Web security experts are required to create a secure infrastructure; it is not the responsibility of content providers to concern themselves with the technical aspects of security. However, it is their responsibility to identify information that must be kept secure (for example, intellectual property, academic collaboration systems, student records, financial data or course content).
Categorize each piece of content under one of the following four security groupings:
- Public – Material that can be made available for viewing by all web users regardless of whether they are members of the University community; no logon or other restriction required
- University – Material that should be made available for viewing by members of the University community only; requires a basic logon or should be restricted by IP address
- Personal – Material that should be made available to the individual to whom the information applies; requires at least a basic logon (for example, a grade inquiry)
- High security – Material that should only be made available to designated individuals; requires the highest level of security (full encryption)
You must indicate the level of security for each document you provide to a webmaster.