The University network infrastructure, workstations and other communicating digital devices will be protected from compromise. Controls adapted from the National Institute of Standards and Technology (NIST) Special Publications (FIPS and 800 Series) will be used, as well as standards specified by the University. The use of encryption technologies will be used to protect data classified as Levels 3-5 by the Data Classification Policy. Security awareness will be an additional control in protecting University digital assets.
All digital devices, especially those that are networked, are susceptible to compromise and require specific measures to control vulnerabilities inherent in applications and operating systems. Controls will be commensurate with risks identified. This policy applies to network equipment used in the University infrastructure and end user devices including, but not limited to, desktop computers, mobile devices, videoconferencing equipment, etc.
All entities contained in or under the direction of the Missouri State University system.