The university has documented policies and supporting processes for defining and enforcing requirements to protect data transmissions and system-to-system communications, including analyzing the identity of communicators.

The purpose of this Control is to prevent or mitigate denial of service attacks on University networks.

This Control addresses how the university monitors and controls networks at the external boundary of the network and at key internal boundaries within the network.

Confidential and University-Internal information that is transmitted over a public network (e.g.: the Internet) must be protected.

When encryption is used, appropriate key management procedures are crucial. The university is responsible to manage cryptographic keys for required cryptography employed within the university using automated mechanisms with supported procedures.

The university uses public and private keys, along with other cryptographic mechanisms according to applicable federal laws, executive orders, directives, policies, regulations, and standards.

This Control ensures that collaborative computing devices (networked white boards, cameras, microphones) installed in common use spaces provide an explicit indication of use to users physically present in the room.

This Control addresses how information resource owners and custodians provide additional data origin and integrity artifacts along with the authoritative name resolution data the system returns in response to external name/address resolution queries.

This Control addresses how information resource owners and custodians request and perform data origin authentication and data integrity verification on the name/address resolution responses the system receives from authoritative sources.

This Control addresses how information resources that provide name/address resolution are fault-tolerant and provide redundant architecture.

This Control addresses how to ensure segregation of communications and interfaces between the systems processes.