|
|
FAO: C.E.O. SmallCompany Holdings Ltd. Sender:Frank Loan 9616381 R.E. Needs and concerns relating to computer security. Dear Sir, Security threats can be classified into two primary areas, natural disasters (i.e. floods, fires, earthquakes, hurricanes) and human. The latter can be again divided into malicious (Hackers, Insiders) and non-malicious (ignorant employees). In the following memo I will try to address these issues and highlight possible solution to same. Identification and authentication, and access control. The primary threat to data integrity comes from authorized users who are not aware of the actions they are performing. · The selection of a password by a user is problematic owing to the number of different that each user may conceivably need to remember to access each section of a system (network, e-mail, etc.). · User will inevitably choose passwords that are easy to remember (birthdays, names of famous people). · This will aid malicious attackers in giving them a good chance of guessing the correct password. · Choosing a less obvious password can give rise to problems of it’s own however. For instance users have been known to keep their password and user ID written down to aid memory – this can easily fall into the wrong hands.
|
