BYOD Policies for Patrons/Users and Staff

BYOD Policies for Patrons/Users

and Staff

Topher Lawton & Jill Hurst-Wahl

@hieanon @jill_hw

They Just Keep Bringing More: Supporting the Community

Helpful:• Have a policy• Know your

network• Be ready to

educate

http://en.wikipedia.org/wiki/File:Network_Tree_diagram.png

Less Helpful:• “Support everything”• Too-specific language - requires

review• Missing policy

Photo Credit: Mario Roberto Durán Ortiz

Best PracticesBefore the policy:• What can my network handle? • What are the needs of my community?

What goes in a policy?• Plain/understandable language• Specific, but not too specific• Acceptable tech, acceptable use• Who to ask for help

After the policy is written:• Review process• Post it! Share it!

Staff Use of BYOD: A Growing Problem

Mobile devices + • Enhanced device functionality• Extended work hours• Need to work from anywhere• Mobile access to confidential information• Can carry org data on an unsecured device• Easy to share / lose

http://www.flickr.com/photos/intelfreepress/8389435615/

Solution: Enforceable policy & Employment contract

• When can a personal device be used at work?• What can be accessed with no authentication?

…with userID/password authentication?…with device-level authentication?

• When is encryption required?• What types of devices are supported?• What happens if the device is lost / stolen?• What are the consequences?

A Personal Tale

http://www.flickr.com/photos/mpimagery/4564521012/