For CSAC Members
Members' Wiki
Sysadmin Wiki
Meeting Schedule
Minutes
Projects



For UCAR Staff & Sysadmins
Policies
Security Engineering Group
Definitions
Required Patches
CSAC presentations

Contacting CSAC
Membership
Contact
Email list
ITC
NCAB

Guides & documents
Security Plan
Best practices
Procedures
HOWTO documents

CSAC main page

Report a Security Emergency: NCAR Operations (303-497-1200)

Reporting an emergency: full text

CSAC charter

The UCAR Computer Security Advisory Committee (CSAC):
    CSAC considers the collective well-being of UCAR's network-connected resources and services as well as the individual needs and priorities of the divisions and programs represented by its members. CSAC also makes recommendations to those who manage and administer UCAR's security infrastructure and who formulate policies and procedures.
Full charter

Goals

Confidentiality
Preserve authorized restrictions on information access and disclosure, including means for protecting personal privacy and proprietary information. A loss of confidentiality is the unauthorized disclosure of information.

Integrity
Guard against improper information modification or destruction, and ensuring information non-repudiation and authenticity. A loss of integrity is the unauthorized modification or destruction of information.

Availability
Ensure timely and reliable access to and use of information. A loss of availability is the disruption of access to or use of information or an information system.

Potential Impact on Organizations and Individuals
FIPS Publication 199 defines three levels of potential impact on organizations or individuals should there be a breach of security (i.e., a loss of confidentiality, integrity, or availability). UCAR will apply these definitions to our information and information systems within the context of our organization.

 

NCAR is managed by UCAR and sponsored by the National Science Foundation.