IAS Computer Use, Access, and Security Policy

IAS Computer References
Information Systems and Services
International & Area Studies
UC Berkeley

IAS Computer Access and Security Policy

IAS ISS recommends that units and work groups identify two types of resources: shared and personal. Specific procedures pertaining to these two types of resources should be maintained. We encourage use of separate group email accounts for unit email collection and sending. We recommend using the IAS file server or equivalent unit defined shared data locations for shared data and computer information. As the campus proceeds toward and environment where work related campus resources are allocated to an individual by account name this will become more and more essential.

Individual Login

Each staff computer user has their own computer account login and password. The user is responsible for all computer use under this login.
Within work groups a written policy should exist pertaining to sharing of passwords, consensual access to accounts in emergency situations and due process for non-consensual access.
The IAS-ISS group has access to all desktop computer hard drives. This access is governed by the IAS ISS Privileged Access Agreement.

Access to Server Space

IAS ISS allocates shared and private space on the IAS File Server and shared space on the IAS Web Server.
All members of a work group have access to the shared user space called data on the IAS File Server. Within the group, individual users can control access to directories and sub-directories.
All work group members may have access to the two WEB file spaces for their unit if access is implemented on their machines.
Only the individual user has access to the individual users space on the IAS File Server.
IAS ISS has access to all server spaces. This access is governed by the IAS ISS Privileged Access Agreement.
IAS ISS reserves the right to have access to all shared data spaces on request of work group supervisors.
IAS ISS will not access the private USERS directories unless requested by the user or required for system administration.

Email Accounts

All staff members are entitled to an individual email account. This account is governed by the campus Electronic Communications Policy
Campus email policy provides explicit details for non-consensual access to email accounts.
We encourage work groups to have separate email accounts for their shared email needs.
Work groups should have their own written internal policy for consensual access to email accounts.

Misc.

All computers that are not used as print servers or file servers should be turned off when the user leaves for the day. This is important to protect the machines from hackers as well as power surges.
Computer accounts should be logged off, or set in locked mode when users leave their computers if their space is not locked. Remember the user is responsible for all use of their account.

Last updated: 6/4/04:jlz