The Official Web site for the Office of Information Technology - UTSA

This document should be rendered in an HTML format with cascading style sheets and JavaScript turned on.

Office of Information Technology Home Page

Skip to Main Content

Skip to Navigation

Please take a few minutes to read our Accessibility Page which will make your visit through this Web site easier.

Copyright (c) 2010. The University of Texas at San Antonio. All rights reserved.

OIT Home > About OIT > Information Resource Standards > Application Registration Standard

Application Registration Standard

Application security is a critical consideration in the development or procurement of software. The factors which affect the safety of an application are numerous, including the code itself, the hardware and network on which it is installed, authentication and authorization of those who should have access and regular monitoring of traffic to and from the application.

Each UTSA business unit that acquires or hosts an application connected to the UTSA network is responsible for registering the application with the Office of Information Technology and with meeting all security requirements identified as appropriate to the Data Classification levels.

The Registry will track the purpose of the application, responsible parties, data classification, and relevant technical information.

OIT is responsible for the enforcement of this policy.  Audits and monitoring will be employed to detect the use of insecure systems.  OIT will provide technical information and advice to assist departments in meeting these requirements.
Effective Date:

July 1, 2011

Compliance Date:

January 1, 2012

Last Revision:

January 11, 2011

Account Management

Disposal of Computers
Other Electronic Devices

Laptop Encryption

Policy Exception and Risk Assumption Procedures

Administrative/Special Access

E-Mail Management

Log-in Disclaimer

Security Monitoring

Application Registration

Incident Management

Network Access

Security Training

Enterprise Backup &
Data Recovery

Information Resource Use and Security (pending)

Network Configuration

Server Hardening

Change Management

Information Security Risk Assessment

Password

Software Licensing

Computer Naming Convention

Information Security Administrator (ISA)

Patch Management Standard

Threat Detection and Prevention

Configuration and Asset Management

Information Security Training Standard

Personal Computing

Unauthorized File Sharing

Copiers and Printers

Information Services Privacy

Physical Access

Vendor Access

Data Center

Internet Use

Portable Computing

Web Application Vulnerability Scanning

Data Classification

Intrusion Detection

Protection Against Malicious Software

Wireless Network

 

 

 

Workstation Operating Systems Support

Tools