Network administrators and business owners must understand what an acceptable use policy (AUP) is and the reasons why you need one in order to create a safe and secure network for customers, employees, and guests.
In this article we will be covering:
Creating a Safe Network
Defined as a set of rules and guidelines that specify how a network may be used, an acceptable use policy helps organizations regulate and restrict the type of content that can be accessed on their network.
Typically, the following information is needed to create a well-rounded policy.
- Prohibited Activities – Outlining behaviors that are not allowed such as hacking, using the service for bullying, distributing malware, and more.
- Resource Limits – Specifying limitations on the use of network or system resources, like data storage limits or bandwidth caps.
- Security Requirements – Mandating certain security practices, such as the use of passwords and the responsibility of users to not share login information.
- Content Restrictions – Detailing restrictions on the type of content that can be transmitted, stored, or published through the network.
- Monitoring & Enforcement – Explaining how the organization will monitor compliance and the consequences of violations.
Why Your Organization Needs An AUP
Without an acceptable use policy, organizations may find that they are not meeting state or federal regulations, or that users have accessed illegal material using their internet.
To create an effective policy, network administrators need to understand why it’s needed – and that can vary depending on the type of organization the network is for.
As an example, school officials usually create AUPs to ensure their schools are compliant with state laws and CIPA regulations. Without this policy, students could access harmful material, which is explicitly listed as a way to lose CIPA-related funding if allowed.
How an AUP Protects You & Others
Arguably the biggest benefit to creating an AUP is the legal compliance and liability reduction. Suppose an AUP is in place and a user manages to access illegal content. In that case, that burden would be placed on the individual rather than the organization as long as reasonable effort was made to prevent access.
Security enhancements like mandatory password changes also help improve network security, as it forces users to regularly update their account information, making them less prone to being hacked.
By taking the time to create an effective acceptable use policy, organizations can provide themselves, their users, and their devices with several layers of digital protection.
