• Embed Doc
  • Copy Link
  • Readcast
  • Collections
  • CommentGo Back
 
 
Best Practices for Internet Security 
In K-12 Schools Achieving the delicate balance between keepingstudents safe while simultaneously introducing new and emerging technologies to meet student needs isa complex process. In this document we shareresources and best practices for school districts.
The Stephens Group LLC1/19/2009
 
Best Practices for Internet Security
Jan. 19
2
 Web 2.0 applications are really the rage now. With limited budgets, Web 2.0applications can provide free access to online software and storage. They can also helpmake learning more interactive and meaningful for students. Yet at the same timeschool districts have concerns about student safety on the Internet and protecting theirsystems. In our consulting work a number of districts have requested best practices for Web 2.0 technologies. Below are some resources we put together to help.
Taking a Layered Approach to Internet Safety 
 A recent article in The Journal by Andy McDonough entitled
 More is More
(2008, p. 10)advocates taking a multi-layered approach in which no one solution is more importantthan any of the others. A multilayered approach should include things such as:
 
Up to date policies that include uses of Web 2.0 applications
 
 Admin rights and computer passwords
 
Safe email program with anti-spam filters
 
Internet Content Filtering
 
Ongoing Internet education for staff and students
 Acceptable Use Policy (AUP)
Districts need to create and enforce a clear and precise acceptable use policy. Student AUPs should be in kid friendly language. They should also be living documents that areupdated regularly to include emerging technologies such as Web 2.0 tools. There alsoneed to be procedures in place of what will happen if students and staff do not follow theacceptable use policy. A good resource for developing Acceptable Use Policies and issues administratorsshould be aware of is athttp://www.ctap4.org/cybersafety/admin_resources.htm. Thisresource also includes tips for cyber-bullying which should also be included in the AUP. We also liked some of the language used in the Ashwaubenon (Wisconsin) SchoolDistrict Acceptable Use Policy. Below is a portion of their AUP policy.
 It is impossible to completely define unacceptable use, however, for the purpose of illustration, some examples are:• Sending or displaying offensive messages or pictures;• Using offensive or obscene language;• Harassing, insulting, threatening or attacking others, including racial or sexual slurs;
 
Best Practices for Internet Security
Jan. 19
3
• Damaging equipment or networks;• Violating copyright laws;
Using others’ passwords;• Trespassing in others’ folders, work or files;• Unauthorized access such as hacking;• Intentionally wasting resources;• Regularly employing the technology for commercial, political or religious purposes.
Professional Development
It is not enough to have a policy. “Holding a one-shot professional development workshop to familiarize staff with the district AUP is not sufficient. Policy reviewsshould be done on a regular basis and suggests posting the document on the district website” (McDonough, 2008, p. 9).
Student Education
Students need education on safe Internet Practices. Students need education. “This isnot simply a one-time Internet safety class. There should be ongoing age-appropriateinstruction from the time students are allowed online and continued throughout theireducation”(McDonough, 2008, p. 10).
Different Levels of Access
Schools need to determine different levels of access and policies for students as well aseducators and administrators. Educators also need a procedure for getting educationalcontent unblocked in a timely fashion.
Two Way Communication between the IT Department and End Users
The IT Department and end users need to work together and have processes in place forregular two-way communication on these complex issues. Security policies need to betransparent and shared with all stakeholders. A community of trust needs to bedeveloped between both groups in which they see themselves as partners in providingeducational content and safe-practices for students. End users need to be aware andfollow best practices for security. There also needs to be regularly scheduled meetings between the IT staff and end users to give feedback on how district policies are workingfrom the classroom perspective.The Consortium of School Networking (CoSN) Cybersecurity initiative has an onlinesurvey that can serve as a self assessment of where your district falls in terms of security available athttp://www.securedistrict.org/assessment/checklist.cfm.They also have a very helpful checklist of questions your district should be able toanswer athttp://www.securedistrict.org/safewired/checklist.cfm. These would be great
of 00

Leave a Comment

You must be to leave a comment.
Submit
Characters: ...
You must be to leave a comment.
Submit
Characters: ...