network Services monitors and audits all rule sets.

Direct connections to the OSU data network are controlled and restricted to authorized personnel only by means of ONID credentials and a registration process for computers.  All remote connections are limited to approved gateways only.  .  All machines connected to the OSU network are subject to the OSU Network Security Policy (see http://oregonstate.edu/net/info/policy/network_security_policy.php ).