Stephen F. Austin State University

SFA Home / Policies

Acceptable Use of Information Resources (F-40)

Original Implementation: July 25, 2002
Last Revision: January 19, 2006

STATEMENT

Stephen F. Austin State University (SFASU) encourages the responsible use of its information resources. The use of information resources is for SFASU academic activities, research, and public service. Access to SFASU's information resources is, however, a privilege. All users of information resources should act responsibly to maintain the integrity of these resources. Furthermore, all users must abide by all existing SFASU codes of conduct as well as by local, state, and federal statutes. SFASU reserves the rights to limit, restrict, or extend privileges and access to its resources. SFASU's information resources include, but are not limited to, computers, servers, wired and wireless networks, computer-attached devices, network-attached devices, voice systems, cable systems, and computer applications.

Appropriate use should always be legal and ethical, reflect academic honesty, uphold community standards, and show restraint in the consumption of shared resources. Appropriate use demonstrates respect for intellectual property, ownership of data, system security mechanisms, and every individual's right to privacy and to freedom from intimidation, harassment, and unwarranted annoyance.

RESPONSIBILITIES

• It is the responsibility of every person using SFASU's information resources to protect the privacy of his/her account(s). Personal account information should not be released to friends, relatives, roommates, etc. Users are responsible for the security of their passwords. Passwords should be changed on a regular basis.
• Any person using SFASU information resources is prohibited from using a computer account for which he/she is not authorized, or obtaining a password for a computer account not assigned to him/her.
• The owner or designated assignee of a computer that is attached to the SFASU network is responsible for both the security of the computer system and for any intentional or unintentional activities from or to the network connections. The owner or designated assignee is responsible for all network activity originating from his/her equipment, regardless of who generates it.
• Any person operating a network-intensive application or a defective computer that causes network overload will be notified, and steps will be taken to protect other users and the overall SFASU network. This may include disconnecting the offending computer system from the network until the problem is resolved. If the condition is an imminent hazard to the SFASU network or disrupts the activities of others, then the offending computer system or the subnet to which it is attached may be disabled without notice. This latter course of action may affect other users connected to the network. The operator of the offending computer system will be expected to follow instructions from Networking staff for securing his/her machine.
• Any person using e-mail should not send excessive e-mail/attachments or messages locally or over the network such as chain letters, advertisements, or solicitations. The responsible use of e-mail will help prevent network congestion.
• The content of any files or services made available to others over the network is the sole responsibility of the person with ownership of and/or administrative authority over the computer providing the service. It is this person's responsibility to be aware of all applicable federal and state laws, as well as SFASU policies. This person will be liable for any violations of these laws and policies.
• It is the responsibility of every person using SFASU's information resources to refrain from engaging in any act that may seriously compromise, damage, or disrupt the operation of computers, terminals, peripherals, or networks. This includes, but is not limited to, tampering with components of a local area network (LAN) or the backbone, blocking communication lines, interfering with the operational readiness of a computer, creating/operating unsanctioned servers or personal web (NAT, DHCP or BOOTP servers included) or FTP sites, or delivering unsanctioned streaming audio, video, high bandwidth gaming, or high bandwidth video conferencing. Users should refrain from using an IP address not specifically assigned to them and should not attempt to create unauthorized network connections or unauthorized extensions, or re-transmitting any computer or network services.
• All breaches of system security should be reported immediately to the Networking department.

INFRACTIONS

Examples of infractions include, but are not limited to:

• Circumventing or attempting to circumvent data protection schemes or exploiting security loopholes.
• Running programs that attempt to identify passwords, weaknesses in the SFASU system, or other security codes.
• Attempting to monitor or tamper with another user's data communications or network traffic, or reading, copying, changing, or deleting another user's files or software without the explicit agreement of the owner.
• Knowingly running or installing on any computer system or network, or giving to another user, a program intended to damage or to place an excessive load on a computer system or network. This includes but is not limited to programs known as computer viruses, Trojan horses, and worms.
• Using SFASU computer resources for private business or commercial activities (except where such activities are otherwise permitted or authorized), fundraising or advertising on behalf of non-SFASU organizations, reselling of SFASU computer resources to non-SFASU individuals or organizations, and unauthorized use of SFASU's name.
• Engaging in unlawful communications, including threats of violence, obscenity, child pornography, and harassing communications (as defined by law).
• Attempting to alter any SFASU computing or networking components (including, but not limited to, switches, routers, and data/phone/cable TV wiring) without authorization or beyond one's level of authorization.
• Failing to comply with requests from appropriate SFASU officials to discontinue activities that threaten the operation or integrity of computers, systems, networks, or otherwise violate this policy.

PENALTIES

Misuse of computing, networking, or information resources may result in the loss of computing privileges, as well as other disciplinary action.

PRIORITIES

When demand for computing resources may exceed available capacity, priorities for their use will be established and enforced. The priorities for use of computing resources are:

• Highest:
  Uses that directly support the educational, research, and service missions of SFASU.
• Medium:
  Other uses that indirectly benefit the education, research, and service missions of SFASU, as well as reasonable and limited personal communications.
• Lowest:
  Recreation, including game playing and general browsing.
• Forbidden:
  All activities listed in the Infractions section of this policy, as well as breaches of the Responsibilities section not specifically listed under the Infractions section.

SFASU may enforce these priorities by restricting or limiting usages of lower priority in circumstances where their demand and limitations of capacity impact or threaten to impact usages of higher priority.

IMPLIED CONSENT & LIABILITY RELEASE

Each person with access to SFASU computing resources is responsible for their appropriate use, and by their use agrees to comply with all applicable SFASU policies and regulations, with applicable City, State, and Federal laws and regulations, and with the acceptable use policies of affiliated networks and systems.

Each person requesting service from an SFASU Telecommunications and Networking technician for equipment owned by a person or entity other than SFASU, must acknowledge and accept the following liability release before the technician will be permitted to provide the requested service:

By accepting technical support from the Telecommunications and Networking staff, I expressly waive all claims against SFASU and its agents for any damages to my computer system or data that are incidental to the technical support rendered by Telecommunications and Networking. I understand that the technical support I receive from Telecommunications and Networking may void manufacturer warranties and I understand that Telecommunications and Networking offers no verbal or written warranty, either expressed or implied, regarding the success of this technical support. I understand that I have the right not to accept support from Telecommunications and Networking staff and to seek technical assistance elsewhere.

 

Source of Authority: Vice President for Finance and Administration

Cross Reference: None

Contact for Revision: Director of Information Technology Services

Forms: None