Critical PennNet Hosts

A critical host is a  Server which, if compromised, could significantly harm the University. Schools and centers may optionally designate any hosts as critical if its compromise could significantly harm the local unit. Examples of significant harm could include legal liability, reputational damage, interruption of critical business functions, and disclosure of confidential information.

Penn's Computer Security Policy

The Computer Security Policy can be read in full at the following URL:

http://www.net.isc.upenn.edu/policy/approved/20100308-computersecurity.html

It defines requirements for servers that store confidential or operational University data (see the policy for a definition of these terms), including devices hosted on third-party networks by outside service providers. One of the requirements is registration as a Critical Host.

Critical Host Registration

Critical hosts may be registered, searched and listed online, and scan reports may be downloaded at:

https://medley.isc-seo.upenn.edu/criticalHosts/jsp/fast.do

To access this application you will need to have had an account setup by our office. Please have your IT Director, or equivalent, send a request to security@isc.upenn.edu and include your pennkey and pennid as well as email address. Also, you will need to have domain-level access to your domain in the assignments database. Please contact your IT support group to verify eligibility.

Last updated: Tuesday, February 15, 2011