Having identified the security threats to computer system and developing policies to guard against it occurrence,

there is need to put in place. The following are some of the list of mechanism that can be used:

 

Security against physical threats

Marking and restraining of equipment is the first step which can be used to guard against physical threat.

 This can be achieved by marking the computer physical gadgets such as the chassis and the screen

and restraining access to the computer environment. This will ensure that only an authorized person has access

to the computer environment. The provision of security gadgets such as automated alarm system,

CCTV cameras is also a good measure against physical threat.

 

Backing up computer data in an offsite location has also proved to be a major security against physical threat.

Back up data ensures user access o the data even if the original data has been corrupt or lost.

 

It is also important for organization or computer users to practice recovery procedure

 which is an automated system for the recovery of data should there be a system failure.

 

Further reading at:

 

http://www.uark.edu/staff/drp/drptoc01.htm

 

Security against Accidental error.

 

Accidental loss of data due to accidental error can be avoided by ensuring the following practices:

 

Recognising icons.

 

This is achieved by making user select the right icon from a list of icon instead of typing in the password.

The system is programmed such that it keeps the log of icon selection and if the selection is more than

the required number it automatically block of the user from logging in.

 

Answering questions

 

This is a security measure which provides a series of question while the user is trying to logon to the system.

 In the process of creating the user, a series of question is generated which the user know of and the answer

supplied by the user is kept against the supplied question. The user is expected to remember this answer

 each time he tries to logon. At logon, a random question is chosen which the user supplies the correct answers to.

 An attempt log is kept and the system automatically block out the user if the no of logon attempt is exceeded.

 

 

 

 

Challenge-response

 

The user picks an algorithm when getting user account

 I.e.   (x + 10)* 10

At login the computer displays a number (I.e. 5) the user answers with the solution (I.e. 500).

 

 

 

 

For further reading on how to enforce strong password usage within an organization visit:

 

http://www.microsoft.com/technet/security/smallbusiness/topics/NetworkSecurity/enforce_strong_passwords.mspx

 

your computercould be infected  with spy ware......get rid of it visit www.symantec.com for latest anti spyware product

 

 

 

Next                                                                                                                            Back to Home