UNIVERSITY OF FLORIDA
INSTITUTE OF FOOD AND AGRICULTURAL SCIENCES
FORT LAUDERDALE RESEARCH AND EDUCATION CENTER (FLREC)
Wireless Network - General Description
FLREC has wireless networking access available in some locations on campus. The main purpose of the wireless connections is to provide Internet access for guests, visitors, students, and employees using notebook computers with wireless adapters. Performance of the wireless network may be slower than that of the cabled connections, particularly for certain high-bandwidth services such as streaming video. Also wireless networks may be subject to limitations on the number of simultaneous connections and introduce certain challenges that are unseen or not as prevalent with cabled networks. These require adjustment of existing network practices and access policies in order to ensure high quality secured services.
The purpose of this document is to outline and explain network access policies that are required to accommodate wireless networking at FLREC. As wireless services further develop, this document will be modified to reflect changes and improvements.
A wireless network requires that your computer has an appropriate wireless card/adapter and the installation of wireless access points at numerous locations on campus. Each access point has a limited range and bandwidth. As a result, performance of the services offered might be limited. Reasonable and reliable performance requires that we minimize interference by controlling the devices that provide or use wireless services.
Unsecured wireless network devices can create significant security issues not only for other nearby wireless devices, but also for devices attached to our cabled network. For example, a single personal laptop computer with both a wireless card and an Ethernet connection can expose a server containing sensitive data to attacks from hackers. Hackers do not need to be directly connected to the cabled network if they can enter through a wireless interface. The owner of the laptop can be entirely unaware that this vulnerability exists and that his/her system is being used as a gateway.
Wireless Network - Access Policy
• All general policies contained within the current University of Florida Office of Information Technology Acceptable Use Policy* apply to wireless network users.
• Computer user devices (e.g., computers, PDAs) connecting to the University of Florida network by any means can do so only to provide the end user with access to existing information or with the means to communicate new information via email, web, etc. End users are not permitted use of devices to provide unauthorized services or as gateways to provide alternative means of access to University of Florida network services.
• Only the Information Technology (IT) personnel is authorized to attach wireless hubs or switches (commonly known as Access Points or AP's) to the campus cabled network. Under no circumstances may personally owned AP's or similar devices be connected to open cabled network ports anywhere on campus.
• Computer users' devices, including personal laptop computers with wireless network interfaces, capable of acting as bridges between wireless and wired networks should not be attached to open cabled network ports unless the wireless interface is disabled. Both cabled and wireless networking capability can be simultaneously active even if the end user is unaware of this. This means that users must actively disable their wireless interfaces (e.g., WiFi cards) before attaching to an Ethernet port.
• IT personnel will provide assistance to end users in how to disable common types of wireless interfaces, but it is still the end user's responsibility to understand how to disable or remove a specific type of wireless interface he or she may have. End users not able to comply with this policy can still utilize the FLREC wireless network service, but they should not use cabled network ports.
• IT personnel will monitor the local wireless network for unauthorized AP's and other unauthorized wireless network devices that pose security risks. A first-time violation of any access policy will result in the wired network port associated with an unauthorized device being immediately disabled without warning. An attempt will be made to identify the owner of the unauthorized device and inform him/her of the violation. Subsequent violations may result in more serious measures including the extended loss of access to computing services.
• IT personnel will be responsible for maintaining a reasonable balance between easy access and proper security for all cabled and wireless network services. In certain cases, some cabled network services may be inaccessible from wireless connections because of security considerations. Individuals wishing to request the addition of a particular service for wireless accessibility or an explanation as to why a particular service is unavailable may contact the FLREC IT Specialist.
• Wireless network access policies will be updated as technologies rapidly evolve. Every effort will be made to inform the community before a change in network administration practices is dictated by a new technology, but advance notice may not always be possible. Providing reliable and secure access to the most critical services for the overwhelming majority of users will be the single most important consideration in determining policies.
• Wireless users connecting
under a guest account will need to provide their email address in order to
obtain access permission. Also wireless guest users are advised that
their network interface device addresses (MAC address) will be recorded and
monitored by the system during their wireless session for any possible security
violations or other malicious activities.
* If you
click on this link, it will open immediately after your login to the wireless
network.