This advisory provides guidance on striking a balance between using website traffic analysis tools (i.e. analytics) to create a better user experience for website visitors and avoiding unnecessary collection of information about our users that could constitute a breach of trust.
The Architecture Review Group takes a university-wide lens towards enterprise architecture opportunities and practices to make informed technology decisions, especially in cases where there is the potential for broad impact, significant architectural change, the involvement of multiple university groups, or significant investment.
This document allows end users the ability to create SharePoint sites/O365 Groups/Microsoft Team sites as a self-service model while maintaining a naming convention for reporting and tracking purposes.
This document provides a discussion and recommendations for the use of http cookies in web sites and applications to avoid operational and security issues.
This document includes the HUIT standard for including REST APIs in the API gateway and portal, as well as a guide to decisions related to HUIT’s API program.
The scope of this standard extends to all server instances that are within the HUIT domains on a fully-managed basis, or are hosted within HUIT on behalf of customers that administer the server instances. The overarching goal of this work is to satisfy Harvard’s HUIT Information Security Policy Objectives and NIST Cyber-Security Framework (CSF) Objectives.
The HUIT standard for the design and management of AWS accounts to control for the lack of accountability and reduction in economies of scale that can take place in a large and decentralized institution.
This document provides an overview of the overall process, roles, and technical requirements required to utilize the eCommerce Gateway with Salesforce.
The Harvard University Digital Accessibility Policy addresses the needs of individuals with disabilities who seek to use University Websites to participate in University programs and activities and/or conduct University Business.
This document provides recommendations for choosing an authentication system for Salesforce, based on user experience, security and practical considerations.
This document discusses the top challenges researchers experience in the use of the Cloud and provides recommendations and guiding principles for putting a solution into place.