Web Site Security


The security of data is so important to the University and the university community that the University of Missouri System (UM System) has developed a Data Classification System to insure the confidentiality, integrity, and availability of that information.

Dynamic Web pages and web applications are rapidly becoming the de facto methods of presenting information. UMKC Information Services (UMKC IS) is applying the Data Classification System to the presentation of information as well to secure the information through the entire data path from storage to an authorized user.


This policy applies to the UMKC Faculty, Staff, Students, vendors and all constituencies.


Any member of the university community (including 3rd party vendors) involved in the electronic presentation of information will insure the presentation is in compliance with the UM System Data Classification System. Web masters and web programmers must use the industry standard best practices for the web medium used, e.g., use the published .NET best practices when using .NET.


UMKC IS will verify compliance of this policy to insure the confidentiality, integrity, and availability of the information used for presentation. UMKC IS will use information technology standard tools such as code review and application vulnerability scanning as part of the verification system.