Office of the CIO
Queen's University-
Information Systems Security Office
- IT Security Policies
- Standards
-
Information Security Guidelines
-
Electronic Information Security Guidelines
- A1. Antivirus and Anti-Spyware
- A2. Security Updates and Patches
- A3. File Sharing and Remote Access
- A4. Secure Data Deletion and Destruction
- A5. Encryption
- A6. Physical Computer Locking
- A7. Account Passwords
- A8. Operating System Accounts
- B1. Account Hijacking
- B2. Sharing Your Personal NetID Password
- B3. Password Changes
- C1. Physical Location of Servers
- C2. Active Services and Open Ports
- C3. Backups
- C4. Firewalls
- C5. Remote Access
- C6. Physical Location of Network Devices
- D1. System Assessments
- D2. Permissions
- E1. Queen's Employee Requirements
- E2. Third-Party Requirements
- F1. Actual or Suspected Unauthorised Access
- G1. Multifunction Devices
-
Electronic Information Security Guidelines
- Education & Awareness
- Issues & Incidents
- Services
- Templates
C4. Firewalls
All servers which store or process personal and confidential information should be protected behind a firewall that uses an intrusion detection and prevention system.
Additional Information
Protecting sensitive information, particularly personal and confidential information, requires multiple levels of security. Firewalls that use an intrusion detection and prevention system provide added protection to detect and prevent unauthorized access and other forms of attack.
Prior to deploying a server which will store, process or provide access to personal and confidential information, system administrators should consult with ITServices about firewall and IDS/IPS protection alternatives.