Modem Usage Policy

Introduction
I. Dial-up Privileges
II. Establishment of Communication Systems
III. Internet Access
IV. Inbound Dial-up Lines

The following policy has been constructed based on the findings from of a security audit performed between June 3 and August 20, 2002. Significant outbound modem use was found during this audit. The majority of this usage occurred during non-business hours and included calls to external ISPs. Calls to external ISPs not only present a security threat to the University network, but also constitute a waste of resources. Internet service is already available to end clients through the University. Using external ISPs places an unnecessary burden on the University voice network resources. The finding of the audit indicated that if this type of traffic was regulated, the University could reduce the number of the trunks it currently uses, resulting in a considerable cost savings for the University. The following policy was created in order to optimize network performance by preventing unnecessary and unauthorized modem traffic and the resulting waste of resources.

7.5.1 Non-university personnel must only be given in-bound dial-up modem privileges when Telecommunications Manager or Associate Director of Network Services determine that they have a legitimate business need. These privileges must be enabled only for the time period required to accomplish the approved tasks.

7.5.2 Clients must not establish local area networks, or modem connections to existing networks, or other systems for communicating information without the specific written approval by the Telecommunications Manager or Associate Director of Network Services.

7.5.3 Clients must not establish modem connections to existing internal networks, local area networks, or other multi-user systems for communicating information without the specific approval of the Telecommunications Manager or Associate Director of Network Services.

7.5.4 Inbound dial-up lines connected to Wright State University internal networks and/or multi-user computer systems must pass through an additional access control point (a firewall, modem pool or similar system) before clients are permitted to reach University resources.

7.5.5 All clients who access the WSU network through dial-in connections should change access passwords according to the Password Management Policy.

7.5.6 CaTS will periodically scan lines to monitor compliance with policies.

7.5.7 Remote access will be accomplished by authenticating through an access server.