NC Home

About NC

Services

Support

News

Jobs

Rates

Documents and User Guides

University of Rochester Policy for Acceptable Usage of Remote Network Access Resources

Published: 2/9/98,
Modified: 9/29/04 for code of conduct,
Modified: 9/7/05 (department name change and web links for NCS)

The following acceptable use policy contains some general policies and some specific to remote network access. You should consider this to be a "living document" for which you may receive updates.

You are expected to abide by its content and you are also free to send comments or suggestions to 'comments@utd.rochester.edu'.

update for 9/29/2004: The University of Rochester's "Remote Network Access Resources" referred to in this document as RNA or VPN, are provided to the community as defined by a portion of the University's code of conduct. In that document, University members are described as "faculty or staff member, student employee, or volunteer acting on behalf of the University". Information Technology Services reserves the right to determine who may fit that description. end of update

The University of Rochester's "Remote Network Access Resources" referred to in this document as RNA, are provided to the community to extend the "logical campus."

Faculty, staff and students who either reside off-campus, require on-campus remote network access facilities, or travel for personal or business reasons and choose to perform University work when at these locations are required to read, sign, and abide by this "Acceptable Use Policy" prior to their initial use of such facilities. This may take place prior to signing up by reading the document's contents linked at NCS's main web site page.

The general purpose of the University community's RNA resource pool is to enhance and support the educational mission of the University consistent with the Rochester Renaissance Plan, policies currently in effect, and mission statements produced by the University.

All students, faculty and staff are responsible for using the University of Rochester's RNA resources in an effective, ethical and lawful manner. Use of the network for reasons outside of the University's general mission may be considered an unethical use of the remote network access resource.

Acceptable use policies (AUP's) in other documents appear as attachments to this document or at other web site locations. Persons using RNA facilities must abide by all of the contents herein and be aware of separate and independent policies for which final versions are available in final form separate and apart from this document. However, to the extent that these policies exist as "living documents," these drafts are considered to be observable policy.:

Attachment A: University of Rochester Downstream Access Policy (*Draft*)

Attachment B: NYSERNet Extract

Attachment C: ELAN Connection Agreement Extracts

There is also documentation for ResNet available at the ResNet web site.

Please check the NCS web site for current versions of these policies.

Any questions on these documents should be directed to your Network Administrator or other department technical contact.

The intent of this statement is to give an overview of acceptable and unacceptable uses of the University of Rochester's RNA resources without exhaustively enumerating all such uses and misuses. This statement is intended as an addition to existing University policies concerning academic honesty and the usage of facilities.

Acceptable Use

Acceptable Use Includes:

• Use for purposes of, and in support of the education, research, and health care mission of the University of Rochester community;
• Use related to administrative and other support activities considered consistent with the mission of the University of Rochester community;
• Use consistent with policies set forth by host systems managers;
• Use consistent with the acceptable usage policies of NYSERNet, the University of Rochester's Downstream Access Policy, and the ELAN Connection Agreement. These documents are available on the Networking and Communications Web site at "http://www.rochester.edu/its/ncs" and relevant AUP material is available in attachments or links "A" through "D".

Unacceptable Use Includes:

• Violation of federal, state or local laws or statutes through the use of University of Rochester's computers or networks;
• Providing, assisting in, or gaining unauthorized or inappropriate access to University of Rochester's computing resources;
• Use of University of Rochester's remote network access facilities for unauthorized or inappropriate access to systems, software or data at other sites (e.g. downloading of copyright protected material including graphics, video, audio, literature, and any material which states, or even infers that permission to copy it is required from the owner or publisher;
• Activities that interfere with the ability of others to use University of Rochester's remote network access resources, hosts, or other network-connected services effectively. You should exercize good citizenship with regard to realistic consumption of remote network access resources. There are both physical limits and work-related limits to the uses of the remote network access service. Uploading or downloading large files may not exemplify good citizenship if it impacts the ability of others to use remote network access resources (e.g. playing internet games which consume substantial bandwidth, running programs that consume inordinate network resources or run too long). If you have any question about whether you are using this resource appropriately, it is your obligation to seek approval from your Network Administrator who can also identify Internet Service Providers if you wish to consume substantial resources. Your Network Administrator can identify Internet service providers (ISP's) for you if you wish to consume this level of resource;
• Activities that result in the loss of another person's work or unauthorized access to another person's work;
• Distribution of chain letters or broadcasting to lists of individuals in such a manner that might cause congestion of the network and extend unduely, the time of usage of remote network access resources and University systems;
• Use of University of Rochester's remote network access resources for commercial use or profit-making enterprise, except as specifically approved by the University. Use of these resources for commercial gain is inconsistent with, and may actually jeopardize the University's not-for-profit status. Internet Service Providers (ISP's) not connected to the University's network can provide you with inexpensive resources if you wish to conduct business on a network accessed via remote network access tools;
• Sharing of your University system password(s), in violation of computer system policies;
• Use of another person's account even if they permit you to do so. If you become aware of another person's password, you must advise that person to immediately change the password;
• Attempting to circumvent protection schemes or exercise security loopholes relative to any remote network access hardware and firmware mechanisms.
• Use of software at remote site not properly licensed. Each application has its own licensing requirements.

If you encounter information whose source is within the University of Rochester that you find inappropriate in some way, you are obligated to report it to your Network Administrator. The Network Administrator will be responsible for determining whether the reported information appears to interfere with the mission of the University. The Network Administrator then reports their observations to University Telecommunications.

If a technical problem occurs, exercize good citizenship in problem reporting. Customers using remote network access facilities should report all problems to the NCS Networking and Operations Center (NOAC) at x44357 and/or NetHelp e-mail within 30 minutes of the problem. Customers should supply a phone number or e-mail address for proper problem dispatch and followup. On weekends or after hours, customers may call the Help Desk and stay on the line to speak with an Operator. They should then ask for the Telecommunications Manager On Call. These procedures are necessary to ensure that there are not multiple minor problems resulting from a more major problem, and to ensure that problem diagnosis commences as soon as possible.

Questions related to client software should be directed to your Network Administrator. University Telecommunications is not responsible for any client or host software. Only the design and reliability of the hardware are the specific responsibility of University Telecommunications.

Violations of this policy may result in disciplinary action initiated by University Telecommunications. (See below)

Questions related to acceptable use should be directed to the Network Administrator in your department.

Should a capacity constraint prevent you from performing an important work function, you should report the time of the capacity limitation and any messages received. University Telecommunications does not guarantee access to this service at a particular time and suggests that customers requiring such a guarantee seek them through Internet Service Providers (ISP's). Likely peak hours for our net are from approximately 9pm to midnight.

University Telecommunications, the contract manager for remote network access services, is not the custodian of the information on the Internet. University Telecommunications is the provider of hardware only.

Protection of remote network access passwords protects University resources. Good citizenship includes observing the guidelines below as a mechanism to protect University property (remotes access and connected systems):

• passwords should be at least 6 characters long;
• passwords should not be based on a single word or name in any language;
• your password should never be the same as your account ID (UserID);
• passwords should not be multiple words;
• passwords can be combinations of personal acronyms and words, numbers and letters randomly combined, or a number string and letter string in sequence, so long as the letter string is not a name or word as previously specified.

Failure to comply with these policies may lead to one or more of the following:

• loss of access privileges;
• requirement to reimburse the University of Rochester or the State of New York for misappropriated computing or network resources;
• disciplinary action under faculty standards, employee policies, or student judicial or honor codes; and
• prosecution under applicable civil or criminal laws.

Access to remote network access services (and thus, the network) is a priviledge, not a right. NCS and the Dean, Director, or Department Head, reserves the right to terminate this priviledge without prior notice. These actions would be taken only if there was significant reason and would be subject to the following process:

• An authorized Dean, Director or Department Head advises NCS of the requirement to terminate an account.
• NCS detects what they believe to be 1) a willful violation of this acceptable use policy, or 2) any unlawful activity;
• NCS employee or supervisor seeks second opinion on justification to suspend this priviledge;
• If there is agreement to suspend this priviledge, the account / UserID will be suspended immediately;
• NCS will notify both the user and the Network Administrator as soon as possible; informing both why the access was suspended. If your Network Administrator believes that this was an accidental and non-willful violation, he/she can recommend that access be re-instituted as soon as the condition that caused the "non-willful" violation is rectified;
• If you disagree with our action, you have the right to appeal ; if the Network Administrator or "party-appealed-to," the remote network access user, and NCS agree that renewal of access should be granted, it will be done within the same business day to ensure the least inconvenience.

Appeal Procedure

Faculty appeal first to their Dean; second to the Faculty Senate.

Academic staff appeal first to their Department Chair; second to their Dean.

Students appeal first to the Dean of Student Affairs; second to the Dean of the College.

Administrative staff appeal first to the Director of their department; second to the Provost.

Changes to the appeal procedure will be communicated to all users of this resource and will ensure that consumers are fairly treated and that the larger community using the resource is adequately protected.

By signing this Consent and Waiver form, you agree to abide by these restrictions and guidelines. You also acknowledge receipt of Attachments "A" through "D" inclusive as described on page 1 of this policy:

Attachment A:

Attachment B:

Attachment C:

Attachment D:

Accepted by requestor: ___________________________
Date: ___________________

Network Administrator: __________________________
Date: ___________________

{if required by your area}
 

Attachment A: DRAFT [see NCS web site for updates, if available]

A Downstream Member:

• must have their own Class C address (if not using dept. computing system)
• must have a UR sponsor (a dept. network administrator) or be affiliated with the University by having a University financial account number
• must follow AUP (copy from ELAN connection agreement)
• may be terminated without cause
• may choose to connect directly with NYSERNet at any time without penalty
• must follow ELAN downtime schedule
• must provide appropriate hookup to demarc (if not using dept computing systems to gain access.) including any monthly line charges
• may not provide further downstream access
• may not make excessive use of the University Internet connection bandwidth
• may not make use of Univ licenses to Internet services (news)
• ? must supply primary DNS, may use UR for secondary
• subscribe to netdown
• no voice in ELANTAC
• must provide adequate consulting support for all downstream users
• must provide adequate technical support for assisting in the diagnosis of connection problems
• must provide single point of contact (including home phone or pager to be used in the event of serious problems
• UR Department Network Managers:
• must have current signature for ELAN connection agreement
• must be member of ELANTAC
• ? willing to take calls on network problems from downstream member
• ? may supply primary DNS for downstream member
• Backbone Network Manager
• monitor Internet activity by downstream member
• ? supply usage reports
• ? will be monitored by NOC
• maintains and owns any equipment (router) to support downstream connection secondary DNS service
• Reporting Problems
• ? call the dept. network administrator, not NCS Networking and Operations Center (NAOC).
• ? escalate problems to the NCS Networking and Operations Center (NAOC)
• downstream member will be billed for technician and engineer time investigating all problems not specific to ELAN, including modem pool

Attachment B: NYSERNet Extracts [see NCS web site for updates, if available]

NYSERNet Contract

NYSERNet, our regional network provider, has additional constraints on appropriate use of the Internet and therefore, remote network access:

Customer shall not nor shall it permit or assist others to abuse or fraudulently use Network Service, including but not limited to the following:

1. Obtaining or attempting to obtain service by any fraudulent means or device with intent to avoid payment;
2. Accessing, altering, or destroying any information of any third party by any fraudulent means or device, or attempting to do so; or
3. Using Network Services so as to intentionally or maliciously interfere with the use of the NYSERNet Network by other Customers or authorized users; or in violation of the law or in aid of any unlawful act.

Attachment C: ELAN Connection Agreement Extracts [see NCS web site for updates]

Acceptable Use Policy

The backbone network will be operated in such a way as to provide the services specified in this agreement to the maximum number of users. Problems that originate on a department network and that are caused by a misuse of backbone services, whether accidental or intentional, will not be allowed to impact the operations of another

department network or the backbone network. It is the responsibility of the backbone manager to inform the department network manager of "bad citizenship" on the part of the department network s/he represents.

Bad Citizenship

The following list gives some examples of bad citizenship:

• sending bad network control information to network devices.
• bombarding packet switches with junk packets.
• break-in attempts to packet switch control programs or attempts to change the behavior of a backbone packet switch.
• a jabbering node or other bad hardware that consumes network resources without any effective use.
• protocol testing without approval from the backbone manager.
• using the backbone for paging/swapping activities or for other high-bandwidth applications such as Local Area VAX Cluster.
• massive data transfers (on the order of 100 megabytes or more) across the backbone during normal business hours[1] such as system backups or other types of file transfers.
• giving interactive access to network resources without requiring personal identification of the user (i.e. network terminal servers with no login identification requirement, workstations or PCs without login and without room access restrictions, anonymous gopher clients). This does not include anonymous ftp or gopher servers.
• knowingly allowing the use of hosts for network security intrusions.
• giving access to the Internet to people or networks not affiliated directly with the University without first signing a University of Rochester Downstream Internet Connection Agreement. (See the section titled Downstream Internet Connections.)

  ---

  Attachment D: ResNet Acceptable Use Policy
  
  Back to the top of the page