Arkansas Administrative Code
Agency 200 - Office of Information Technology
Rule 200.00.03-004 - Warning Banner for State IT Systems
Current through Register Vol. 49, No. 2, February 2024
1.0 Purpose
Information handled by computer systems must be adequately protected against unauthorized modification, disclosure, or destruction. Warning banners are necessary at all access points in the event an organization wishes to prosecute an unauthorized user.
2.0 Scope
This standard statement applies to all state agencies, boards, commissions and institutions of higher education.
3.0 Background
The Arkansas Information Systems Act of 1997 (Act 914, 1997) gives the Office of Information Technology the authority to define standards, policies and procedures to manage the information resources within the state. This is accomplished through work with a multi-agency working group known as the Shared Technical Architecture Team
In addition, Act 1042 of 2001 states that the Executive Chief Information Officer oversee the development of information technology security policy for state agencies.
4.0 References
5.0 Standard
6.0 Procedures
The agency shall be able to demonstrate compliance.
7.0 Revision History
Date |
Description of Change |
12/14/2003 |
Original Standard Statement Published |
8.0 Definitions
A warning banner is verbiage that a user sees or is referred to at the point of access to a system which sets the right expectations for users regarding acceptable use of a computer system and its resources, data, and network access capabilities. These expectations include notice of authorized monitoring of users' activities while they are using the system, and warnings of legal sanctions should the authorized monitoring reveal evidence of illegal activities or a violation of security policy.
Points of access at logon to a computer system.
9.0 Related Resources
Sample warning banners:
Navy AIS warning banner:
NIST sample banner: http://csrc.nist.gov/fasp/FASPDocs/logaccess-control/WARNINGbanner-nlb.doc
10.0 Inquiries
Direct inquiries about this standard to:
Office of Information Technology Shared Technical Architecture
124 W. Capitol Ave., Suite 200
Little Rock, AR 72201
Voice: 501-682-4300
FAX: 501-682-2040
Email: ITarch@mail.state.ar.us
OIT policies can be found on the Internet at: