SISSA Network computing policy

SISSA puts its computing facilities at the disposal of its members on the understanding that these will be used correctly. It is therefore considered necessary to inform its members of the codes of conduct and the sanctions for not adhering to them.
SISSA is responsible for the security of the networks and computing systems in order to protect them from unauthorized access, and to permit legitimate users to use the systems for their work and research.

Violation of the regulations regarding the use of computing facilities can lead to disciplinary actions in the form of suspension or revocation of accounts. Permanent revocation of accounts can result from disciplinary actions taken by SISSA following verification of abuses.

Each user is personally responsible for respecting Italian, European and international laws. Any violation of these laws can lead to civil and penal sanctions by the competent authorities. SISSA is obliged to collaborate with the competent authorities in the course of their investigations, by supplying all necessary information (including log and user's files) and support.

The user can obtain an account characterized by an alphanumeric code (username) that is unique in SISSA's domain (sissa.it). The users are solely responsible for actions taken with their username.

• It is forbidden to obtain an account under false pretenses.
• It is forbidden to share an account with another person. The password or any other authentication token must not be given to anyone else.
• Facilities put at the legitimate user's disposal must not be used by other unauthorized persons.
• It is forbidden to access, modify or delete the data of other users, without their prior consent.
• It is forbidden to damage other users by inappropriate or excessive use of the computing facilities that prevents their use by others.
• It is forbidden to use SISSA's computing resources for commercial purposes.
• It is forbidden to install and use programs that are protected by copyright for which the necessary license has not been obtained.
• It is forbidden to copy or store material protected by copyright for which the necessary license has not been obtained.

Each electronic mail message includes the sender's name and his/her username. The user is solely responsible for the electronic mail messages sent from their userid.

• The falsification of electronic mail messages, with the intention of appearing to be someone else, is forbidden.
• It is forbidden to read, modify, copy or delete other people mails without their prior consent.
• It is forbidden to send unsolicited electronic mail messages (spam) for commercial reasons, for propaganda or for non-requested announcements.
• It is forbidden to send messages the contents of which are obscene, racist or offensive to human dignity.
• The contents of electronic mail messages must never be published without the explicit permission of the author.
• Large quantities of data should not be sent by electronic mail; indication should be made in the message (where possible) of the address (URL) of the data, to allow downloading or consultation directly from the network.

Each user is expected to respect the security of the systems that are put at his/her disposal and not to damage local or remote network systems which are accessible through SISSA's networks.

• It is forbidden to use systems with the aim of obtaining unauthorized access to remote systems.
• It is forbidden listen and decrypt network communications and user passwords.
• It is forbidden to copy and diffuse system configuration files.
• It is forbidden to willfully spread computer viruses and other programs that damage or destroy systems or data.
• Any action that damages or modifies the functioning of computer systems or attempts to gain unauthorized access is forbidden.

SISSA is part of the GARR Consortium, the Italian network of universities and scientific research. Each SISSA user is therefore expected to respect the regulations laid out in the document entitled “GARR Acceptable Use Policy” (AUP) (available at https://www.garr.it/en/acceptable-use-policies or in italian at https://www.garr.it/it/regole-di-utilizzo-della-rete-aup).
While using computers and data networks, the international regulations published in the public document RFC 1855 “Netiquette Guidelines” must be observed (available at http://www.ietf.org/rfc/rfc1855.txt). Reference should be made in particular to Italian law no. 547 dated 23 December 1993 “Modifications and integrations of the penal code regulations and of the penal procedure codes concerning computer crimes” and to Law no. 675/96 on Privacy “Safeguarding personal data” and subsequent modifications and integrations.