Policy: Policy 8-2-7: Web Filtering for Security Use Date Adopted: Feb 11, 2014
Department: Computing Services Contact: Director

Table of Contents:

  1. Purpose
  2. Scope
  3. Definitions
  4. Web Filtering

Section 1: Purpose

  1. The purpose of this policy is to define standards for systems/appliances which provide web access control use from any host within Western Nevada Colleges network, excluding wireless usage. The implementation of the Web Filtering System/appliance is to address online and network security for the college and its users. The policy elevates Computing Services ability to protect the college network, equipment, communications, and/or student, employee, and financial data. The policy also makes it possible for Computing Services to respond to incident reports from NSHE, audit reports and inquiries, and to prevent the unlawful downloading of movies, music, and/or other copyrighted material, etc.

Section 2: Scope

  1. This policy applies to all Western Nevada College employees, students, and the public using a Western Nevada College computer, workstation, or web-accessing device connected to the Western Nevada College network. It applies to all end user initiated communications between the Western Nevada College network and the Internet, including web browsing, file transfer, file sharing, and other standard and proprietary protocols. Server to server communications, such as SMTP traffic, backups, automated data transfers or database communications are excluded from this policy.

Section 3: Definitions

  1. Internet Filtering Technology that filters communication between devices on the campus network and the Internet and blocks traffic that matches specific rules.
  2. User ID User Name used when an associate logs into the college network.
  3. IP Address Unique network address assigned to each device to allow it to communicate with other devices on the network or Internet.
  4. SMTP Simple Mail Transfer Protocol. The Internet Protocol that facilitates the exchange of mail messages between Internet mail servers.
  5. Peer to Peer File Sharing Services or protocols such as BitTorrent and Kazaa that allow Internet connected hosts to make files available to or download files from other hosts. Used to illegally download copyrighted materials such as music or movies.
  6. SPAM Unsolicited Internet Email.
  7. Phishing Attempting to fraudulently acquire sensitive information by masquerading as a trusted entity in an electronic communication.
  8. Hacking Sites that provide content about breaking or subverting computer security controls.

Section 4: Web Filtering

  1. Web Filtering Administration The Computing Services Department shall administer Internet use for all computers and devices connected to the WNC network, excluding wireless. For security/reporting purposes all traffic accessing the internet through the system/appliance will record the source IP Address, the date, the time, the protocol, and the destination site or server. Where possible, the system should record the User ID of the person or account initiating the traffic. Internet use records must be preserved for 180 days.
  2. Access to Web Filtering Reports Computing Services may access all web filtering reports and data and such reports and data may be provided to SCS or NSHE as necessary to respond to a security incident. Such web filtering reports and data may also be made available to the WNC General Counsel in connection with any investigation and/or pending or threatened litigation.
  3. Internet Use Filtering System The Web Filtering system shall block access to Internet websites and protocols that present a security risk to WNC employee, student, and financial data because they have been identified as a source of viruses, hacking, peer to peer file sharing, SPAM, Phishing and Fraud, and/or Spyware. A blocked website will be made accessible once it has been determined the site no longer presents a security risk to WNC network, equipment, communications, and/or student, employee, and financial data.
  4. Internet Use Filtering Rule Changes The Computing Services Department shall periodically review and recommend changes to web and protocol filtering rules. These changes will be based on best-practices, new information or technology, and auditing factors. Changes to web and protocol filtering rules will be recorded in the Web Content Filtering for Security Use Policy.
  5. Internet Use on Public access computers Public workstations and computers used for WNC for registration, financial aid and enrollment purposes will have limited internet and web access.

Date(s) Revised   Date(s) Reviewed