-
Notifications
You must be signed in to change notification settings - Fork 0
/
security-policy.htm
executable file
·392 lines (370 loc) · 59.4 KB
/
security-policy.htm
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML+RDFa 1.0//EN"
"http://www.w3.org/MarkUp/DTD/xhtml-rdfa-1.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" version="XHTML+RDFa 1.0" dir="ltr">
<head profile="http://www.w3.org/1999/xhtml/vocab">
<meta content="IE=edge,chrome=1" http-equiv="X-UA-Compatible"/>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
<link rel="shortcut icon" href="https://community.ja.net/sites/all/themes/janetbootstrap/favicon.png" type="image/png"/>
<meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=5, minimum-scale=0.75, user-scalable=yes"/>
<link rel="next" href="/library/janet-policies/service-level-agreement"/>
<meta content="SKYPE_TOOLBAR_PARSER_COMPATIBLE" name="SKYPE_TOOLBAR"/>
<link rel="up" href="/library/janet-policies"/>
<meta name="Generator" content="Drupal 7 (http://drupal.org)"/>
<link rel="canonical" href="/library/janet-policies/security-policy"/>
<link rel="shortlink" href="/library/janet-policies/security-policy"/>
<link rel="prev" href="/library/janet-policies/privacy-policy"/>
<title>Security Policy | The Janet Community Website</title>
<link type="text/css" rel="stylesheet" href="https://community.ja.net/sites/default/files/css/css_791YXBaKKm1ORM_7huSKEsIV9tSWq6wmRkERhuXpN6w.css" media="all"/>
<link type="text/css" rel="stylesheet" href="https://community.ja.net/sites/default/files/css/css_NXti8f1KG_3PtT4IIc0U3jDor0MbcpVCy5HvGkHBurk.css" media="screen"/>
<link type="text/css" rel="stylesheet" href="https://community.ja.net/sites/default/files/css/css_DZDw9nToS-E9Xd-IEsFzowNfiH6r-9n14wMBvhYHGs0.css" media="all"/>
<link type="text/css" rel="stylesheet" href="https://community.ja.net/sites/default/files/css/css_P_ZR6pJHf5LJtrtnVczoj6yA3vAYHHgxnDj-QKxGr4U.css" media="all"/>
<style type="text/css" media="all">.hidden{display:none;visibility:hidden}.visible-tinyphone{display:none!important}.visible-phone{display:none!important}.visible-tinymobile{display:none!important}.visible-mobile{display:none!important}.visible-tablet{display:none!important}.visible-wide-desktop{display:none!important}.visible-desktop{}// Don't set initially
.hidden-tinyphone {}.hidden-tinymobile{}.hidden-phone{}.hidden-mobile{}.hidden-tablet{}.hidden-desktop{display:none!important}@media (max-width:479px){.visible-tinyphone{display:inherit!important}.hidden-tinyphone{display:none!important}.hidden-phone{display:inherit!important}.visible-phone{display:none!important}.hidden-tinyphone.visible-phone{display:none!important}.visible-tinymobile{display:inherit!important}.hidden-tinymobile{display:none!important}.hidden-mobile{display:inherit!important}.visible-mobile{display:none!important}}@media (max-width:739px){.visible-phone{display:inherit!important}.visible-mobile{display:inherit!important}.hidden-phone{display:none!important}.hidden-mobile{display:none!important}.hidden-desktop{display:inherit!important}.visible-desktop{display:none!important}}@media (min-width:740px) and (max-width:979px){.visible-tablet{display:inherit!important}.hidden-tablet{display:none!important}.hidden-desktop{display:inherit!important}.visible-desktop{display:none!important}}@media (min-width:980px) and (max-width:1220px){.visible-normal-desktop{display:inherit!important}.hidden-normal-desktop{display:none!important}.hidden-wide-desktop{display:inherit!important}.visible-wide-desktop{display:none!important}}@media (min-width:1220px){.visible-wide-desktop{display:inherit!important}.hidden-wide-desktop{display:none!important}.hidden-normal-desktop{display:inherit!important}.visible-normal-desktop{display:none!important}}</style>
<link type="text/css" rel="stylesheet" href="https://community.ja.net/sites/default/files/css/css_QQyeOsU-tDOeELklDpKVxDH-QD8MyDdqTPdQaDZGiFI.css" media="all"/>
<link type="text/css" rel="stylesheet" href="https://community.ja.net/sites/default/files/css/css_p_OYhPGi1qW9WACN_nrM9cioC6WrGHURCrMQ2sdDgiU.css" media="all"/>
<link type="text/css" rel="stylesheet" href="https://community.ja.net/sites/default/files/css/css_6j_kM_lFBpjKiiMCcWiOeu7BL5nIp-9slDeauzjyeCM.css" media="all"/>
<!--[if (lt IE 9)&(!IEMobile)]>
<link type="text/css" rel="stylesheet" href="https://community.ja.net/sites/default/files/css/css_PIQ-IeaHencY8G3mxby-6-hidN4eLbND61vj95sATXY.css" media="all" />
<![endif]-->
<!--[if gte IE 9]><!-->
<link type="text/css" rel="stylesheet" href="https://community.ja.net/sites/default/files/css/css_nsLL-rizn6QG5sOblCjxt1WpKPwAjgjM4B0a4XXtRH4.css" media="all"/>
<!--<![endif]-->
<script type="text/javascript" src="https://community.ja.net/sites/default/files/js/js_ubv6he2WPtx0y3rXKMjH7Zvizvx_0NuXD7o2IhZ18d8.js"></script>
<script type="text/javascript" src="https://community.ja.net/sites/default/files/js/js_J5LnPvmpCgvIdkN_eY77V2kzZGNa9BP0DJ2jrz2k4TQ.js"></script>
<script type="text/javascript" src="https://community.ja.net/sites/default/files/js/js_8IOSxKqjgBdyeeOb6M8Cuwk9W5UnNizKQE2gYTqmWaI.js"></script>
<script type="text/javascript" src="https://community.ja.net/sites/default/files/js/js_TCcHmChK3aRFbeDqnzCLHoyH5rDa84lbXn-719uITjE.js"></script>
<script type="text/javascript" src="https://community.ja.net/sites/all/modules/contrib/lightbox2/js/lightbox.js?1415820366"></script>
<script type="text/javascript" src="https://community.ja.net/sites/default/files/js/js_EX2qNUCjA5xY4Yoa-tWxqMxcSGTWU9CMTwxYpX0gsJY.js"></script>
<script type="text/javascript">//<![CDATA[
window.CKEDITOR_BASEPATH='/sites/all/libraries/ckeditor/'
//]]></script>
<script type="text/javascript" src="https://community.ja.net/sites/default/files/js/js_k1KLY8LuIgvOUbxtbtKRFsK1UuB-W2qQ-yCgcAfSljQ.js"></script>
<script type="text/javascript" src="https://community.ja.net/sites/default/files/js/js_UNu9Q42CIrnb4_cRs_6-KWQz_BLunYqWafA1kjh3O28.js"></script>
<script type="text/javascript" src="https://community.ja.net/sites/default/files/js/js_Qxn2XGQkpPua9TV4068AikZ504eRd_TnLp0u5Tp2i2o.js"></script>
<script type="text/javascript">//<![CDATA[
jQuery.extend(Drupal.settings,{"basePath":"\/","pathPrefix":"","ajaxPageState":{"theme":"janetbootstrap","theme_token":"fD5NLFICQfxgYy3l6JoO8k-wWrj-bP1OTqAe5hJKMAU","jquery_version":"1.7","js":{"0":1,"sites\/all\/modules\/patched\/jquery_update\/replace\/jquery\/1.7\/jquery.min.js":1,"misc\/jquery.once.js":1,"misc\/drupal.js":1,"sites\/all\/modules\/contrib\/tipsy\/javascripts\/jquery.tipsy.js":1,"sites\/all\/modules\/contrib\/tipsy\/javascripts\/tipsy.js":1,"sites\/all\/libraries\/prettify\/prettify.js":1,"sites\/all\/modules\/patched\/jquery_update\/replace\/ui\/external\/jquery.cookie.js":1,"sites\/all\/modules\/patched\/jquery_update\/replace\/misc\/jquery.form.min.js":1,"misc\/ajax.js":1,"sites\/all\/modules\/patched\/jquery_update\/js\/jquery_update.js":1,"sites\/all\/modules\/contrib\/admin_menu\/admin_devel\/admin_devel.js":1,"sites\/all\/modules\/custom\/janet_custom\/js\/janet_custom.js":1,"sites\/all\/modules\/custom\/sitewide_notifications\/js\/sitewide_notifications.js":1,"\/misc\/jquery.once.js":1,"sites\/all\/modules\/contrib\/lightbox2\/js\/auto_image_handling.js":1,"sites\/all\/modules\/contrib\/lightbox2\/js\/lightbox.js":1,"sites\/all\/modules\/contrib\/panels\/js\/panels.js":1,"sites\/all\/modules\/contrib\/prettify\/prettify.loader.js":1,"sites\/all\/modules\/custom\/sitewide_notifications\/js\/jquery.hoverIntent.minified.js":1,"sites\/all\/modules\/contrib\/user_relationships\/user_relationships_ui\/user_relationships_ui.js":1,"sites\/all\/modules\/contrib\/views_slideshow\/js\/views_slideshow.js":1,"sites\/all\/themes\/janetbootstrap\/js\/jquery.tooltipster.min.js":1,"sites\/all\/modules\/custom\/janet_topbar\/js\/janet_topbar.js":1,"sites\/all\/modules\/contrib\/heartbeat\/modules\/heartbeat_comments\/heartbeat_comments.js":1,"sites\/all\/modules\/contrib\/heartbeat\/js\/autoresize.jquery.js":1,"misc\/progress.js":1,"sites\/all\/modules\/custom\/janet_adaptive_library\/js\/janet_adaptive_library.js":1,"sites\/all\/modules\/custom\/janet_adaptive_library\/js\/jquery.hcolumns.js":1,"1":1,"sites\/all\/modules\/patched\/google_analytics\/googleanalytics.js":1,".\/misc\/jquery.cookie.js":1,"sites\/all\/themes\/janetbootstrap\/js\/janetbootstrap.js":1,"sites\/all\/themes\/janetbootstrap\/..\/..\/libraries\/Modernizr\/Modernizr.js":1,"sites\/all\/themes\/janetbootstrap\/..\/..\/libraries\/Respond\/src\/respond.js":1,"sites\/all\/themes\/janetbootstrap\/js\/bootstrap-alert.js":1,"sites\/all\/themes\/janetbootstrap\/js\/bootstrap-carousel.js":1,"sites\/all\/themes\/janetbootstrap\/js\/bootstrap-collapse.js":1,"sites\/all\/themes\/janetbootstrap\/js\/bootstrap-dropdown.js":1,"sites\/all\/themes\/janetbootstrap\/js\/bootstrap-modal.js":1,"sites\/all\/themes\/janetbootstrap\/js\/bootstrap-tooltip.js":1,"sites\/all\/themes\/janetbootstrap\/js\/bootstrap-popover.js":1,"sites\/all\/themes\/janetbootstrap\/js\/bootstrap-transition.js":1,"sites\/all\/themes\/janetbootstrap\/js\/bootstrap-datepicker.js":1},"css":{"modules\/system\/system.base.css":1,"modules\/system\/system.messages.css":1,"modules\/system\/system.theme.css":1,"sites\/all\/modules\/contrib\/tipsy\/stylesheets\/tipsy.css":1,"modules\/book\/book.css":1,"modules\/comment\/comment.css":1,"sites\/all\/modules\/contrib\/date\/date_api\/date.css":1,"sites\/all\/modules\/contrib\/date\/date_popup\/themes\/datepicker.1.7.css":1,"sites\/all\/modules\/contrib\/date\/date_repeat_field\/date_repeat_field.css":1,"modules\/field\/theme\/field.css":1,"sites\/all\/modules\/custom\/janet_app_centre\/css\/janet_app_centre.css":1,"sites\/all\/modules\/custom\/janet_custom_user\/css\/janet_custom_user.css":1,"sites\/all\/modules\/custom\/janet_topbar\/css\/janet_topbar.css":1,"sites\/all\/modules\/custom\/jcs_ui\/modules\/jcs_ui_pager\/css\/jcs_ui_pager.css":1,"sites\/all\/modules\/contrib\/logintoboggan\/logintoboggan.css":1,"modules\/node\/node.css":1,"modules\/poll\/poll.css":1,"modules\/search\/search.css":1,"modules\/user\/user.css":1,"sites\/all\/modules\/contrib\/views\/css\/views.css":1,"sites\/all\/modules\/custom\/jcs_ui\/css\/jcs_ui.css":1,"sites\/all\/modules\/patched\/ctools\/css\/ctools.css":1,"sites\/all\/modules\/contrib\/geshifilter\/geshifilter.css":1,"sites\/all\/modules\/custom\/iwf\/css\/iwf.css":1,"sites\/all\/modules\/contrib\/lightbox2\/css\/lightbox.css":1,"sites\/all\/modules\/contrib\/panels\/css\/panels.css":1,"sites\/all\/modules\/contrib\/rate\/rate.css":1,"sites\/all\/modules\/patched\/shib_auth\/shib_auth.css":1,"sites\/all\/modules\/contrib\/tagadelic\/tagadelic.css":1,"sites\/all\/modules\/contrib\/user_relationships\/user_relationships_ui\/user_relationships_ui.css":1,"sites\/all\/modules\/contrib\/views_slideshow\/views_slideshow.css":1,"sites\/all\/modules\/custom\/janet_adaptive_library\/css\/janet_adaptive_library.css":1,"sites\/all\/modules\/custom\/janet_adaptive_library\/css\/hcolumns.css":1,"sites\/all\/modules\/patched\/google_analytics\/googleanalytics.css":1,"0":1,"sites\/all\/themes\/janetbootstrap\/css\/overrides\/ds_2col.css":1,"sites\/all\/themes\/janetbootstrap\/css\/overrides\/heartbeat.css":1,"sites\/all\/themes\/janetbootstrap\/css\/overrides\/heartbeat_2col.css":1,"sites\/all\/themes\/janetbootstrap\/tooltipster.css":1,"sites\/all\/themes\/omega\/alpha\/css\/alpha-mobile.css":1,"sites\/all\/themes\/omega\/alpha\/css\/alpha-alpha.css":1,"sites\/all\/themes\/janetbootstrap\/css\/all.css.less":1,"sites\/all\/themes\/janetbootstrap\/css\/responsive.css.less":1,"sites\/all\/libraries\/prettify\/prettify.css":1,"ie::normal::sites\/all\/themes\/janetbootstrap\/css\/janetbootstrap-alpha-default.css.less":1,"ie::normal::sites\/all\/themes\/omega\/alpha\/css\/grid\/alpha_default\/normal\/alpha-default-normal-12.css":1,"normal::sites\/all\/themes\/janetbootstrap\/css\/janetbootstrap-alpha-default.css.less":1,"sites\/all\/themes\/omega\/alpha\/css\/grid\/alpha_default\/normal\/alpha-default-normal-12.css":1,"wide::sites\/all\/themes\/janetbootstrap\/css\/janetbootstrap-alpha-default.css.less":1,"wide::sites\/all\/themes\/janetbootstrap\/css\/janetbootstrap-alpha-default-wide.css.less":1,"sites\/all\/themes\/omega\/alpha\/css\/grid\/alpha_default\/wide\/alpha-default-wide-12.css":1}},"heartbeat_language":"en","heartbeat_poll_url":"https:\/\/community.ja.net\/heartbeat\/js\/poll","lightbox2":{"rtl":0,"file_path":"\/(\\w\\w\/)private:\/","default_image":"\/sites\/all\/modules\/contrib\/lightbox2\/images\/brokenimage.jpg","border_size":10,"font_color":"000","box_color":"fff","top_position":"","overlay_opacity":"0.8","overlay_color":"000","disable_close_click":1,"resize_sequence":0,"resize_speed":400,"fade_in_speed":400,"slide_down_speed":600,"use_alt_layout":0,"disable_resize":0,"disable_zoom":0,"force_show_nav":0,"show_caption":1,"loop_items":0,"node_link_text":"View Image Details","node_link_target":0,"image_count":"Image !current of !total","video_count":"Video !current of !total","page_count":"Page !current of !total","lite_press_x_close":"press \u003Ca href=\u0022#\u0022 onclick=\u0022hideLightbox(); return FALSE;\u0022\u003E\u003Ckbd\u003Ex\u003C\/kbd\u003E\u003C\/a\u003E to close","download_link_text":"","enable_login":false,"enable_contact":false,"keys_close":"c x 27","keys_previous":"p 37","keys_next":"n 39","keys_zoom":"z","keys_play_pause":"32","display_image_size":"original","image_node_sizes":"(\\.thumbnail)","trigger_lightbox_classes":"img.inline,img.image-img_assist_custom,img.thumbnail, img.image-thumbnail","trigger_lightbox_group_classes":"","trigger_slideshow_classes":"","trigger_lightframe_classes":"","trigger_lightframe_group_classes":"","custom_class_handler":"lightbox_ungrouped","custom_trigger_classes":"img.caption","disable_for_gallery_lists":1,"disable_for_acidfree_gallery_lists":true,"enable_acidfree_videos":true,"slideshow_interval":5000,"slideshow_automatic_start":true,"slideshow_automatic_exit":true,"show_play_pause":true,"pause_on_next_click":false,"pause_on_previous_click":true,"loop_slides":false,"iframe_width":600,"iframe_height":400,"iframe_border":1,"enable_video":0},"prettify":{"linenums":false,"match":".content .node-wiki, .content .node-book","nocode":"no-code","custom":[],"markup":{"code":true,"pre":true,"precode":false}},"user_relationships_ui":{"loadingimage":"\/sites\/all\/modules\/contrib\/user_relationships\/user_relationships_ui\/images\/loadingAnimation.gif","savingimage":"\/sites\/all\/modules\/contrib\/user_relationships\/user_relationships_ui\/images\/savingimage.gif","position":{"position":"absolute","left":"0","top":"0"}},"tipsy":{"custom_selectors":[{"selector":".tipsy","options":{"fade":1,"gravity":"w","trigger":"hover","delayIn":"0","delayOut":"0","opacity":"0.8","offset":"0","html":0,"tooltip_content":{"source":"attribute","selector":"title"}}},{"selector":".tipsy-belowinf","options":{"fade":1,"gravity":"n","trigger":"hover","delayIn":"750","delayOut":"0","opacity":"0.98","offset":"0","html":0,"tooltip_content":{"source":"attribute","selector":"title"}}},{"selector":".tipsybadges","options":{"fade":1,"gravity":"n","trigger":"hover","delayIn":"750","delayOut":"0","opacity":"0.8","offset":"0","html":0,"tooltip_content":{"source":"attribute","selector":"title"}}}]},"heartbeat_comment_post_url":"https:\/\/community.ja.net\/heartbeat\/comment\/post","heartbeat_comment_load_url":"https:\/\/community.ja.net\/heartbeat\/comments\/load\/js","ajax":{"edit-il-button":{"wrapper":"janet-topbar-login-form","callback":"janet_topbar_login_form_callback","event":"mousedown","keypress":true,"prevent":"click","url":"\/system\/ajax","submit":{"_triggering_element_name":"op","_triggering_element_value":"Institutional Login"}}},"janetTopbar":{"discofeedPath":"\/Shibboleth.sso\/DiscoFeed","loginPath":"\/Shibboleth.sso\/Login"},"janet_adaptive_library":{"root":[{"id":"2301","label":"Advisory services","type":"folder"},{"id":"784","label":"Consultations","type":"folder"},{"id":"2241","label":"Janet Policies","type":"folder"},{"id":"32419","label":"Janet Service Desk","type":"link","url":"\/library\/janet-service-desk"},{"id":"2326","label":"Janet Services Documentation","type":"folder"},{"id":"8597","label":"Janet Website How To","type":"folder"}],"cols":{":2241":[{"id":"2241","label":"Janet Policies","type":"link","url":"\/library\/janet-policies"},{"id":"783","label":"Acceptable Use Policy","type":"link","url":"\/library\/acceptable-use-policy"},{"id":"31934","label":"Acceptable Use Policy Guidance","type":"folder"},{"id":"2358","label":"Eligibility Policy","type":"link","url":"\/library\/janet-policies\/eligibility-policy"},{"id":"16302","label":"Eligibility Policy Guidance","type":"folder"},{"id":"8411","label":"Janet Community Terms and Conditions","type":"folder"},{"id":"9699","label":"Janet Cookies","type":"link","url":"\/library\/janet-policies\/janet-cookies"},{"id":"13815","label":"Janet Service Catalogue","type":"link","url":"\/library\/janet-policies\/janet-service-catalogue"},{"id":"14387","label":"Janet Web Development Guidelines","type":"link","url":"\/library\/janet-policies\/janet-web-development-guidelines"},{"id":"16168","label":"Privacy Policy","type":"link","url":"\/library\/janet-policies\/privacy-policy"},{"id":"855","label":"Security Policy","type":"link","url":"\/library\/janet-policies\/security-policy"},{"id":"5206","label":"Service Level Agreement","type":"link","url":"\/library\/janet-policies\/service-level-agreement"},{"id":"2359","label":"Terms for the Provision of the Janet Service","type":"link","url":"\/library\/janet-policies\/terms-provision-janet-service"}],":855":[{"id":"855","label":"Security Policy","type":"link","url":"\/library\/janet-policies\/security-policy"}]},"selected":"855"},"googleanalytics":{"trackOutbound":1,"trackMailto":1,"trackDownload":1,"trackDownloadExtensions":"7z|aac|arc|arj|asf|asx|avi|bin|csv|doc|exe|flv|gif|gz|gzip|hqx|jar|jpe?g|js|mp(2|3|4|e?g)|mov(ie)?|msi|msp|pdf|phps|png|ppt|qtm?|ra(m|r)?|sea|sit|tar|tgz|torrent|txt|wav|wma|wmv|wpd|xls|xml|z|zip"}});
//]]></script>
</head>
<body class="html not-front not-logged-in page-node page-node- page-node-230 node-type-book context-library context-library context-janet-policies context-security-policy nojs">
<div id="skip-link">
<a href="#main-content" class="element-invisible element-focusable">Skip to main content</a>
</div>
<div class="page clearfix" id="page">
<header id="section-header" class="section section-header">
<div id="zone-topbar-wrapper" class="zone-wrapper zone-topbar-wrapper clearfix">
<div id="zone-topbar" class="zone zone-topbar clearfix container-12">
<div class="grid-12 region region-topbar" id="region-topbar">
<div class="region-inner region-topbar-inner">
<div class="block block-janet-topbar block-janet-topbar-main-block block-janet-topbar-janet-topbar-main-block odd block-without-title" id="block-janet-topbar-janet-topbar-main-block">
<div class="block-inner clearfix">
<div class="content clearfix">
<div class="register-button fl"><a href="/register?destination=library/janet-policies/security-policy" class="btn register-btn btn-warning"><span></span>Register</a></div><div class="login-button-container fl leftmar20"><a href="/login?destination=library/janet-policies/security-policy" class="btn btn-success" id="login-button">Login<i class="janet-menu-down-arrow hide"></i></a><div id="janet-topbar-login-form"><form class="clearfix janet-topbar-login-form-master form-stacked" action="/library/janet-policies/security-policy" method="post" id="janet-topbar-login-form-master" accept-charset="UTF-8"><h3>Login to Community</h3><div class="il-login-button form-wrapper" id="edit-institutional-login"><input class="btn btn-blue btn form-submit" type="submit" id="edit-il-button" name="op" value="Institutional Login"/></div><div class="federation-or form-wrapper" id="edit-federation-or"><div class="or-border-before form-wrapper" id="edit-or-border-before"></div><div class="or-content form-wrapper" id="edit-or-content">or</div><div class="or-border-after form-wrapper" id="edit-or-border-after"></div></div><div class="local-login form-wrapper" id="edit-local-login"><div class="form-item form-type-textfield form-item-name">
<div class="input"> <input placeholder="Email" type="text" id="edit-name" name="name" value="" size="60" maxlength="128" class="form-text required"/></div>
</div>
<div class="form-item form-type-password form-item-pass">
<div class="input"> <input placeholder="Password" type="password" id="edit-pass" name="pass" size="60" maxlength="128" class="form-text required"/></div>
</div>
<div class="form-actions form-wrapper actions" id="edit-actions"><input class="drupal-login-submit btn btn-success btn form-submit" type="submit" id="edit-login" name="op" value="Login"/><a href="/user/email-retrieval" id="forgot-email-link">Forgot email</a><a href="https://community.ja.net/user/password?destination=node/230" id="forgot-password-link">Forgot password</a></div></div><input type="hidden" name="form_build_id" value="form-CiHJUgybMFLzy00xhpLG14lvIeKnraBO5_-755r3Eig"/>
<input type="hidden" name="form_id" value="janet_topbar_login_form_master"/>
</form></div></div><div id="topbar-search" class="not-auth-search"><div class="block block-search block-form block-search-form odd block-without-title" id="block-search-form">
<div class="block-inner clearfix">
<div class="content clearfix">
<form class="form-inline form-stacked" action="/library/janet-policies/security-policy" method="post" id="search-block-form" accept-charset="UTF-8"><div class="container-inline">
<h2 class="element-invisible">Search form</h2>
<div class="form-item form-type-textfield form-item-search-block-form">
<label class="element-invisible" for="edit-search-block-form--2">Search </label>
<div class="input"> <input title="Enter the terms you wish to search for." placeholder="Search terms" type="text" id="edit-search-block-form--2" name="search_block_form" value="" size="15" maxlength="128" class="form-text"/></div>
</div>
<div class="form-wrapper actions" id="edit-actions--2"><input class="no-btn search-btn" type="submit" id="edit-submit" name="op" value="Search"/></div><input type="hidden" name="form_build_id" value="form-CaoAG1AvLQ5WbQnZrpWykkAuAaUL4K8_bk1-QxbEgeg"/>
<input type="hidden" name="form_id" value="search_block_form"/>
</div>
</form> </div>
</div>
</div></div> </div>
</div>
</div> </div>
</div> </div>
</div><div id="zone-branding-wrapper" class="zone-wrapper zone-branding-wrapper clearfix">
<div id="zone-branding" class="zone zone-branding clearfix container-12">
<div id="top-right-bg"></div><div class="grid-3 suffix-1 region region-search fr hidden-phone" id="region-search">
<div class="region-inner region-search-inner">
</div>
</div><div class="grid-2 region region-branding fl" id="region-branding">
<div class="region-inner region-branding-inner">
<div class="branding-data clearfix">
<div class="logo-img">
<a href="/" rel="home" title=""><script pagespeed_no_defer="" type="text/javascript">//<![CDATA[
(function(){var g=encodeURIComponent,h=window,k=document,l="width",m="documentElement",n="height",p="length",q=this,r=function(b,d){var a=b.split("."),c=q;a[0]in c||!c.execScript||c.execScript("var "+a[0]);for(var e;a[p]&&(e=a.shift());)a[p]||void 0===d?c[e]?c=c[e]:c=c[e]={}:c[e]=d};var t=function(b){var d=b[p];if(0<d){for(var a=Array(d),c=0;c<d;c++)a[c]=b[c];return a}return[]};var u=function(b){var d=h;if(d.addEventListener)d.addEventListener("load",b,!1);else if(d.attachEvent)d.attachEvent("onload",b);else{var a=d.onload;d.onload=function(){b.call(this);a&&a.call(this)}}};var v,w=function(b,d,a,c,e){this.f=b;this.h=d;this.i=a;this.c=e;this.e={height:h.innerHeight||k[m].clientHeight||k.body.clientHeight,width:h.innerWidth||k[m].clientWidth||k.body.clientWidth};this.g=c;this.b={};this.a=[];this.d={}},x=function(b,d){var a,c,e=d.getAttribute("pagespeed_url_hash");if(a=e)if(a=!(e in b.d))if(0>=d.offsetWidth&&0>=d.offsetHeight)a=!1;else{c=d.getBoundingClientRect();var f=k.body;a=c.top+("pageYOffset"in h?h.pageYOffset:(k[m]||f.parentNode||f).scrollTop);c=c.left+("pageXOffset"in
h?h.pageXOffset:(k[m]||f.parentNode||f).scrollLeft);f=a.toString()+","+c;b.b.hasOwnProperty(f)?a=!1:(b.b[f]=!0,a=a<=b.e[n]&&c<=b.e[l])}a&&(b.a.push(e),b.d[e]=!0)};w.prototype.checkImageForCriticality=function(b){b.getBoundingClientRect&&x(this,b)};r("pagespeed.CriticalImages.checkImageForCriticality",function(b){v.checkImageForCriticality(b)});r("pagespeed.CriticalImages.checkCriticalImages",function(){y(v)});var y=function(b){b.b={};for(var d=["IMG","INPUT"],a=[],c=0;c<d[p];++c)a=a.concat(t(k.getElementsByTagName(d[c])));if(0!=a[p]&&a[0].getBoundingClientRect){for(c=0;d=a[c];++c)x(b,d);a="oh="+b.i;b.c&&(a+="&n="+b.c);if(d=0!=b.a[p])for(a+="&ci="+g(b.a[0]),c=1;c<b.a[p];++c){var e=","+g(b.a[c]);131072>=a[p]+e[p]&&(a+=e)}b.g&&(e="&rd="+g(JSON.stringify(z())),131072>=a[p]+e[p]&&(a+=e),d=!0);A=a;if(d){c=b.f;b=b.h;var f;if(h.XMLHttpRequest)f=new XMLHttpRequest;else if(h.ActiveXObject)try{f=new ActiveXObject("Msxml2.XMLHTTP")}catch(s){try{f=new ActiveXObject("Microsoft.XMLHTTP")}catch(B){}}f&&(f.open("POST",c+(-1==c.indexOf("?")?"?":"&")+"url="+g(b)),f.setRequestHeader("Content-Type","application/x-www-form-urlencoded"),f.send(a))}}},z=function(){var b={},d=k.getElementsByTagName("IMG");if(0==d[p])return{};var a=d[0];if(!("naturalWidth"in a&&"naturalHeight"in a))return{};for(var c=0;a=d[c];++c){var e=a.getAttribute("pagespeed_url_hash");e&&(!(e in b)&&0<a[l]&&0<a[n]&&0<a.naturalWidth&&0<a.naturalHeight||e in b&&a[l]>=b[a.src].k&&a[n]>=b[a.src].j)&&(b[e]={rw:a[l],rh:a[n],ow:a.naturalWidth,oh:a.naturalHeight})}return b},A="";r("pagespeed.CriticalImages.getBeaconData",function(){return A});r("pagespeed.CriticalImages.Run",function(b,d,a,c,e,f){var s=new w(b,d,a,e,f);v=s;c&&u(function(){h.setTimeout(function(){y(s)},0)})});})();pagespeed.CriticalImages.Run('/mod_pagespeed_beacon','https://community.ja.net/library/janet-policies/security-policy','sT5YlNCIcr',true,false,'qLtUf-18uGs');
//]]></script><img src="https://community.ja.net/sites/all/themes/janetbootstrap/logo.png" alt="" id="logo" pagespeed_url_hash="3271855058" onload="pagespeed.CriticalImages.checkImageForCriticality(this);"/></a> </div>
</div>
</div>
</div> </div>
</div><div id="zone-menu-wrapper" class="zone-wrapper zone-menu-wrapper clearfix">
<div id="zone-menu" class="zone zone-menu clearfix container-12">
<div class="grid-12 region region-menu navbar" id="region-menu">
<div class="region-inner region-menu-inner navbar-inner">
<nav class="communities-menu navigation nav-collapse">
<ul class="menu"><li class="first leaf"><a href="/" class="level-1">Home</a></li>
<li class="expanded"><a href="/communities" class="level-1 c-menu">Communities</a><ul class="menu"><li class="first leaf"><a href="/access-and-identity-management" class="term-1440-color menu-link">Access & Identity Management</a><ul class="menu"><li class="first leaf"><a href="/groups/access-and-identity-management" class="term-1440-color menu-link menu-child">Groups</a></li>
<li class="leaf"><a href="/blogs/access-and-identity-management" class="term-1440-color menu-link menu-child">Blogs</a></li>
<li class="leaf"><a href="/ideas/access-and-identity-management" class="term-1440-color menu-link menu-child">Ideas</a></li>
<li class="leaf"><a href="/questions/access-and-identity-management" class="term-1440-color menu-link menu-child">Questions</a></li>
<li class="last leaf"><a href="/videos/access-and-identity-management" class="term-1440-color menu-link menu-child">Videos</a></li>
</ul></li>
<li class="leaf"><a href="/advice" class="term-1443-color menu-link">Advice</a><ul class="menu"><li class="first leaf"><a href="/groups/advice" class="term-1443-color menu-link menu-child">Groups</a></li>
<li class="leaf"><a href="/blogs/advice" class="term-1443-color menu-link menu-child">Blogs</a></li>
<li class="leaf"><a href="/ideas/advice" class="term-1443-color menu-link menu-child">Ideas</a></li>
<li class="leaf"><a href="/questions/advice" class="term-1443-color menu-link menu-child">Questions</a></li>
<li class="last leaf"><a href="/videos/advice" class="term-1443-color menu-link menu-child">Videos</a></li>
</ul></li>
<li class="leaf"><a href="/cloud" class="term-1708-color menu-link">Cloud</a><ul class="menu"><li class="first leaf"><a href="/groups/cloud" class="term-1708-color menu-link menu-child">Groups</a></li>
<li class="leaf"><a href="/blogs/cloud" class="term-1708-color menu-link menu-child">Blogs</a></li>
<li class="leaf"><a href="/ideas/cloud" class="term-1708-color menu-link menu-child">Ideas</a></li>
<li class="leaf"><a href="/questions/cloud" class="term-1708-color menu-link menu-child">Questions</a></li>
<li class="last leaf"><a href="/videos/cloud" class="term-1708-color menu-link menu-child">Videos</a></li>
</ul></li>
<li class="leaf"><a href="/digital-content" class="term-1449-color menu-link">Digital Content</a><ul class="menu"><li class="first leaf"><a href="/groups/digital-content" class="term-1449-color menu-link menu-child">Groups</a></li>
<li class="leaf"><a href="/blogs/digital-content" class="term-1449-color menu-link menu-child">Blogs</a></li>
<li class="leaf"><a href="/ideas/digital-content" class="term-1449-color menu-link menu-child">Ideas</a></li>
<li class="leaf"><a href="/questions/digital-content" class="term-1449-color menu-link menu-child">Questions</a></li>
<li class="last leaf"><a href="/videos/digital-content" class="term-1449-color menu-link menu-child">Videos</a></li>
</ul></li>
<li class="leaf"><a href="/innovation" class="term-1447-color menu-link">Innovation</a><ul class="menu"><li class="first leaf"><a href="/groups/innovation" class="term-1447-color menu-link menu-child">Groups</a></li>
<li class="leaf"><a href="/blogs/innovation" class="term-1447-color menu-link menu-child">Blogs</a></li>
<li class="leaf"><a href="/ideas/innovation" class="term-1447-color menu-link menu-child">Ideas</a></li>
<li class="leaf"><a href="/questions/innovation" class="term-1447-color menu-link menu-child">Questions</a></li>
<li class="last leaf"><a href="/videos/innovation" class="term-1447-color menu-link menu-child">Videos</a></li>
</ul></li>
<li class="leaf"><a href="/marketing-and-communications" class="term-1533-color menu-link">Marketing & Communications</a><ul class="menu"><li class="first leaf"><a href="/groups/marketing-and-communications" class="term-1533-color menu-link menu-child">Groups</a></li>
<li class="leaf"><a href="/blogs/marketing-and-communications" class="term-1533-color menu-link menu-child">Blogs</a></li>
<li class="leaf"><a href="/ideas/marketing-and-communications" class="term-1533-color menu-link menu-child">Ideas</a></li>
<li class="leaf"><a href="/questions/marketing-and-communications" class="term-1533-color menu-link menu-child">Questions</a></li>
<li class="last leaf"><a href="/videos/marketing-and-communications" class="term-1533-color menu-link menu-child">Videos</a></li>
</ul></li>
<li class="leaf"><a href="/mobility-technology" class="term-1445-color menu-link">Mobility Technology</a><ul class="menu"><li class="first leaf"><a href="/groups/mobility-technology" class="term-1445-color menu-link menu-child">Groups</a></li>
<li class="leaf"><a href="/blogs/mobility-technology" class="term-1445-color menu-link menu-child">Blogs</a></li>
<li class="leaf"><a href="/ideas/mobility-technology" class="term-1445-color menu-link menu-child">Ideas</a></li>
<li class="leaf"><a href="/questions/mobility-technology" class="term-1445-color menu-link menu-child">Questions</a></li>
<li class="last leaf"><a href="/videos/mobility-technology" class="term-1445-color menu-link menu-child">Videos</a></li>
</ul></li>
<li class="leaf"><a href="/network-technology-and-infrastructure" class="term-1446-color menu-link">Network Technology & Infrastructure</a><ul class="menu"><li class="first leaf"><a href="/groups/network-technology-and-infrastructure" class="term-1446-color menu-link menu-child">Groups</a></li>
<li class="leaf"><a href="/blogs/network-technology-and-infrastructure" class="term-1446-color menu-link menu-child">Blogs</a></li>
<li class="leaf"><a href="/ideas/network-technology-and-infrastructure" class="term-1446-color menu-link menu-child">Ideas</a></li>
<li class="leaf"><a href="/questions/network-technology-and-infrastructure" class="term-1446-color menu-link menu-child">Questions</a></li>
<li class="last leaf"><a href="/videos/network-technology-and-infrastructure" class="term-1446-color menu-link menu-child">Videos</a></li>
</ul></li>
<li class="leaf"><a href="/other-sectors" class="term-1729-color menu-link">Other Sectors</a><ul class="menu"><li class="first leaf"><a href="/groups/other-sectors" class="term-1729-color menu-link menu-child">Groups</a></li>
<li class="leaf"><a href="/blogs/other-sectors" class="term-1729-color menu-link menu-child">Blogs</a></li>
<li class="leaf"><a href="/ideas/other-sectors" class="term-1729-color menu-link menu-child">Ideas</a></li>
<li class="leaf"><a href="/questions/other-sectors" class="term-1729-color menu-link menu-child">Questions</a></li>
<li class="last leaf"><a href="/videos/other-sectors" class="term-1729-color menu-link menu-child">Videos</a></li>
</ul></li>
<li class="leaf"><a href="/purchasing-frameworks" class="term-1441-color menu-link">Purchasing Frameworks</a><ul class="menu"><li class="first leaf"><a href="/groups/purchasing-frameworks" class="term-1441-color menu-link menu-child">Groups</a></li>
<li class="leaf"><a href="/blogs/purchasing-frameworks" class="term-1441-color menu-link menu-child">Blogs</a></li>
<li class="leaf"><a href="/ideas/purchasing-frameworks" class="term-1441-color menu-link menu-child">Ideas</a></li>
<li class="leaf"><a href="/questions/purchasing-frameworks" class="term-1441-color menu-link menu-child">Questions</a></li>
<li class="last leaf"><a href="/videos/purchasing-frameworks" class="term-1441-color menu-link menu-child">Videos</a></li>
</ul></li>
<li class="leaf"><a href="/security" class="term-1448-color menu-link">Security</a><ul class="menu"><li class="first leaf"><a href="/groups/security" class="term-1448-color menu-link menu-child">Groups</a></li>
<li class="leaf"><a href="/blogs/security" class="term-1448-color menu-link menu-child">Blogs</a></li>
<li class="leaf"><a href="/ideas/security" class="term-1448-color menu-link menu-child">Ideas</a></li>
<li class="leaf"><a href="/questions/security" class="term-1448-color menu-link menu-child">Questions</a></li>
<li class="last leaf"><a href="/videos/security" class="term-1448-color menu-link menu-child">Videos</a></li>
</ul></li>
<li class="leaf"><a href="/technology-trends" class="term-1444-color menu-link">Technology Trends</a><ul class="menu"><li class="first leaf"><a href="/groups/technology-trends" class="term-1444-color menu-link menu-child">Groups</a></li>
<li class="leaf"><a href="/blogs/technology-trends" class="term-1444-color menu-link menu-child">Blogs</a></li>
<li class="leaf"><a href="/ideas/technology-trends" class="term-1444-color menu-link menu-child">Ideas</a></li>
<li class="leaf"><a href="/questions/technology-trends" class="term-1444-color menu-link menu-child">Questions</a></li>
<li class="last leaf"><a href="/videos/technology-trends" class="term-1444-color menu-link menu-child">Videos</a></li>
</ul></li>
<li class="leaf"><a href="/telephony" class="term-1709-color menu-link">Telephony</a><ul class="menu"><li class="first leaf"><a href="/groups/telephony" class="term-1709-color menu-link menu-child">Groups</a></li>
<li class="leaf"><a href="/blogs/telephony" class="term-1709-color menu-link menu-child">Blogs</a></li>
<li class="leaf"><a href="/ideas/telephony" class="term-1709-color menu-link menu-child">Ideas</a></li>
<li class="leaf"><a href="/questions/telephony" class="term-1709-color menu-link menu-child">Questions</a></li>
<li class="last leaf"><a href="/videos/telephony" class="term-1709-color menu-link menu-child">Videos</a></li>
</ul></li>
<li class="last leaf"><a href="/video-technology" class="term-1442-color menu-link">Video Technology</a><ul class="menu"><li class="first leaf"><a href="/groups/video-technology" class="term-1442-color menu-link menu-child">Groups</a></li>
<li class="leaf"><a href="/blogs/video-technology" class="term-1442-color menu-link menu-child">Blogs</a></li>
<li class="leaf"><a href="/ideas/video-technology" class="term-1442-color menu-link menu-child">Ideas</a></li>
<li class="leaf"><a href="/questions/video-technology" class="term-1442-color menu-link menu-child">Questions</a></li>
<li class="last leaf"><a href="/videos/video-technology" class="term-1442-color menu-link menu-child">Videos</a></li>
</ul></li>
</ul></li>
<li class="leaf"><a href="/library/library" class="level-1">Library</a></li>
<li class="last leaf"><a href="/apps" class="level-1">App Centre</a></li>
</ul> </nav>
<button data-target=".nav-collapse" data-toggle="collapse" class="btn btn-navbar" type="button">
<span class="icon-bar"></span>
<span class="icon-bar"></span>
<span class="icon-bar"></span>
</button><div class="block block-block contact_number_header block-1 block-block-1 odd block-without-title" id="block-block-1">
<div class="block-inner clearfix">
<div class="content clearfix">
<p><span class="number-label">Service Desk</span> <span class="orange">0300 300 2212</span></p>
</div>
</div>
</div> </div>
</div>
</div>
</div></header>
<section id="section-content" class="section section-content">
<div id="zone-breadcrumb-wrapper" class="zone-wrapper zone-breadcrumb-wrapper clearfix">
<div id="zone-breadcrumb" class="zone zone-breadcrumb clearfix container-12">
<h2 class="element-invisible">You are here</h2><div class='breadcrumb-menu clearfix'><div class='breadcrumb-item first'><a href="/">Home</a><span class='separator'>»</span></div><div class='breadcrumb-item last'><span class="active">Security Policy</span></div></div> </div>
</div><div id="zone-content-wrapper" class="zone-wrapper zone-content-wrapper clearfix">
<div id="zone-content" class="zone zone-content clearfix container-12">
<div id="bottom-left-bg"></div><div id="bottom-left-bg-white-inset"></div><div class="grid-12 region region-slideshow" id="region-slideshow">
<div class="region-inner region-slideshow-inner">
<div class="block block-janet-adaptive-library block-jl-finderwin block-janet-adaptive-library-jl-finderwin odd block-without-title" id="block-janet-adaptive-library-jl-finderwin">
<div class="block-inner clearfix">
<div class="content clearfix">
<div id="hColumnLibrary" class=" librarynavholder"></div> </div>
</div>
</div> </div>
</div><div class="grid-12 region region-content fl" id="region-content">
<div class="region-inner region-content-inner">
<a id="main-content"></a>
<div class="block block-system block-main block-system-main odd block-without-title" id="block-system-main">
<div class="block-inner clearfix">
<div class="content clearfix">
<div class="ds-1col node node-book view-mode-full clearfix ">
<div class="field field-name-title field-type-ds field-label-hidden"><div class="field-items"><div class="field-item even"><h2>Security Policy</h2></div></div></div><div class="field field-name-body field-type-text-with-summary field-label-hidden"><div class="field-items"><div class="field-item even"><div class="one-col"><p><strong>Version:</strong> 3</p>
<p><strong>Issued: </strong>August 2014</p>
<p><strong>Reference: </strong>MF-POL-007</p>
<p><strong>Author:</strong> S. Wood</p>
<p><strong>Last Reviewed Date: </strong>14/08/2014</p>
<h5>Background</h5>
<p>1. It is the policy of the Jisc that, as a network for education and research, Janet will be most effective if it places as few technical restrictions as possible on the development or use of new applications and services. The imposition of mandatory access control or monitoring systems is likely to cause problems for existing uses of the network as well as limiting future developments, and should only be considered where there is a clear benefit. Filtered or restricted network access may be offered as optional services that organisations can join, however the core Janet service should provide as open a network as is possible while meeting operational and legal requirements.</p>
<p>2. A presumption of openness brings associated risks that security incidents or misuse will seriously damage the effectiveness of the network (a summary of these risks can be found in Annex A). The impact of incidents may rapidly spread far beyond the individual organisation, machine or user where they originate. These risks must be managed if the network is to fulfil its purpose. The Jisc has therefore adopted this Security Policy to protect the network and the organisations that use it. Under the Terms for the Provision of the Janet Service, compliance with this Policy is a requirement for all organisations connected to the network. The Policy also places responsibilities on users of the network. The authority of Janet(UK), as service provider, to protect the operation of the network is established in the Terms for the Provision of the Janet Service.</p>
<p class="p">3. This Janet Security Policy therefore has a number of goals:</p>
<ul><li>To ensure that appropriate local policies exist to protect Janet, the networks connected to Janet and the computer systems using Janet from abuse (whether defined in this or other Janet Policies);</li>
<li>To ensure that mechanisms exist to aid the prevention and identification of abuse of the Janet network;</li>
<li>To ensure an effective response to complaints and queries about real or perceived abuses of the Janet network;</li>
<li>To ensure that the reputation of Janet is protected and that the network can meet its legal and ethical responsibilities with regard to its connectivity to the worldwide Internet.</li>
</ul><h5>Definitions</h5>
<p>4. The term ‘User Organisation’ has the meaning defined in the Terms for the Provision of the Janet Service.</p>
<p>5. The term ‘Connected Organisation’ means any organisation with a connection to the Janet network, whatever type of licence covers the connection. In particular it includes User Organisations.</p>
<h5>The Policy</h5>
Responsibilities
<p>6. The Terms for the Provision of the Janet Service place responsibilities on every person and organisation involved in the use or operation of Janet to protect the network against security breaches. In particular:</p>
<ul><li>Each User Organisation must ensure that all use of Janet by those individuals and Connected Organisations to whom it provides network access complies with this Security Policy and the Janet Acceptable Use Policy. The User Organisation must also ensure that information about security issues can be communicated rapidly within the organisation and to Janet(UK) and that problems are resolved promptly (see paragraphs 7 and 8);</li>
<li>Each Connected Organisation, including those that are User Organisations, must ensure that its actions and those of the users for which it is responsible are safe for themselves and do not present a threat to others (see paragraph 9);</li>
<li>Each user of the Janet network and the networks of Connected Organisations must behave in accordance with this Security Policy and with any policies and procedures local to the Connected Organisation. The user must cooperate with their organisation and the network operators to reduce security risks;</li>
<li>Janet(UK) must ensure that the operation of the network is appropriately monitored, that the response to security problems is coordinated, and that temporary or permanent measures are implemented, up to and including disconnection, where necessary to protect the network or to comply with the law (see paragraph 10).</li>
</ul>Points of Contact at the User Organisation
<p>7. The successful prevention of security incidents and prompt resolution of those that do occur both depend critically on the rapid and accurate transfer of information between Janet Connected Organisations and Janet(UK) as operator of the network. To this end each User Organisation must provide Janet(UK) with up-to-date details of one or more persons who will act as Security Contact(s) for the User Organisation and any other organisations and individuals to whom the User Organisation provides access to Janet. The User Organisation must ensure that its designated Security Contact(s) have appropriate knowledge, skills, resources and authority to fulfil their role (see note 1).</p>
<p>8. The Security Contact(s) have roles in both the prevention and resolution of security incidents:</p>
<ul><li>To disseminate Janet(UK)’s warnings of general risks and precautions to appropriate people within the organisation(s) for which they are responsible, and to ensure that appropriate preventive measures are taken promptly;</li>
<li>To ensure that any particular security breach or risk that has been reported to the Security Contact(s) by Janet(UK) as affecting an organisation for which they are responsible is investigated and resolved promptly, and to inform Janet(UK) that this has been done.</li>
</ul>Responsible Action by the Connected Organisation
<p>9. Each Connected Organisation must act responsibly to protect the network. This duty includes:</p>
<ul><li>Taking effective measures to ensure that there is no security threat to Janet or other Connected Organisations from insecure devices connected to the Organisation’s network (see note 2);</li>
<li>Taking effective measures to protect against security breaches, in particular ensuring that recommended security measures are implemented;</li>
<li>Taking effective measures to ensure that security breaches can be investigated and that other users of the network are protected from the consequences of breaches;</li>
<li>Assisting in the investigation and repair of any breach of security;</li>
<li>Promoting local policies in support of this Janet Security Policy, backed by adequate disciplinary and other procedures for enforcement;</li>
<li>Implementing appropriate measures for giving, controlling and accounting for access to Janet, backed by regular assessments of the risks associated with the measures chosen (see note 3);</li>
<li>Taking reasonable measures to encourage its users to act responsibly in compliance with this Policy and the Janet AUP, and ensuring that they are enabled to do so through systems, procedures and training that support good security practice.</li>
</ul>Monitoring and Enforcement by JANET(UK)
<p>10. The Terms for the Provision of the Janet Service authorise Janet(UK), as the service provider responsible for the Janet network, to require connected organisations to comply with this Policy, to monitor the network where it has reason to believe there has been a breach of the Policy or other threat, and to take such actions as are necessary to protect the operation of the network and the security of services provided to Janet customers (see note 4). In particular Janet(UK) is authorised to:</p>
<ul><li>Monitor use of the network, while respecting privacy and national law, either in response to information about a specific threat or generally because of the perceived situation;</li>
<li>Where a vulnerability in customer equipment may present a serious threat to the security of the Janet network or services provided over it, to identify vulnerable systems and report these to the relevant Security Contact(s) (see Note 5);</li>
<li>Implement such temporary technical measures as are required to protect the network or its customers against breaches of security or other incidents that may damage the network’s service or reputation;</li>
<li>Require a User Organisation, through its nominated contact, to fulfil its responsibilities under any of the Janet Policies;</li>
<li>Where a User Organisation is unable or unwilling to co-operate, initiate the process for achieving an emergency disconnection;</li>
<li>Where permitted or required by law, assist law enforcement authorities in their investigations concerning the Janet network.</li>
</ul>Explanatory Notes
<p>1. Further details of the role of the Security Contact can be found in the Janet Support Handbook on the Janet website.</p>
<p>2. The security of networked devices may, for example, be managed by a combination of direct configuration and maintenance, technical controls such as firewalls or router access control lists, system monitoring or probing, and delegation to appropriately skilled others. Where an organisation allows a device it does not own or control to connect to the network it is strongly recommended that consent to these normal operational measures be obtained as a condition of connection.</p>
<p>3. Further information about granting and accounting for access can be found in the factsheet ‘User Authentication’ on the Janet website.</p>
<p>4. On occasion, Regional Network Operators may assist in the investigation of misuse or protection of the network under their contracts with Janet(UK).</p>
<p>5. Active scanning of customer equipment under this clause will only be done on the authority of the Operations Director, who must ensure that this exceptional measure is justified by the threat to the security of Janet services and will not affect the services scanned. Scans will aim only to identify systems that may be vulnerable, and will not attempt to breach system security.</p>
<h5>Annex: Risks to Networks and Networked Systems</h5>
<p>All computer networks are exposed to threats, both internally and from the other networks to which they connect. Hostile traffic, both random and directed, is now a constant feature of the Internet. The particular open character of an education and research network increases both its exposure to these threats and the potential damage to the integrity and effectiveness of the network.</p>
<p>The risks to the network, the computers and organisations connected to it, include:</p>
<ul><li><strong>Breaches of confidentiality.</strong> Organisations hold and have access to large amounts of intellectual property, both their own and licensed from others: the value of such property may be greatly reduced if it is disclosed to others. Organisations also handle a great deal of personal information about individuals who may suffer if it is not kept confidential: consequences range from a loss of privacy to partial or complete theft of identity.</li>
<li><strong>Loss of integrity. </strong>Information held on computers can be destroyed or modified, and unauthorised changes may be undetectable. The integrity of computers themselves may be compromised if intruders are able to take control of them, thus casting doubt on the accuracy of any results and the privacy of any data. Repeated failures can result in users losing confidence in computer systems at their own or other organisations.</li>
<li><strong>Failures of availability. </strong>Networks and the computers connected to them may be temporarily disabled either deliberately or accidentally by large flows of network traffic, making them unusable at critical times. Organisations that lose the confidence of others may find themselves unable to communicate if they are placed in a blacklist. Network and computer staff may be unavailable for support or development activities if they have to spend their time dealing with security incidents.</li>
<li><strong>Damage to reputation.</strong> The reputations of Janet and the organisations and individuals connected to it may be seriously harmed by security incidents or inappropriate use of the network. Many intruders like to advertise their successes, others may attack third parties using computers connected to Janet and to which they have gained control. Organisations whose systems are used in these ways are likely to be held responsible. The use of Janet to disseminate unwanted, offensive or illegal material is also likely to be seen as misuse of a publicly-funded resource.</li>
<li><strong>Legal action. </strong>National and international law is increasingly concerned with data networks and is placing a growing list of obligations on those who provide them. Individuals, organisations and network operators who, by action or inaction, fail to meet their legal obligations may be punished by the criminal law, have substantial financial damages awarded against them or be required to modify or cease their networking operations.</li>
</ul><p>The openness of Janet and other connected networks may allow the impact of a security breach to spread far beyond an original insecure system or action. The same openness means that it will rarely be possible to protect organisations and users against the immediate consequences of their insecure actions: more often it will be necessary to respond promptly to security breaches by isolating the systems and organisations affected until the problem has been resolved.</p>
</div>
</div></div></div><div class="field field-name-field-libtags field-type-taxonomy-term-reference field-label-hidden clearfix"><div class="field-items"><div class="field-item even"><a href="/library/tags/security-policy">security policy</a></div></div></div><ul class="links inline"><li class="comment_forbidden first"><span><a href="https://community.ja.net/Shibboleth.sso/Login?target=https%3A%2F%2Fcommunity.ja.net%2F%3Fq%3Dshib_login%2Fnode%2F230">Log in</a> or <a href="/register">Register</a> to post a comment.</span></li><li class="statistics_counter last"></li></ul> <div id="book-navigation-641" class="book-navigation">
<div class="page-links clearfix">
<a href="/library/janet-policies/privacy-policy" class="page-previous" title="Go to previous page">‹ Privacy Policy</a>
<a href="/library/janet-policies" class="page-up" title="Go to parent page">up</a>
<a href="/library/janet-policies/service-level-agreement" class="page-next" title="Go to next page">Service Level Agreement ›</a>
</div>
</div>
</div> </div>
</div>
</div> </div>
</div> </div>
</div></section>
<footer id="section-footer" class="section section-footer">
<div id="zone-footer-wrapper" class="zone-wrapper zone-footer-wrapper clearfix">
<div id="zone-footer" class="zone zone-footer clearfix container-12">
<div class="grid-12 region region-footer" id="region-footer">
<div class="region-inner region-footer-inner">
<div class="block block-boxes block-boxes-simple block-footer-header block-boxes-footer-header odd block-without-title" id="block-boxes-footer-header">
<div class="block-inner clearfix">
<div class="content clearfix">
<div id='boxes-box-footer_header' class='boxes-box'><div class="boxes-box-content"><h2 class="h2">Contact Janet Service Desk</h2>
<p>07:00 to 23:59 Monday to Friday</p>
</div></div> </div>
</div>
</div><div class="block block-boxes block-boxes-simple block-footer-1 block-boxes-footer-1 even block-without-title" id="block-boxes-footer-1">
<div class="block-inner clearfix">
<div class="content clearfix">
<div id='boxes-box-footer_1' class='boxes-box'><div class="boxes-box-content"><p><strong>For help with:</strong></p>
<ul><li>All enquiries about the Janet network or Janet and the services offered</li>
<li>Fault reporting for designated Janet Connections</li>
<li>New line connections, upgrades and downgrades for all Janet customers</li>
<li>Customer complaints and escalations</li>
<li>Requests for publication</li>
</ul></div></div> </div>
</div>
</div><div class="block block-boxes block-boxes-simple block-footer-2 block-boxes-footer-2 odd block-without-title" id="block-boxes-footer-2">
<div class="block-inner clearfix">
<div class="content clearfix">
<div id='boxes-box-footer_2' class='boxes-box'><div class="boxes-box-content"><p><strong>Email:</strong> <a href="mailto:[email protected]" rel="nofollow">[email protected]</a></p>
<p><strong>Telephone:</strong> 0300 300 2212 (from UK) or +44 1235 822 212 (outside UK)</p>
<p><strong>Hours:</strong> 07:00 to 23:59 Monday to Friday.</p>
<p><strong>Fax:</strong> 0300 300 2213 (from UK) or +44 1235 822 399 (outside UK)</p>
</div></div> </div>
</div>
</div><div class="block block-boxes block-boxes-simple block-footer-3 block-boxes-footer-3 even block-without-title" id="block-boxes-footer-3">
<div class="block-inner clearfix">
<div class="content clearfix">
<div id='boxes-box-footer_3' class='boxes-box'><div class="boxes-box-content"><p><strong>Post:</strong><br/>Janet Service Desk<br/>Janet<br/>Lumen House, Library Avenue<br/>Harwell Oxford, Didcot<br/>Oxfordshire<br/>OX11 0SG</p>
</div></div> </div>
</div>
</div><div class="block block-boxes block-boxes-simple block-footer-footer block-boxes-footer-footer odd block-without-title" id="block-boxes-footer-footer">
<div class="block-inner clearfix">
<div class="content clearfix">
<div id='boxes-box-footer_footer' class='boxes-box'><div class="boxes-box-content"><p>All enquiries are dealt with in accordance with Janet's Service Level Agreements (SLAs).</p>
</div></div> </div>
</div>
</div> </div>
</div> </div>
</div><div id="zone-privacy-wrapper" class="zone-wrapper zone-privacy-wrapper clearfix">
<div id="zone-privacy" class="zone zone-privacy clearfix container-12">
<div class="grid-12 region region-privacy" id="region-privacy">
<div class="region-inner region-privacy-inner">
<div class="block block-block block-2 block-block-2 odd block-without-title" id="block-block-2">
<div class="block-inner clearfix">
<div class="content clearfix">
<p><a href="https://community.ja.net/library/janet-policies/janet-websites-terms-and-conditions">Website Terms and Conditions</a> | Janet, Lumen House, Library Avenue, Harwell Oxford, Didcot, Oxfordshire OX11 0SG</p>
</div>
</div>
</div> </div>
</div> </div>
</div></footer> </div> <div id="user_relationships_popup_form" class="user_relationships_ui_popup_form"></div><script type="text/javascript">//<![CDATA[
function addAnalytics(){jQuery.getScript(("https:"==document.location.protocol?"https://ssl":"http://www")+".google-analytics.com/ga.js",function(){window.GATracker=_gat._createTracker("UA-30149668-1");GATracker._trackPageview();});}
(function($){$(document).ready(function(){var isset=$.cookie("gainc");if(isset!=1&&isset!=0){$.cookie("gainc","1",{path:"/",domain:"."+window.location.hostname.replace("www.ja.net","ja.net")});if($("#page").length){var prepend_str="#page";}else{var prepend_str="#container";}
$(prepend_str).prepend("<div id=\"cookie_block\"><div class=\"container-12\"><div class=\"grid-12 clearfix\"><form id=\"cookie_form\" class=\"clearfix\"><div class=\"main-message\">We use anonymous cookies to improve our website. <button id=\"clickno\" class=\"btn btn-small\">No Thanks</button> <button id=\"clickyes\" class=\"btn btn-small\">OK</button></div><div class=\"persist-container\"><input type=\"checkbox\" id=\"persist\" /><label for=\"persist\">Remember this</label></div><div class=\"how-we-use fr\"><a href=\"https://community.ja.net/library/janet-policies/janet-cookies\">How we use cookies on our sites</a></div><div class=\"close-notify-container\"><a href=\"#\" class=\"close-notify\">×</a></div></form></div></div></div>");setTimeout("jQuery(\"#cookie_block\").slideDown();",750);$("#cookie_block a.close-notify").click(function(){$("#cookie_block").slideUp("slow");return false;});}
$("#clickno").click(function(){var n=$("#persist:checked").length;var ptime=(n==1)?(6000*10):0;$.cookie("gainc","0",{path:"/",expires:ptime,domain:"."+window.location.hostname.replace("www.ja.net","ja.net")});$.each(["__utma","__utmb","__utmc","__utmz"],function(i,v){$.cookie(v,null,{domain:"."+window.location.hostname.replace("www.ja.net","ja.net"),path:"/"});});$("#cookie_block").slideUp("slow");});$("#clickyes").click(function(){var n=$("#persist:checked").length;var ptime=(n==1)?(6000*10):0;$.cookie("gainc","1",{path:"/",expires:ptime,domain:"."+window.location.hostname.replace("www.ja.net","ja.net")});$("#cookie_block").slideUp("slow");return false;});var gaval=$.cookie("gainc");if(gaval=="1"){addAnalytics();}});})(jQuery);
//]]></script>
</body>
</html>