Workstations...
KSC employees must take responsibility and appropriate measures to prevent access by unauthorized persons. All Windows workstations will automatically lock with a black screen after 20 minutes of inactivity. All Macintosh computers will be configured to sleep mode after 20 minutes of inactivity. The IT Group will be contacting Mac users by Mid-May with more information. All lab and classroom computers will log the user out after a period of inactivity. NetID passwords will be required to unlock the screen. The only computers exempted are workstations that have been identified as public access.

To protect campus resources from theft, malicious destruction, alterations or other inappropriate or negligent acts, all KSC computers and network printers must be physically locked down. All desktop computers not currently locked will be locked down during the summer of 2009 when the IT Group performs a full campus workstation and network printer inventory. Laptop users must be particularly conscientious of locking down your computer when not in your office. Use the lock provided to you by the IT Group. If you cannot locate your laptop lock, please contact the HelpDesk.

Data Security...
All data on all computers or electronic storage devices (including, but not limited to desktops, laptops, servers) shall be wiped clean of files and data prior to transfer to surplus. Our current surplus vendor uses Department of Defense standards for wiping all hard drives.

Passwords...
All KSC employees must log into the KSC network using their NetID. All KSC NetID passwords are set to expire at a maximum of 120 days. For passwords that KSC employees are not prompted to change, you must change these passwords within the 120-day maximum (i.e. Blackboard, WebAdvisor accounts). KSC employees should create their password keeping in mind that it is important to create a strong, complex password. You should never share your passwords with anyone or have them easily accessible by having them written down on a piece of paper. To ensure confidentiality, store your passwords on your secured personal (P) drive space.

Protecting Social Security Numbers...
Never send Social Security Numbers through email unless they are encrypted. Never print or share Social Security Numbers that have all of the numbers visible. Never publicly display Social Security Numbers. Unless it is absolutely necessary to perform your job responsibilities, use only the last 4 digits of a Social Security Number. If you don't really need that information, don't use it. Always shred important information when you no longer need it or dispose of those documents through lock boxes around campus.

Accessing KSC data from home or on the road...
If you are accessing sensitive data from home or during travel, it is your responsibility to provide the same level of security that would be provided within the KSC environment. Your computer should be set to install all patches and run an automatically updated anti-virus product.