Wireless Network Usage Guidelines

Purpose

• Guide the deployment of wireless networking on the GGU campus to ensure reliable, compatible, and secure operation
• Protect the security of Golden Gate University's information resources and electronic communications

Scope

This policy applies to all uses of Wireless Local Area Network (WLAN) technologies at all physical locations of Golden Gate University, both inside buildings and in outdoor areas. It does not apply to cellular wireless technology.

Definitions

802.11b: An IEEE standard for wireless data networking rated at 11 Megabits per second throughput operating in the FCC unlicensed 2.4 GHz Industrial/Scientific/Medical (ISM) band and using Direct Sequence Spread Spectrum (DSSS) technology to transmit the signal. The range of the signal indoors is up to 150 feet at 11 Mbps (300 feet diameter), or 800 feet outdoors. The range and strength of the signal are reduced significantly as it passes through walls, floors, and other physical structures. 802.11a: An IEEE wireless network standard currently under development that increases the bandwidth to 54 Mbps per Access Point, but decreases the range of the signal to about 35 feet indoors. It operates in the 5 GHz unlicensed National Information Infrastructure (U-NII) frequency range.

Access Point: A hardware device that serves as a communications "hub" for wireless clients and provides a connection to the wired LAN.

SSID: The "Service Set Identifier" may be used as a relatively insecure security key for a WLAN, somewhat like a password. If the SSID is set in the Access Point, then only client wireless cards configured with the same SSID may connect to that Access Point.

WEP: "Wired Equivalent Privacy" that provides limited security to a wireless connection by encrypting all data transmitted between the computer and the Access Point. At this time, 40-bit and 128-bit WEP is available on most vendors' Access Points and GGU supports both.

Wireless PC Card: Hardware device in a client computer (most often a card that fits in a PCMCIA Type II slot in a notebook computer) that communicates with an Access Point via radio signals (i.e., without wires). Also known as "wireless client adapter".

WLAN: "Wireless Local Area Network". The term often used for a wireless network within a limited area consisting of one or more wireless Access Points that provide network connectivity to computers equipped with wireless capability (usually a notebook computer with a wireless PC card). In essence, a WLAN provides the functionality of a wired LAN without the physical constraints of the wire.

Policy

Technology

• Only the IEEE 802.11b and 802.11g standards for wireless LANs is allowed.
• All Access Points will be Cisco 1200 Series or newer. No other vendor or model of future Access Points will be permitted on the GGU campus. Existing non-approved Access Points may continue to be used, but they must be replaced by the appropriate approved model when an upgrade or replacement is needed.
• For PC cards, the Cisco Aironet 350 Series Client Adapter (or a newer model) that supports 128-bit WEP encryption is strongly recommended. Lucent/Avaya cards that support WEP are acceptable.
• Only the IP protocol will be supported on the GGU WLAN.
• The IT Infrastructure Manager or designee is responsible for updates to the technology standards as the industry and technology changes

Installation and Management

• Enterprise Technology Services will be the sole provider of design, specification, installation, operation, maintenance, and management services for all wireless Access Points. On-campus GGU units and affiliates requiring WLAN capability will contract with ETS for installation. ETS will be responsible for all costs (e.g., hardware and software, wired network connection and power to the Access Point). Wireless equipment contracted in this manner will be owned and managed by ETS.
• Students may not install or operate WLAN Access Points in/or on any GGU campuses.
• The service demarcation point will be the Access Point itself. ETS is responsible for the Access Point and the wired network to which it is attached. Departments and individual students will be responsible for all costs associated with purchase, installation, operation, and support of wireless PC cards in client computers.
• All IP addresses for the GGU WLAN will assigned by a separate DHCP service maintained by ETS.
• A site survey by ETS must be done prior to design and installation to insure radio frequency integrity, optimum location for coverage and to facilitate connection to power and the wired data network, and to identify possible interference problems.
• Installation must comply with all health, safety, building, and fire codes.

Radio Signal Interference

• 802.11b/g WLANs operate in the unlicensed 2.4 GHz range and conform to the IEEE 802.11 DSSS (Direct Sequence Spread Spectrum) specification. Other wireless devices use the same 2.4 Ghz frequency band and may disrupt the operation of the GGU wireless network. These include cordless phones, cameras, keyboards, mice, audio speakers, and other wireless LAN devices (like Bluetooth and earlier versions of 802.11). To assure the highest level of service to WLAN clients, the use of all other 2.4 and 5 GHz devices should be discontinued on the GGU campus.
• In cases where the device is being used for a specific teaching or research application, ETS will work with faculty to mitigate the interference and accommodate the device without disrupting the GGU WLAN.
• In the event that both cannot operate without interference, research use will be given top priority, followed by specific educational purposes, followed by general WLAN access.
• The IT Infrastructure Manager has the authority to require cessation of unauthorized use of the 2.4 and 5 GHz bands.

Security/Access

• All campus WLANs will use a 128-bit WEP for security.
• Since WEP alone does not ensure secure wireless communications, people are encouraged to use applications that provide encryption, such as Secure Shell instead of Telnet for remote logins, and SSL-based secure websites.
• A valid GGU Campus ID is required to use the GGU WLAN.
• All users of the GGU WLAN must register the MAC address of their wireless PC card with ETS before access will be granted.