Archive for Computer & Network Security
How To Create Strong Passwords
Posted by: | CommentsPasswords are the foundation for computer, network and SaaS (Cloud) authentication. One has to create strong passwords to be the vanguard. The more complex you make your passwords, the safer your data becomes. Unfortunately, complex passwords and a frequent change policy are often met with resistance, causing employees to circumvent good security policy for convenience. Every organization needs a secure Password Manager. Microsoft Gold Certified Partner Uniblue recently posted the following article on password security. Read More→
Obama Administration Plans Internet ID
Posted by: | CommentsFox News reported on 1/8/11 that ” Obama Administration Reportedly Plans to Create Internet ID for All Americans“. Obama wants the Commerce Department to create Internet ID for all Americans.
Without getting into the political side, there are some key concerns that arise with a government issues Internet ID card. Digital certs will be implemented, but they are difficult to manage. Their main advantage is the non-repudiation feature – ensuring that an individual actual did something and can’t deny it later. But, to get that you need a central location to first authenticate that you are who you say you are. With all the fake and stolen ID’s out there can one really be sure of an individual’s identity anymore? That then may lead to fingerprinting everyone which brings up a whole new area of privacy concerns. Then who is going to check records and issue the cards? How much will they cost, who pays for it, and will it be such that only the “wealthy” can use the internet securely? Read More→
How to Detect a Phishing Email
Posted by: | CommentsI recently received an email that looked like Microsoft was doing a campaign on its 25-year anniversary of Excel. If I would submit an article of my best Excel story, according to the email, I could win an X-Box.
My first thought was, “Has it really been 25-years and, boy do I have some great stories.” But looking over the email, something just didn’t seem right. Was this a phishing email? So here is my quick and easy test to determine if the email is a scam aimed at getting you to involuntarily give up your login and password information. Read More→
Are Govt. Websites Designed by Preschoolers?
Posted by: | CommentsIt has been reported that Paul Ducklin, Head of Technology for Sophos, referred to the Lulz Security (LulzSec) hackers as “schoolboys.” He added that most of the break-ins were “languorously orchestrated, using nothing more sophisticated than entry-level automatic web database bug-finding tools, available for free online.” So are schoolboys hacking sites designed by preschoolers? Read More→
Common Password Pitfalls to Avoid
Posted by: | CommentsMicrosoft has an online report on creating and managing password security (see below). The suggestions would be funny if password security and cyber-crimes weren’t so serious and destructive to both individuals and businesses. What is also amusing is that Microsoft employees use smartcards to log into their computers and networks. I know because back in 2000 I designed and sold them the combinations physical and logical access employee badge with smartcard.
While I agree with their “Key to password strength”, what Microsoft and so many other companies fail to account for is the human element. Read More→
