Please enable JavaScript.
Coggle requires JavaScript to display documents.
5.4, 5.5: Physical and Digital Security (5.5 (Passwords (Having a log on…
5.4, 5.5: Physical and Digital Security
5.5
Passwords
Having a log on ensures not everyone can access the networkOnly people with a valid login can access the network
- Essential to have a strong password
- Essential to keep these details a secret
-
Token
-
A security technique that authenticates the users who attempt to log in to a server, a network, or some other secure system, using a security token provided by the server
- Used for two factor authentication
- So long with a password you may be required to enter a code which expires in 30 seconds
- This is regularly used in online banking
:check: Secure as not only does the user require their username and password they also need a token to perform certain tasks
:check: Even if someone knew your token it will be useless by the time they use it
:red_cross: User needs to carry the token device at all times
:check: If it is an application then the phone which it is on need to be carried
Locks
-
It is going to be able to protect the devices in the workstation
- Since all the system resources are placed inside a physical facility, the environment around and within this facility should be safeguarded from both natural and unnatural events
:check: Cheap to install locks on existing doors
:check: Easy to use
:red_cross: Anyone who has access to the key can enter
:red_cross:A key can easily be cut (copied)
Shredding
-
Confidential files should be shredded when no longer required
- This ensures they don’t fall into the wrong hands
- You can also shred discs and credit cards
:check:This ensures all confidential information can’t fall into the wrong hands
:red_cross: Some criminals use the shredded paper and reassemble it
-
Privacy Screen
-
Prevent screen visibility from any angle other than straight on, keeping your data confident Can be used in open plan office environment privacy screen can be used to avoid eavesdropping
:check: Cheap and easy to install
:red_cross: It makes eavesdropping much more difficult but does not completely eliminate
Biometrics
-
This uses human characteristics to authenticate the individual
- Extremely secure as it is extremely rare for individuals to have the same fingerprint
:check: Secure as features are unique to the individual
:check: These features can’t be copied like a key
:red_cross: Certain diseases can alter features therefore not allow entry (eye disease)
:red_cross: Expensive to install and implement due to all the sensors required
Permission
-
In an organisation people are at different levels so need different levels of accesse.g.
- The Manager should be able to access the majority of files with read/write access (they can read and/or edit the file)
- A shop floor assistant may have read access to certain files but NOT allowed to edit the files
Read only access
- A permission to access files or directories where the user is only allowed to read, not make changes
Read/Write access
- Refers to a file that can be updated and erased. If a shared file is given read/write access, it can be changed by someone else on the network
Anti-virus
-
Software which prevents viruses from being installed on a computerHow?
- Begin by checking your computer programs and comparing them to known types of malware. It will also scan your computer for behaviors that may signal the presence of a new, unknown malware
- Then, when these known or suspicious patterns are detected, the antivirus warns the user about the action before they are performed
Why?
Because computers are regularly threatened by new viruses. The anti-virus updates contain the latest files needed to combat new viruses and protect your computer
Anti-spyware
-
Software which prevents spyware from being installed on a computer
- Alerts users to the existence of spyware and then gives them the choice of quarantining or removing the offending file or files, directories and registry keys affected by the spyware
Encryption
-
This is where data is scrambled when it is stored on a database… so if someone did gain access to the database they would not be able to make use of the encrypted data
Firewall
-
Software which stops unauthorised packets/data from accessing the network
- It filters data packets and only allows authorised packets through