...
- Resources must have a Fully Qualified Domain Name. Direct IP address connections are not allowed.
- Websites must use HTTPS or SFTP, with a valid certificate, using SHA256.
- Websites should offer TLS1.2, TLS1.1 or TLS1.0. SSL3.0 connections will be rejected.
- Other resources should employ a minimum of 256-bit encryption for all data in transit
- The resource should require users to log in to access data, preferably with unique logins for each user
- Provide the full contact details of the company that is hosting the resource
- Wherever possible, if a resource or service is made available by the University, it should be used
...