Information Technology Division
Computing & Communications Center

Home Network Standard

Purpose

Sometimes employees work from home on a machine connected to a home network. This work may include accessing or storing WPI information via email, files, or applications such as Banner. The machine may or may not be owned by WPI. It is the employee’s responsibility to provide a reasonable level of security to guarantee the integrity of their own systems and to ensure the security of WPI applications and data.

This standard provides steps to help:

Scope

This standard covers all home or non-WPI networks that are used to process or store any WPI information, whether using a WPI-owned or non-WPI device.

Standards

Purchasing a router

When selecting a router to purchase:

Router Configuration

In addition to offering the convenience of connecting multiple computers to a single DSL or cable modem connection, a router equipped with good firewall capabilities is the first line of defense against attacks. Here are some tips on getting the most out of one.

Router Passwords and Access:

Router Updates:

Firewall:

The most common exceptions are made to host local websites and to allow remote access into local computers. Make sure all website software is kept up to date and accounts for any remote access software (Windows Remote Desktop, SSH, VNC, etc) contain strong passwords. Follow the WPI Password Standard.

WPI recommends that the following exceptions are never enabled or open to the Internet.

Wireless Networking:

Computer Systems:

Remote Access:

Users will use encrypted methods to access WPI systems whenever possible. Connection methods such as HTTPS, SSH and WPI's Virtual Private Network (VPN)are all acceptable.


Revision History


Please visit the Data Security site for references and information on other Data Security standards.

Maintained by itweb
Last modified: Feb 14, 2012, 11:48 EST
[WPI] [CCC] [Top]