Brief

University policy on IT: The University Policy Office is announcing the promulgation of three new university policies, all of which reside in the Information Technologies volume of the University Policy Library. The University Policy Office asks that people take a moment to familiarize themselves with these important new university documents, which affect, potentially, all Cornell community members.

University Policy 5.4.1: Security of Information Technology Resources, which requires all individuals using devices that are connected to the Cornell network to take stipulated measures to manage the security of these devices. Visit: http://www.univco.cornell.edu/policy/SEC.for.html.

University Policy 5.4.2: Reporting Electronic Security Incidents, which establishes procedures for reporting electronic security incidents such as viruses, "hacking" or compromised machines. Visit: http://www.univco.cornell.edu/policy/SECREP.for.html.

University Policy 5.7: Network Registry, which requires the registration of all devices attached to the network so that, in the event of an electronic security incident, security staff can quickly locate and notify the user at the related network address. Visit: http://www.univco.cornell.edu/policy/nr.for.html.

The University Policy Library is the body of standardized university policies at Cornell. It is organized in volumes one through seven and can be seen at http://www.univco.cornell.edu/policy/current.html.

If you have specific questions on university policies, contact the offices named in the online "Contacts" section of each policy. If you have general questions about the policy process at Cornell, contact the University Policy Office at uco-pag@cornell.edu.

July 1, 2004