Logon Banners. Wherever possible, a “Logon Banner” shall be provided to summarise the requirements for access to a system which may be needed to institute legal action in case of any breach occurring. A suggested format for the text depending on national legal requirements could be: “Unauthorised access to this computer system may constitute a criminal offence”. Unattended Terminals. Users are to be automatically logged off the system if their terminals have been inactive for some predetermined period of time, or systems must activate a password protected screen saver after 15 minutes of inactivity, to prevent an attacker making use of an unattended terminal. Internet Connections. Computer systems shall not be connected direct to the Internet or “untrusted‟ systems unless protected by a firewall (a software based personal firewall is the minimum) which is acceptable to the SSRO‟s Senior Information Risk Officer.
Appears in 4 contracts
Sources: Digital Board Software Agreement, Outsourcing Agreement, Finance & Hr Outsourced Service Agreement