Pennsylvania Code
Title 101 - GENERAL ASSEMBLY
Part V - Legislative Data Processing Committee
Subpart B - COMPUTER SYSTEMS
Chapter 521 - LDPC ACCEPTABLE USE POLICY
Section 521.3 - Security

Universal Citation: 101 PA Code ยง 521.3

Current through Register Vol. 54, No. 12, March 23, 2024

(a) Primary responsibility. The LDPC has primary responsibility for maintaining security for the service. In response to a security attack or exploit or in response to a well-founded threat to the security of the service, the LDPC may take action it deems necessary, including suspension of the service on a user, agency or entity or network-wide basis, to preserve the integrity of the service.

(b) Agency and entity responsibility.

(1) Each agency or entity that connects to the service shall ensure that its connection to and use of the service does not jeopardize the security of the service.

(2) With regard to individual users, each agency or entity shall ensure that only authorized users from its local environment are able to access the service. For accountability purposes in the event of a security threat or breach, the LDPC has the right to trace the route from a user to points within the service. Each agency or entity shall maintain and, upon request, shall make available to the LDPC a secure log of access events. The log shall be in a format and be for a period as the LDPC prescribes.

(c) User responsibility. A user may not knowingly engage in an action that undermines the security of the service or interferes with use of the service by another user.

Disclaimer: These regulations may not be the most recent version. Pennsylvania may have more current or accurate information. We make no warranties or guarantees about the accuracy, completeness, or adequacy of the information contained on this site or the information linked to on the state site. Please check official sources.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.