MURDOCH     INDEX     SEARCH     PEOPLE  
Policies Index >>  Facilities & Services >>  Information Technology >> 

MurdochNet Policy

Section 1: PREAMBLE
Section 1.1: Purpose
Section 1.2: Scope
Section 1.3: Field of Application
Section 1.4: Policy Vocabulary
Section 1.5: Key Terms
Section 2: INTRODUCTION
Section 2.1: Goals
Section 2.2: Boundary of MurdochNet
Section 2.3: Environment of MurdochNet
Section 3: CODE OF CONDUCT
Section 3.1: Servers
Section 3.2: Content
Section 3.3: Links
Section 3.4: Misconduct
Section 4: SERVER MANAGEMENT
Section 4.1: Registration of Web Servers
Section 4.2: Murdoch Sub-domains
Section 4.3: Alternate Domain Names
Section 4.4: Naming Conventions for Web Servers
Section 4.5: Availability of Web Servers
Section 4.6: Security of Web Servers
Section 4.7: Backup (Hardware, Software, Data) of Web Servers
Section 4.8: Web Server Software
Section 4.9: Responsibility for Web Servers
Section 5: CONTENT MANAGEMENT
Section 5.1: Content Categories
Section 5.2: Content Management Procedures & Practices
Section 5.3: Standards & Guidelines for Content Preparation
Section 5.4: Murdoch Conventions for Content Preparation
Section 5.5: Murdoch Guidelines for Content Preparation
Section 5.6: Applications & Tools
Section 5.7: Responsibility for Content
Section 6: LINK MANAGEMENT
Section 6.1: Permissible Links
Section 6.2: Link Validation & Checking
Section 6.3: Link Revision & Relocation
Section 6.4: Responsibility for Registered Links
Section 7: Glossary of MurdochNet Terminology
: SCHEDULES
Schedule 1: Forms
Schedule 2: Contracts
Schedule 3: Guidelines
Schedule 4: Regulations
Schedule 5: Disclaimers
Schedule 6: Roles & Responsibilities

Section 5 CONTENT MANAGEMENT

Section 5.4 Murdoch Conventions for Content Preparation

Section 5.4.4 Access Level Convention

The Murdoch Access Level Convention to be practiced in the preparation of Content includes:

  • Determining the intended audience prior to hosting Content on a Server
  • Confirming that the Server to be used to host or provide access to Content can offer the appropriate access restriction methods
  • Use of metadata to assign an access level for Content
  • Use of metadata to implement access restriction.

In complying with the Code of Conduct Section 3.2.2 Appropriate Access to Content by End-Users, a Content Custodian, or in their absence a Web Liaison Officer, or a Content Provider, shall:

  • Assign the access level of ‘world’ where there is no need to restrict access to Content
  • Assign an appropriate access level where the Content is of a personal, sensitive, or confidential nature, or involves a financial transaction, is intended for a restricted audience, or where the Content that is copyright material, or subject to a contractual arrangement.

Access Levels

The Access Levels used shall include:

No.

Level

Description

1

World

Allow any computer on the Internet to retrieve files via a Server.

2

Murdoch

Allow any computer with an IP address from the range of IP addresses on the Murdoch University Network that are associated with the University. Disallow those computers with a Murdoch University Network IP address where that IP address has been made available to another institution or organisation under a formal arrangement [ SEE Section 2.2 Boundary of MurdochNet - Network and Communication Services]. When a computer from any IP address other than the designated range attempts to retrieve a resource with an access level of ‘murdoch’ that is hosted on a Server using the remote MAIS libraries, the MAIS login screen should display and prompt the user to enter a Murdoch Username and Murdoch Password. Current staff and currently enrolled students are able to login and then retrieve the resource or access the service.

3

Host

Allow only computers from a given IP address (or set of IP addresses) and/or a given hostname (or set of hostnames) to retrieve files via a Server.

4

MAIS

(Murdoch Authentication and Identification System)

Allow only users (staff, students and others) with valid Murdoch Username and Murdoch Password to authenticate against the MAIS database. The use of further levels of access restriction is preferred (eg. individual users, groups and persons assigned to a category of user by means of a MAIS Authority Type Code).

5

WS

(Web Server Authentication)

Allow only users with a valid username and password to login to a Server using a database of users maintained on and for that Server, or accessed by that Server.

META Tag Used to Assign an Access Level

The metadata that accompanies Content shall include the use of:

  • The META tag ‘MU.Access’ to assign an Access Level

The META tag may be embedded in the HTML code or included in an accompanying configuration file, or held in a metadata repository.

For access levels other than “world”, some method of access restriction shall be implemented. The methods used for access restriction may vary across Servers, systems, services and information resources, and may include use of an approved University-wide authentication system.

[Murdoch University. Access Restrictions at Murdoch University – Access Restriction Methods

http://www.murdoch.edu.au/cwisad/access/access.html#methods ]

Section 5.4.4.1: Access Levels and Access Restriction

 
© 2005 Murdoch University   |   Copyright & Disclaimer   |   Privacy   |   MurdochNet Policy   |   CRICOS Code: 00125J   |   Page Info