Table of Contents
Northern Illinois U. Attempts to Defend Content-Based Internet Restrictions
Yesterday, the Internet got wind of Northern Illinois University鈥檚 (NIU鈥檚) for 鈥渋nformation technology resources,鈥 which lists prohibited uses of NIU鈥檚 network and hardware. As I explained here on The Torch last night, the policy became news after a NIU student posted a he reportedly received while trying to use NIU鈥檚 network to access the Wikipedia page for the Westboro Baptist Church (WBC). The warning tagged the page as 鈥淚llegal or Unethical鈥 and informed the student that the page had been 鈥渞ecorded for review.鈥 Most chillingly, the notice stated that unless the student was attempting to visit the page for 鈥渓egitimate business purposes,鈥 it was 鈥渉ighly probable that the access would violate the Northern Illinois Acceptable Use Policy.鈥
Unsurprisingly, media outlets including the New York Observer鈥檚 , , and slammed NIU鈥攁 public university bound by the First Amendment鈥攆or restricting access to a broad range of constitutionally protected expression as an 鈥渦nacceptable use鈥 of the Internet.
NIU should have simply admitted that it had erred by using an Internet filter seemingly designed for corporate use on public university students in a misguided attempt to enforce a broad, subjective policy. But instead, hours after the story broke, , arguing that it doesn鈥檛 prohibit students from visiting social media sites, Wikipedia, or political websites, as students had claimed. NIU鈥檚 statement, however, at best glosses over the enormous problems with , which (for now) is still live on the university鈥檚 website. (We have a copy, in case it vanishes.)
First, NIU鈥檚 denial opens by explaining that the policy is necessary to thwart hackers and prevent users from accessing sites that 鈥減ose an active security risk.鈥 But surely the need for information security does not justify broad content-based restrictions on websites that students and other network users visit. Why would a student accessing Wikipedia receive a warning about 鈥淚llegal or Unethical鈥 content if NIU is just trying to address sites that 鈥減ose an active security risk鈥? Does the WBC page on Wikipedia host malware of some kind?
Second, NIU鈥檚 statement claims that students are allowed to access social media sites:
鈥淚 want to assure students that 鈥 contrary to some Internet reports 鈥 they will have access to social media websites such as Facebook, Twitter, Instagram, Pinterest, and others,鈥 said NIU Vice President and Chief Information Officer Brett Coryell. 鈥淣IU is wholly committed to allowing free and open access to information and only considers blocking network traffic that constitutes a well known threat as determined by the broader IT security community.鈥
According to Betabeat, though, students reported being unable to access social media. Were they lying? Or is NIU scrambling to figure out what its new firewall system鈥攚hich it admits is 鈥渟till in its early phases of tuning鈥濃攄oes and doesn鈥檛 allow students to access? One would hope that a university would default to allowing access until sites are determined to be harmful鈥攏ot vice versa.
And despite NIU鈥檚 assurances to students, the following 鈥溾 are explicitly enumerated in NIU鈥檚 policy:
Use of personal social media sites, following specific direction to cease or not utilize university equipment or time to an extent or during time periods that would interfere with professional responsibilities, including, but not limited to, Facebook, Twitter, Flickr, Pinterest, LinkedIn, Foursquare, etc., unless associated with professional responsibilities.
So it is unacceptable to use social media 鈥渇ollowing specific direction to cease or not utilize university equipment or time to an extent or during time periods that would interfere with professional responsibilities.鈥 But this makes no sense as applied to students鈥攖hey don鈥檛 have 鈥減rofessional responsibilities.鈥 If this section of the policy was meant only to be for employees and not students, it should say so. But it doesn鈥檛鈥攖he policy says it is applicable to 鈥渇aculty, staff, emeritus personnel, and students in good standing.鈥 And students, not employees, are the ones reporting that they can鈥檛 access social media.
NIU鈥檚 flawed policy goes further than attempting to regulate access to social media. It also covers a wide range of protected political speech:
Using the resources for political activities, including organizing or participating in any political meeting, rally, demonstration, soliciting contributions or votes, distributing material, surveying or polling for information connected to a political campaign, completing political surveys or polling information, and any other activities prohibited under the ethics act and/or other state/federal laws.
Under this policy, student members of, say, the NIU College Democrats can鈥檛 send out emails to their membership announcing their next meeting. That鈥檚 ridiculous.
NIU鈥檚 statement then attempts to explain away the warning notice the student received when he tried to visit the WBC Wikipedia page:
Portions of NIU鈥檚 longstanding acceptable use policy are shown when users encounter a blocked site. However, it is important to note that some aspects of the policy are addressing employees, such as the ethical issue of excessive use of state-owned equipment for browsing personal web sites.
Characterizing that ominous notice received by students attempting to visit such 鈥淚llegal or Unethical鈥 websites as Wikipedia as simply 鈥減ortions of NIU鈥檚 longstanding acceptable use policy鈥 is an impressive exercise in damage-control spin, but it certainly doesn鈥檛 fix the problem. The bottom line is that a firewall maintained by NIU, a public university, is telling students that clearly protected content, like a Wikipedia page, is probably 鈥淚llegal or Unethical鈥 and students risk punishment by going there. That鈥檚 a problem. And that kind of bizarrely threatening and heavy-handed warning will likely achieve the same result as simply blocking the website, at least for students who value their academic careers.
The text of the policy emphatically does not support the claim that the policy addresses employees and not students. It states that 鈥渁ll individuals, including, but not limited to, employees, students, customers, volunteers, and third parties, unconditionally accept the terms of this policy.鈥 (Emphasis added.) The policy does not indicate that certain provisions apply only to employees. If parts of the policy concern only employees, they should be clearly labeled as such. They aren鈥檛. If NIU wants to regulate staff use of the Internet, it should write a separate staff policy鈥攎aking sure that it applies only to non-academic staff, of course, since professors also shouldn鈥檛 have to receive warnings when trying to visit Wikipedia!
One other issue: As this controversy hit Twitter last night, NIU鈥檚 Twitter account wrote, 鈥淭he restrictions are on NIU computers, not personal computers, etc used by students鈥:
The restrictions are on NIU computers, not personal computers, etc used by students.
鈥 NIU (@NIUlive)
That also doesn鈥檛 appear to be the case. The policy begins:
Northern Illinois University information technology resources, including the electronic communications network (NIUnet) on the NIU campus and off-campus education and research centers, computers attached to this network, and any associated computational resource or service are for the use of persons affiliated with Northern Illinois University, including faculty, staff, emeritus personnel, and students in good standing. [Emphasis added.]
The policy itself says that it applies to 鈥渃omputers attached to this network鈥 (which would include students on campus Ethernet or Wi-Fi) and to the network itself. Perhaps NIU鈥檚 current IT staff intends to apply it only to NIU-owned computers, but that doesn鈥檛 appear to be what students are experiencing, and it鈥檚 not what the policy says.
FIRE often warns that as long as poorly-written written policies exist, the possibility that they will be enforced exists鈥攁nd here, we鈥檙e seeing what happens when they are. If NIU truly does not intend to apply the policy to students, then it should take it down from the university website and stop threatening to punish students when they try to access Wikipedia or any other websites containing clearly protected content.
Nobody should be reassured by NIU鈥檚 mealy-mouthed responses. NIU must revise its policy and ditch its firewall to make sure that neither the policy nor the firewall is being used to censor certain viewpoints or to deter students from accessing constitutionally protected expression online.
Recent Articles
FIRE鈥檚 award-winning Newsdesk covers the free speech news you need to stay informed.