Tufts University Logo SITE_NAME

Search  GO >

this site tufts.edu people
SITE_NAME SITE_NAME SITE_NAME  
 
SITE_NAME SITE_NAME 6

IT Security

This section contains information on IT security and includes links to internal Tufts websites about the subject. Visit the Tufts Technology Services website under Information Security for more  information addressing IT security at Tufts.

What should I know about University network services and safe computing in the Tufts local area network (LAN) environment?
Tufts invests significant resources to ensure the security of electronic data and desktops and wireless devices connected to the Tufts network. The University strives to implement appropriate security control measures to reduce the risk of unauthorized access to confidential information. For questions, additional information, or to request a security consultation for your department, go to the TTS Security Consulting  website, email it@tufts.edu or call (617) 627-3376.

What can I do to reinforce secure and safe computing practices at Tufts?
In the Tufts computing environment, the most important source of IT control is user information security awareness and communication. A user should aim to identify security weaknesses such as: using “weak” passwords, sharing passwords, failing to install virus protection, responding to “phishing” schemes, leaving computers operating while unattended, failing to log-out of systems when no longer in use and installing programs from untrusted sites. If you believe your computing environment has been compromised contact the TTS Office of Information Security.

What should I know about user password management and best practices?
Passwords used to access sensitive applications and data should be private, not shared with others and meet minimum basic standards that reduce the likelihood of their compromise. Adoption of a password that is not readily “guessable”, not a commonly used term (e.g., last user name, sports teams, Tufts-related words such as Jumbos, elephant) or generic (e.g., password, guest, student, etc.), is a “non-dictionary” term and includes eight (or more) alpha-numeric characters in length is the most effective control we have to control access to Tufts’ applications, systems and confidential data.

Default passwords shipped with certain IT hardware and applications should always be changed or disabled when installed. Passwords should not be displayed or affixed to the side of terminals, under keyboards/mouse-pads or other common “insecure” areas. Refer to the TTS Password Security guidelines for more information.

Has Tufts adopted any general policies related to my responsibilities as a user of Tufts’ computing IT resources?
The University has adopted a series of policies regarding appropriate use of University information technology resources at the following websites:

 

Return to top