P2P and the UVSC network

 

Facts:

1.      UVSC is legally obligated to respond to copyright, piracy and Digital Millennium Copyright Act violation notices to make a good faith effort to remove all violations from the UVSC network

2.      Illegal P2P downloading of copyrighted materials is a violation of State and Federal Laws and you may be prosecuted.  UVSC has an obligation to cooperate with law enforcement agencies on such violations.

3.      P2P clients are inherently not secure and give hackers access to the computer on which they are installed.

4.      UEN policy prohibits illegal activities and excess use of bandwidth on the UEN network of which UVSC is a part. (UEN is the Utah Educational Network)

5.      UVSC policy (Appropriate Use of Computing Facilities A-10.1) includes the following:

a.       From I. Rights and Responsibilities: Use of the UVSC computer system must be legal, ethical, and consistent with the College's mission.

    1. From I.a.5.: Individual users must  Obey federal, state, and local laws which govern computer and telecommunication use.
    2. From I.a.4: Individual users must  Accept that instructional, administrative, and research uses of system resources take priority over all other uses.
    3. From I.a.8: Individual users must  Protect the privacy of self and others.
    4. From I.B:  System Administrators must:

1. Perform periodic security checks to ensure that computing resources by the College are as secure as the College can make them.

5. Enforce violations of this policy in cooperation with appropriate authorities.

6. Disclose E-mail messages, files, backups, and any other pertinent records to authorized law enforcement officials or other authorized third parties.

    1. From II.B: Users must not  Share passwords and/or accounts.
    2. From II.D.Users must not  Use destructive or invasive software.
    3. From II.E. Users must not  Violate licensing agreements, patent, copyright and/or trademark laws or UVSC Purchasing regulations as governed by UVSC Policy B-1.3.

i.         From II.G. Users must not  Consume inordinate amounts of system resources.

    1. From II.L. Users must not  Use the College computing facilities for disruptive or illegal activities.
    2. From V.A. All computing resources owned and managed by UVSC are as secure as the College can make them.

l.         Penalties are spelled out in III.A – E  included are loss of access & privileges, accounts disabled,  and possible prosecution by law enforcement personnel.

 

 

Sample letter of Infringement Violations

 

Association (like RIAA, MPAA, ESA, etc)

Attention:  Piracy Enforcement - DMCA Officer

DATE xxxxx

Dear DCMA officer,

I am an authorized representative of the Entertainment Software Association ("ESA"), which represents the intellectual property interests of twenty-four (24) companies that publish interactive games for video game consoles, personal computers, handheld devices and the Internet. 

ESA is providing this letter of notification pursuant to the Digital Millennium Copyright Act and 17 USC Sec. 512 (c) to make Utah Valley State College aware of material on its network or system that infringes the exclusive copyright rights of one or more ESA members.  This notice is addressed to you as the agent designated by Utah Valley State College to receive notifications of claimed infringement, as so reflected in the current records of the U.S. Copyright Office.  Under penalty of perjury, we hereby affirm that the ESA is authorized to act on behalf of the ESA members whose exclusive copyright rights we believe to be infringed as described herein.

ESA has a good faith belief that the Internet site found at xxx.xxx.xxx.xxx continues to infringe the rights of one or more ESA members by offering for download one or more unauthorized copies of one or more game products protected by copyright, including, but not limited to:

WarCraft

The unauthorized copies of such game product[s] appearing on, or made available through, such site are listed and/or identified thereon by their titles, variations thereof, or depictions of associated artwork (any such game titles, copies, listings and/or other depictions of, or references to, any contents of such game product, are hereinafter referred to as "Infringing Material").  Based on the information at its disposal on 10/1/2004 at 7:55 p.m. EDT (GMT -0400), ESA believes that the statements in this Notice are accurate and correctly describe the infringing nature and status of the Infringing Material.

Accordingly, ESA hereby requests Utah Valley State College to immediately remove or disable access to the Infringing Material at the URL address identified above.

Should you have questions, please contact the ESA at the above listed mailing address or by replying to this email.  Please also include the above noted Reference Number in the subject line of all email correspondence.

We thank you for your cooperation in this matter.  Your prompt response is appreciated.

Regards,

XXXXXXXXXXXXXXX
------------------------------
Infringement Detail:

Peer-to-Peer Violation of UVSC Policy

 

The use of programs such as KAZAA, Morpheus, Gnutella, LimeWire, Bear Share, Emule and iMesh that are used to download music, movies, and games are not appropriate use of the UVSC and UEN network. If you are using one of these programs STOP immediately! These programs pose a significant security RISK TO YOU since you are allowing anyone to access your hard drive and computer resources to use it for possible illegal purposes. File sharing also creates large amounts of network traffic causing the college and statewide networks to slow down. This alone is unacceptable. Additionally, almost all files that are downloaded are copyrighted materials that are illegal to share and download. You can be prosecuted for doing such.

 

Any computer found using these or similar programs will be disconnected from the UVSC network and allowed to reconnect only after such programs have been deleted and the machine verified that hacking software has not been installed. 

 

Leroy Brown, our security officer, will work with personnel across campus to resolve these and other network security issues.

 

Ray Walker

Assistant Vice President of Information Technology/CIO

Utah Valley State College

800 West University Parkway

Orem, Utah 84058

801‑863‑8200

walkerra@uvsc.edu

 

In order to be reconnected to the UVSC network, please sign on the line below and contact the IT HelpDesk at x8888. They will help you clean your computer and verify that it is ready to reconnect to the network. Please send the signed form to Ray Walker at Mail Stop 230 or to the HelpDesk in AD 007.

 

Be advised that a second violation will not only result in removal from the network but requires and a personal meeting with you, your supervisor and the UVSC IT dept. Any appeals to this policy should be directed first to ITSC and then to President’s Council or for students through the appeal process outlined for them.

 

 

I have read and understand the above information and will not violate the policy again. 

 

_________________________________      ____________________________________

              Printed Name                                                 Signature

 

____________________________

                        Date

 

Policy references:

Appropriate Use of Computing Facilities A-10.1

 

Peer-to-Peer violates UVSC policy A-10.1.I, A.10.1.I.a.4, A.10.1.I.a.5, A.10.1.I.a.8, A.10.1.II.B, A.10.1.II.D, A.10.1.II.E, A.10.1.II.G, A.10.1.II.L

 

Peer-to-Peer requires UVSC to take action based on policy A.10.1.I.B.1, A.10.1.I.B.5, A.10.1.I.B.6, A.10.1.V.a

 

Peer-to-Peer penalties are outlined in accordance with A.10.1.III.a-e

 

Subject:

Appropriate Use of Computing Facilities

Index: A-10.1

Section:

General Administration

 

Effective Date:

June 13, 1996

 

POLICY

Ensure the proper use of computing facilities maintained by UVSC for instructional, administrative, and research activities of students, faculty, and staff.

REVIEW

At least annually, the Computing Policy Committee, a standing subcommittee of the InfoTech Committee, will evaluate changes in law and technology which impact the College. The committee shall invite representatives of ASUVSC, PACE, and the Faculty Senate to participate.

  1. RIGHTS AND RESPONSIBILITIES

Use of the UVSC computer system must be legal, ethical, and consistent with the College's mission.

    1. Individual users must:
      1. Choose safe passwords, change them often, and do not disclose them.
      2. Keep accounts free of cluttering files.
      3. Backup all private, important, or irreplaceable files.
      4. Accept that instructional, administrative, and research uses of system resources take priority over all other uses.
      5. Obey federal, state, and local laws which govern computer and telecommunication use.
      6. Consent to the interception of E-mail by System Administrators under circumstances where there is imminent danger to life, safety, health, security or property.
      7. Recognize that user actions reflect on both the user and the institution.
      8. Protect the privacy of self and others.
      9. Perform personal file maintenance (including scanning for viruses and deleting unnecessary files regularly).
    2. System Administrators must:
      1. Perform periodic security checks to ensure that computing resources by the College are as secure as the College can make them.
      2. Treat the contents of files as private and confidential.
      3. Perform routine maintenance of the system.
      4. Keep a backup of information on networked file servers, but have no responsibility for lost data due to system errors.
      5. Enforce violations of this policy in cooperation with appropriate authorities.
      6. Disclose E-mail messages, files, backups, and any other pertinent records to authorized law enforcement officials or other authorized third parties.
  1. PROHIBITIONS

Users must not:

    1. Attempt to gain access to any system or account without authorization from a System Administrator.
    2. Share passwords and/or accounts.
    3. Copy or change system files or software without authorization from a System Administrator.
    4. Use destructive or invasive software.
    5. Violate licensing agreements, patent, copyright and/or trademark laws or UVSC Purchasing regulations as governed by UVSC Policy B-1.3.
    6. Display images, sounds, or messages which are obscene where others may be affected by them.
    7. Consume inordinate amounts of system resources.
    8. Crash machines or systems deliberately.
    9. Participate in electronic chain letters.
    10. Reserve shared resources. A public shared computing facility device left unattended for more than ten minutes is available for use, and any process running at the time of abandonment shall be terminated. Running unattended programs or placing signs on devices to "reserve" them is inappropriate without authorization from a System Administrator.
    11. Lock a public shared workstation or computer without authorization from a System Administrator.
    12. Use the College computing facilities for disruptive or illegal activities.
  1. VIOLATIONS AND PENALTIES
    1. Use of UVSC computing facilities and accounts is a privilege.
    2. Violation of UVSC policy or federal, state and/or local law may lead to revocation of computing privileges.
    3. Violations of this policy are referred to the appropriate academic, administrative, and/or legal authority. System administrators are authorized to disable accounts when violations occur.
    4. Due process is afforded users charged with violations.
    5. Grievances may be filed.
      1. Students see policy E-6.2 part XIII, Appeals.
      2. Faculty see policy C-5.5 part 6, Due Process.
      3. Staff see policy C-6.1, Grievances.
  2. SECURITY
    1. All computing resources owned and managed by UVSC are as secure as the College can make them.
    2. Users who find possible security breaches should report them. Any use of the system under the security breach conditions is prohibited.
    3. Users are responsible not to share passwords or their accounts.
    4. Bad passwords jeopardize security.
  3. PRIVACY
    1. Employee files are public documents. See GRAMA (the Government Records Access and Management Act). Consequently, files may be subject to inspection through the GRAMA office. In such cases, the College GRAMA officer has authority to inspect files to determine which portions may be exempt from disclosure.
    2. Any inspection of electronic files, and any action based upon such inspection, will be governed by all applicable federal and state laws, and College policy.
    3. Routine maintenance of systems occasionally results in files being read. Network and System Administrators are required to treat the contents of electronic files as private and confidential, but users should exercise caution with confidential information.
    4. E-mail on the College system is as private as possible. Attempts to read another person's E-mail (or other protected files) will be treated with the utmost seriousness. The System Administrators will not read mail or other electronic media files unless absolutely necessary in the course of their duties, and will treat the contents of those files as private information at all times.
    5. Students who wish to have their personal information removed from directory databases need to contact the Records office, and submit appropriate authorization.
  4. FREE EXPRESSION
    1. Communications which originate from UVSC facilities are free from censorship or prior restraint, except when they are illegal.
    2. Academic institutions exist for the transmission of knowledge and the pursuit of truth. Censorship of material on partisan or doctrinal grounds is contrary to these goals.
      1. Downloading: Academic library standards and principles of intellectual property are applied to material received from computer networks.
      2. Publishing: Faculty and student intellectual and academic freedom standards are applied to publication in computer media.
    3. Interfering with the freedom of expression of others is unacceptable.
  5. ELECTRONIC MAIL (E-MAIL)
    1. Users are responsible for the contents of their accounts.
    2. Employee E-mail messages are College records (see GRAMA).
    3. E-Mail is an inappropriate vehicle for the transmission of personal and/or confidential information which needs to remain secure from disclosure. Users should expect that nothing delivered or received via E-mail is private.
    4. The College is obligated to disclose E-mail messages to law enforcement officials, or others authorized under GRAMA, without prior notice.
    5. Prohibited E-mail
      1. Illegal messaging.
      2. Electronic chain letters
      3. Mailbox contents which consume inordinate amounts of system resources.
    6. Only College Relations may send messages to the entire faculty, staff, and administration. Those wishing to reach all faculty, staff, and administration must do so through College Relations' weekly Communicator.
    7. To send unsolicited messages to large groups of people, seek authorization from College Relations in advance
  6. TERMS AND DEFINITIONS
    1. CRASH: Disrupting the supervisory or accounting functions of the computing facilities, or doing anything which is likely to have that effect.
    2. DISRUPTIVE ACTIVITIES: Utah law (76-8-703 to 705) prohibits interfering the peaceful conduct of the activities of the College or disruption of the school or its students or activities. Examples include, but are not limited to software or activities which are:
      1. Destructive: harmful, troublesome, ruinous, devastating, vicious
      2. Invasive: encroaching, infringing, trespassing, interfering
    3. DUE PROCESS: As with other policies at the College, both notice and hearing are provided. Because of the unique nature of computing facilities, notice of a problem with one's account may be provided by disabling the account. The user then has the opportunity to discuss with the affected System Administrator what prompted that action. If the user is dissatisfied with the response from the System Administrator, then the user may exercise his/her grievance rights. Grievance policies are provided for users according to whether they are students, faculty, or staff.
    4. ILLEGAL ACTIVITIES: Pertinent laws include, but are not limited to:
      1. Copyright: Software available on computers and networks is not to be copied in violation of any copyright or any applicable software license.
      2. Harassment: A course of conduct directed at a specific person that causes emotional distress in such person and serves no legitimate purpose.
      3. Threats: Federal law prohibits threats. 18 U.S.C. 875 states: Whoever transmits in interstate commerce any communication containing any threat to kidnap a person or any threat to injure the person of another shall be fined not more than $1,000 or imprisoned not more that five years, or both.
      4. Libel: Utah law (76-9-502) prohibits libel. Persons are guilty of libel if they intentionally and with a malicious intent to injure another publish or procure to be published any libel. Libel damages the memory of one who is dead, or impeaches the honesty, integrity, virtue, or reputation, or publishes the natural defects of one who is alive, thereby exposing him or her to public hatred, contempt, or ridicule.
      5. Disorderly Conduct: Utah law (76-9-102) prohibits a person from
        1. Knowingly creating a hazardous or physically offensive condition by an act which serves no legitimate purpose.
        2. Intending to cause public inconvenience, annoyance or alarm, or recklessly creating a risk thereof.
        3. Making unreasonable noises in a public place.
        4. Engaging in abusive or obscene language or making obscene gestures in a public place.
      6. Public Displays: Utah law ( 76-10-1228) prohibits public display (at any establishment frequented by minors, or where the minors are invited as a part of the general public, i.e. UVSC), any motion picture, or any still picture that consists of nude or partially denuded figures posed or presented in a manner to provoke or arouse lust or passion.
      7. Pyramid Schemes: Utah law ( 76-6a-3) prohibits organizing, establishing, or administering pyramid schemes. Pyramid schemes are defined in Utah law ( 76-6a-3) as "any sales device or plan under which a person gives consideration to another person in exchange for compensation or the right to receive compensation which is derived primarily from the introduction or other persons into the sales device or plan rather than from the sale of goods, services, or other property."
      8. Obscenity: Objectionable or offensive to accepted standards of decency. The test: whether the average person, applying contemporary community standards would find that the work, taken as a whole, appeals to the prurient, whether the work depicts or describes, in a patently offensive way, sexual conduct specifically defined by the applicable state law, and whether the work, taken as a whole, lacks serious literary, artistic, political, or scientific value. See, Miller v. California (413 U.S. 15,93 1973), the U.S. Supreme Court case which clarified the term "obscene."
    5. INORDINATE: Determined by affected System Administrators. Including, but not limited to: affecting available disk space, CPU time, e-mail system, printing facilities, and dial-up access lines.
    6. INTERCEPTION: Utah law ( 77-23a-1 to 16) allows for interception of communications.
      1. UVSC, as a provider of electronic communications service, may provide information/technical assistance to persons authorized by law to intercept communications if they are provided with a court order or certificate from the Attorney General's office that no warrant or court order is requires by law, that all statutory requirements have been met, and that the specified assistance is required.
      2. UVSC System Administrators may intercept electronic communications if one of the parties to the communication has give prior consent to the interception (unless it is intercepted to commit a crime or a tort) or if the electronic communication is made through a system that is readily accessible to the public.
      3. UVSC System Administrators may divulge the contents of any communication
        1. As authorized under Utah Law 77-23a-4 or 77-23a-9;
        2. With lawful consent of the originator or any addressee or intended of the communication;
        3. To a person employed or authorized or whose facilities are used to forward the communication to its destination;
        4. That is inadvertently obtained by System Administrators and to pertain to the commission of the crime (contents can then be revealed only to law enforcement).
    7. PASSWORDS are never to be given to other people, shall not be easily guessed, but should be frequently changed. Bad passwords can create security breaches. Change a bad password when notified by a System Administrator. Failure to do so will result in the account locked. Examples of bad passwords are those:
      1. Related to the user (like phone number, birth date, spouse name).
      2. Easily guessed by a System Administrator (in fewer than five tries).
    8. RESPONSIBLE FOR THE CONTENTS OF THEIR ACCOUNTS included, but is not limited to: Having incoming mail held/forwarded when off campus for extended periods of time, emptying trash, deleting outbox messages which are no longer needed, and archiving messages to be saved.
      1. Messages should not be retained beyond one term. Users who feel the to retain copies of messages beyond that point need to archive them, save them, or print them and retain them in that form.
      2. Users should categorize messages when that are created. Note whether they are privileged or what future value they have so that they can be more readily archived and referenced.
    9. ROUTINE MAINTENANCE of the system included, but is not limited to: Security checks, deletion of temporary files, verification of E-mail delivery, and assurance of available disk space.
    10. SECURITY BREACH:
      1. Unauthorized use of an account.
      2. Unauthorized access or unauthorized changes to system resources.
      3. Using Bad passwords, or attempting to use or acquire others' passwords.
    11. SECURITY CHECK: Verification that privacy is ensured and access is granted as needed and appropriate.
    12. SYSTEM FILES: Any files that control or otherwise affect the startup or operation of a computer system.
  7. REFERENCES
    • Computer Freedom and Privacy Conference 1995 & 1996.
    • The Chronicle of Higher Education (ongoing).
    • AAUP Policy Statement.
    • Black Law Dictionary, 6th Edition.
    • "Discovery of E-Mail and Other Computerized Information" by Heidi McNeil an Robert M. Kort in Arizona Attorney (April 1995).
    • Electronic Frontier Foundation Policy on Computer Use.
    • "Electronic Communications" in Perspective: The Campus Legal Monthly (October 1995).
    • "E-Mail Institutional Liability, and Freedom of Expression" in Synfax Weekly Report (April 25, 1994).
    • "E-Mail Policies Are Crucial for University E-Mail Users," Item #12 from NACUA Conference by Richard Raysman (June 1995).
    • "'Fantasies' on the Internet" in Synfax Weekly Report (March 13, 1995).
    • The Fifth Conference on Computers, Freedom and Privacy (March 1995).
    • "Colleges Criticized for Response to Offensive Electronic Speech," Chronicle of Higher Education, December 1, 1995 (A32).
    • "Banning 'Indecency'--Colleges Weigh Impact of Proposed Restrictions on Internet Material," Chronicle of Higher Education, January 5, 1996 (A19).
    • "The Web in the Workplace," The Net, January 1996 (12).
    • "Colleges Oppose Proposed Ban on 'Indecent' Material Online," Chronicle of Higher Education, December 15, 1995 (A24).
  1. BACKGROUND
    1. UVSC creates and maintains computing and networking facilities for the purpose of conducting and supporting the instructional and research activities of students, faculty, and staff. This policy was designed and implemented to ensure the proper use of computing facilities in accordance with the mission of the College and the guidelines of our academic and administrative environment.
    2. The growth of the Internet and the freedom of information exchange were key factors in the design of this policy. Many academic and administrative bodies were involved in the creation of the policy including the Network Policies Subcommittee, Information Technology Committee, President's Staff, Faculty Senate, Student Government and PACE.
    3. UVSC endorses the following statements:
      1. The Educom Code for Software and Intellectual Rights was developed through Educom, a non-profit consortium of colleges and universities committees to the use and management of information technology in higher education, and the Information Technology Association of America (ITAA), a computer software and services industry association. If follows:
        1. Respect for intellectual labor and creativity is vital to academic discourse and enterprise. This principle applies to works of all authors and publishers in all media. It encompasses respect for the right to acknowledgment, right to privacy, and right to determine the form, manner, and terms of publications and distribution.
        2. Because electronic information is volatile and easily reproduced respect for the work and personal expression of others is especially critical in computer environments. Violations of authorial integrity, including plagiarism, invasion of privacy, unauthorized access, and trade secret and copyright violations, may be grounds for sanctions against members of the academic community.
      1. An excerpt for the Joint Statement on Rights and Freedoms of Students created by the American Association of University Professors (AAUP) pertaining to student due process in the event of a circulation of this policy:
        1. Pending action on the charges, the status of a student should not be altered, or his right to be present on the campus and to attend classes suspended, except for reasons relating to the student's physical or emotional safety and well being, or for reasons relating to the safety and well being of students, faculty, or university property.