U-M’s network backbones and networks are critical to the university and it is vital that we do everything possible to both permit an open, unrestricted access network, while also protecting its business assets and sensitive institutional data from threats.
When UMNet Runs the Network
We recommend units contact UMnet to provide all network security.
UMNet’s requirements help to ensure the confidentiality, integrity and availability of network resources.
The following standards are for network resources including wired and wireless networks, communications equipment, physical infrastructure including cabling, routers, switches, firewalls and other network protection devices and apply to all of U-M; including Ann Arbor, Dearborn, Flint, and Michigan Medicine.
Network Security Requirements
For UMnet and Unit Administrators who run networks
- Monitor and protect the university’s networks, and its associated systems, services, and applications, from abuse, attacks, and inappropriate use.
- Take prompt corrective actions to ensure satisfactory mitigation of identified risks to networks.
- Implement safeguards to identify and mitigate threats to the network as a resource, and as a platform of attack against U-M resources, property, or data.
- Effectively balance academic operational concerns and security challenges.
For Unit Network Administrators
- Support network and system administrators across the institution; coordinate, manage, and maintain the networking infrastructure, campus backbones, and related services for the unit; and administer firewalls and intrusion prevention and detection systems.
- Be responsible for ensuring that all Information Assurance (IA)-identified network security Standards (both policy and technical) are applied to hosted services. See Network Security Management for more information.
- Provide ongoing security monitoring for all installed wireless access points.
- Serve as the authoritative and responsible staff for the registration and management of all unit-owned DNS domains.
- Serve as the authoritative and responsible unit for the registration and management of all university-owned public IPv4 and IPv6 address space, as well as all private IP address space used on U-M campuses.