COMPUTER SECURITY ... or "Who let the dogs out?"
—Dennis Reguli, MCSE, MCSA, A+, Network+,
MSEE
Computer security is a lot like trying to keep the neighbors dog out of your
yard. Before you build that fence you have to ask:
- How big is that dog?
- Where is he getting into my yard?
- What will he damage if he gets in?
- How much damage can he do?
All security has inherent cost, so we don't want to overspend on our fence. Do
we need a three-foot picket fence to keep the Basset Hound out of the
flowerbed? Or do we need an eight-foot chain link with barbed wire to keep the
Rotweilers away from your four-year-old toddler?
We need to ask the same questions when we implement computer security (maybe
phrased slightly differently).
- What are the threats to my computers and network?
- Where are the access points for hackers and attackers?
- What data and systems are at risk?
- How much damage can be done?
The answers to these questions will determine the kind of security "fences" we
build for our computers/networks. As a minimum everyone, including home users,
should have anti-virus software that's updated regularly. Homeowners and small
businesses with DSL or cable modems should also consider a router. Not only
does it allow multiple computers to connect, it also makes it very difficult
for an external user to establish a connection to your network.
As we go up the scale of stronger security needs, so does the cost and
complexity of implementing stronger protection (higher fences). Businesses
should establish physical security for all systems, with stronger methods for
critical ones. If they are using Microsoft operating systems they should use
NTFS file systems and establish appropriate permissions for resources. They may
even encrypt especially sensitive data. For very critical resources that
absolutely must be protected, businesses will often install Certificate
Services and encrypt all data on the network to avoid interception and
corruption by network "sniffers."
|
|