UPPS 04.01.08 - Texas State Internet Domain Name Policy
Texas State Internet Domain Name Policy
UPPS No. 04.01.08
Issue No. 4
Effective Date: 8/28/2019
Next Review Date: 4/01/2022 (E3Y)
Sr. Reviewer: Chief Information Security Officer
This policy directs the assignment and administration of domain names, domain name services, and Uniform Resource Locator (URL) values at Texas State University. Consistent adherence to this policy:
assures that all Texas State domain names and URLs are consistent with the rules, regulations, standards, and practices of EDUCAUSE (the registrar of the .edu internet domain) and the Domain Name System (DNS) employed by the global internet community;
facilitates accurate and efficient resolution of Texas State domain names and URLs to their corresponding numeric Internet Protocol (IP) addresses;
promotes institutional consistency in the selection and naming of domains and other URL components;
assures that domain names associated with Texas State are a positive reflection on the university; and
maintains clarity and reduces ambiguity for users of Texas State’s internet-accessible resources.
Like the global DNS, the domain naming convention described in this policy aligns domain names and URLs with the university’s organizational structure to eliminate duplicates, avoid conflicts, and minimize ambiguity. Consequently, a third-level domain or top-level folder must reflect the identity of the responsible university organizational unit (e.g., division, college, school, or department), unless an exception is authorized under criteria described in Section 03.04.
Texas State has registered “txstate.edu” with EDUCAUSE as its second- level domain name. All official university websites and services must be registered within the Texas State domain (txstate.edu), including those of:
divisions, colleges, schools, departments, and other university operating units;
recognized university organizations that host content on any server within the txstate.edu domain; and
individual faculty or staff in the performance of official university functions.
As an institution of higher learning, the university values and encourages the open exchange of information. To that end, university entities (individuals, groups, or organizational units) may register a website or service under the txstate.edu domain if that site or service:
is consistent with the entity’s role at the university;
does not detract from or impede the university’s mission; and
complies with all university policies, most notably the following:
Sites that fail to meet all of these criteria must be hosted outside the txstate.edu domain.
Information Technology and University Marketing are responsible for implementing this policy and will work with individual resource owners to ensure the assignment of URLs that are both effective labels for the referenced resources and consistent with the provisions in this policy. The chief information security officer for Information Technology and the director of University Marketing, or their designees, will review and authorize each new third-level domain prior to its activation in the Texas State domain name service. Resource owners may not publish a new third-level domain in any form or media without such authorization. Resource owners may appeal denied URL requests to the vice president for Information Technology, whose decision is final.
Domain Name System (DNS) – the internet’s address resolution system. The DNS makes it possible to locate computers on the internet by textual name, rather than by the harder-to-remember strings of numbers that form an IP address. The DNS consists of a network of specialized servers that resolve (translate) textual domain names into their corresponding numeric IP addresses.
Internet Protocol (IP) Address – under Internet Protocol version 4 (IPv4), a string of four numbers separated by periods (such as 18.104.22.1684) used to represent a computer on the internet. The format of the address is specified by the IP in RFC 791. Most people use domain names instead, and the resolution between domain names and IP addresses is handled by the DNS.
Resource – any website or network service offered through the university, accessible via the internet, and denoted by a Texas State URL or domain name.
Resource Owner – an organizational unit or individual constituent of Texas State that has established or wishes to establish a website or network service denoted by a Texas State URL or domain name.
Uniform Resource Locator (URL) – an identifier that specifies the internet location of an existing resource or service and the mechanism for accessing it. The syntax is:
aaa://bbb.ccc.ddd/eee as in the example http://library.txstate.edu/my-library, where:
aaa is the protocol (e.g., http);
bbb is the third-level domain or hostname (e.g., library);
ccc is the second-level domain (e.g., txstate);
ddd is the top-level domain (e.g., edu); and
eee is the top-level folder (e.g., my-library).
PROCEDURES FOR DOMAIN NAMES INSIDE THE TXSTATE.EDU DOMAIN
Computers connected to the university network are nodes within the Texas State internet domain. Resources hosted by these computers (e.g., web servers, email servers) shall be identified in Texas State’s DNS services using “edu” as the top-level domain and “txstate” as the second- level domain.
Under some circumstances, however, the university may choose to contract with a third party to host and administer a resource or service. The university may also provide DNS lookup services for the external service by assigning a txstate.edu domain name that points to the external service. See the examples shown in the following table:
Resource txstate.edu Domain Name Actual Domain Name Texas State Athletics Website athletics.txstate.edu www.txstatebobcats.com HR Jobs Portal jobs.hr.txstate.edu txstate.peopleadmin.com
In such situations, the outsourcing department should ensure that prior to their entering or registering with the outsourced resource, users of the resource are:
informed that the resource is hosted or managed by an authorized university provider, especially if the resource reflects Texas State branding, logos, or trademarks;
notified that the provider’s privacy and security policies will apply and may not be identical in all respects to those of Texas State; and
afforded access to the provider’s privacy and security policies and encouraged to review them before proceeding.
The university’s domain naming convention is designed to align with its organizational structure to eliminate duplicates, avoid conflicts, and minimize ambiguity. Consequently, a URL’s third-level domain (or top-level folder, if applicable) should reflect the name of the responsible university organizational unit (e.g., division, college, school, or department) and should be generally recognizable to visitors to the university website. Information Technology and University Marketing will follow this convention when working with organizational units to determine their third-level domain names and top-level folders. Examples of URLs conforming to this convention include: finearts.txstate.edu, library.txstate.edu, and www.txstate.edu/liberalarts.
Information Technology and University Marketing may authorize exceptions for third-level domain names and top-level folders within the txstate.edu domain only if:
the proposed name does not require additional organizational qualification to prevent confusion with other university sites or services (e.g., for a site depicting only the internship opportunities available through the McCoy College of Business, “internships.mccoy.txstate.edu” would be acceptable whereas “internships.txstate.edu” would not);
the proposed name is unlikely to cause confusion with future university sites or services that can reasonably be anticipated (e.g., “research.txstate.edu” would be acceptable as the hostname for a “gateway” site for information related to the breadth of research activities at Texas State, but it would not be acceptable as the hostname for the research activities of a single department or college, or for the departmental website of the Office of Sponsored Programs); or
the proposed name is unlikely to change in the foreseeable future. Rationale: Texas State domain names are intended to be relatively stable so that hyperlinked references to them remain reliable without the need for multiple redirecting entries or frequent updates to the university’s DNS servers; and if at least one of the following additional conditions is also true:
the proposed name identifies a consortium of many different organizations from inside or outside the university;
the proposed name identifies a center or institute that is not a department or housed within a department or other university organizational unit; or
the proposed name identifies a specific resource that is not clearly associated with any single department or unit (e.g., brand.txstate.edu, mycatalog.txstate.edu, hb2504.txstate.edu, mediaflo.txstate.edu, txstate.edu/about).
All such exceptions are subject to periodic review by Information Technology and University Marketing to determine if the exception is still warranted.
With some exceptions, most txstate.edu websites are registered under two domain names, one that includes the “www” prefix and one that does not. Either can be designated as the primary with the other provided by Information Technology via a redirection service. For example, http://catsweb.txstate.edu is the primary URL for CatsWeb services, but those services are also reachable via http://www.catsweb.txstate.edu.
Third-level domain names and top-level folder names may not exceed 63 characters in length and should be comprised of letters, numbers, and hyphens (i.e., no spaces or special characters).
Third-level domain names should not have been trademarked or copyrighted by any entity other than Texas State. For example, Texas State’s implementation of the Ensemble Video Management System has been branded MediaFlo with the domain name mediaflo.txstate.edu rather than ensemble.txstate.edu
Domain names must not be controversial, offensive, or misrepresent their purpose.
Information Technology will contact the registered owner or custodian of any resource that does not respond appropriately to network connection requests. If the inappropriate condition persists, Information Technology may block or redirect connection requests to the offending resource until the situation is resolved.
Information Technology may revoke or deny DNS service at any time for any resource found to be in violation of legal statutes or university policies.
PROCEDURES FOR DOMAIN NAMES OUTSIDE THE TXSTATE.EDU DOMAIN
Information Technology operates the university’s DNS service primarily to resolve the domain names of university resources (…txstate.edu) to their corresponding IP addresses. Information Technology may elect to provide DNS services (e.g., address translations, re-directs, etc.) for other resources, including those hosted outside the txstate.edu domain if, in its judgment, all of the following conditions are met:
the proposed resource significantly supports university-related organizations or functions;
the proposed resource will likely be used by a significant number of faculty, staff, or students;
the proposed domain name of the resource is unlikely to be confused with that of a Texas State organizational unit or with any existing resource within the txstate.edu domain; and
the administrator (e.g., vice president, dean, director, chair) of any organizational unit with which the hostname might otherwise be associated has explicitly approved the use of the hostname on a host outside of txstate.edu.
All such requests will be considered on a case-by-case basis (see Section 03.02 for examples of previously-approved requests).
Information Technology may refuse to provide domain name services for any resource hosted outside the txstate.edu domain if the resource signifies or represents:
a legitimate or significant risk to the confidentiality, integrity, or availability of the university’s information resources;
a risk to the reputational standing of the university;
an organization or venture, commercial or noncommercial, that is not an explicit part of the university; or
a project or activity that is funded primarily by non-university resources.
University affiliates (e.g., alumni association, booster clubs, etc.) that are sponsored by an existing university office, department, or faculty or staff representative may register resources within the txstate.edu domain or outside of the txstate.edu domain, consistent with other provisions of this policy.
External domain names registered by internal and external university affiliates (i.e. any party subject to other provisions in this or other applicable policies) must use a domain registrar based in the United States that has been authorized by the Information Security Office. Information about current, authorized domain registrars may be requested from the Information Security Office. New or additional domain registrars may be vetted by the Information Security Office by request with adequate business justification (e.g. a compelling need to register a name at a top-level domain not provided by an already authorized registrar).
To host a publicly accessible resource on a computer with a Texas State IP address, the resource owner must use “txstate” as the resource’s second-level domain name and “edu” as its top-level domain name. Such resources can be registered under other, additional domain names (e.g., “.com” or “.net”) with external domain registrars, but those externally-registered domain names must ultimately resolve to the same IP address as the university URL assigned to that resource (e.g., the domain name “McCoyMBA.com” may be registered with an external domain registrar as long as the name resolves to the same IP address as http://www.mccoy.txstate.edu/Graduate-Programs/Home/MBA.html). Such “vanity URLs” are subject to review and authorization consistent with this policy. Additionally, external domain names should be registered through reputable, authorized domain name registrars.
The above notwithstanding, Information Technology cannot guarantee and is not responsible for the accessibility of any resource registered under a domain other than txstate.edu. The information resource owner, under the advisement of the Information Security Office, will be ultimately responsible for ensuring the security of externally registered domain names.
To facilitate compliance with this requirement, the administrator of the resource should contact Information Technology to coordinate associated domain name services and IP routing configurations prior to requesting the domain name and prior to configuring any services related to the domain name and its IP address.
Third-party domain name registrars may offer additional services and products to their customers. Additionally, registration of an external domain name often allows the registrant access to DNS features normally managed by Information Technology. The registration and authorized use of an external domain name as outlined in this policy (e.g. “vanity” URLs) does not grant authorization to use or procure additional services, products, or features; each type of additional product or feature will require a context-dependent evaluation prior to authorization, consistent with typical IT procurement practices (see Best Practices for Managing External Domain Names for guidance and additional background regarding this policy).
REVIEWERS OF THIS UPPS
Reviewers of this UPPS include the following:
Position Date Chief Information Security Officer April 1 E3Y Associate Vice President for Technology Resources April 1 E3Y Associate Vice President for IT Assistance Center April 1 E3Y Director, University Marketing April 1 E3Y Vice President for Information Technology April 1 E3Y
This UPPS has been approved by the following individuals in their official capacities and represents Texas State policy and procedure from the date of this document until superseded.
Chief Information Security Officer; senior reviewer of this UPPS
Vice President for Information Technology