Security in Depth

Posted on April 7, 2008
Filed Under Business Computing, Internet, Security |

When people hear the word “security” in the context of a computer, they inevitably think of measures taken to prevent hackers from getting in. The truth of the matter is that security really means the protection of data and equipment as a whole. The idea of a hacker sitting behind a computer screen feverishly scanning the Internet for his or her next victim to attack is also more the reality of a Hollywood script than it is reality in the computing world.

Physical security entails keeping critical systems away from people who might damage them, providing an environment free of dust and high temperatures, and providing clean power that continues even during a blackout. Datacenters for example are typically highly secure buildings with ample air conditioning and generator power as well as uninterruptable power supplies.

As for the question of hackers; most threats from the Internet come in the form of viruses, spyware, or scripts. A “hacker” may find a backdoor into your system but nowadays he or she is more likely to have lured someone into installing malicious software that in turn opened a backdoor and reported back that it’s open. Even then, the hacker likely wouldn’t try to gain access manually.

Nowadays backdoors are more often than not used to load more malicious software that makes the computer a part of a botnet – a network of infected “zombie” computers that are controlled centrally – and uses it to send spam. It once was that viruses were the bane of the PC world, and there still are plenty of them that appear every day, but for all the fun there is for a virus author in creating a new plague, there’s real money to be made in spam and the malware that sends it.

The real trick in keeping a computer secure involves not only keeping hackers out but securing in depth much like dressing in layers in the winter. Some of the things you can and should do are:

Install a hardware firewall at the edge of your network – the “edge’ of a network in most cases is simply where the network connects to the Internet.

Install and maintain an antivirus program – viruses are still a threat and while you need antivirus, it’s not an install it and forget it operation. Antivirus programs need to be continually updated to catch new viruses. Most update automatically but you need to double check now and then.

Install and maintain an antispyware program – just like antivirus programs, antispyware software needs to be updated continually. If your antivirus software doesn’t include antispyware, a good program like Windows Defender (http://www.microsoft.com/athome/security/spyware/software/default.mspx) will help protect you from becoming a zombie (grin).

Backup, backup, backup – it’s not a question of if your computer will break, it’s a question of when. Viruses, malware, and accidental deletions can also ruin data. Almost all new computers today come with a CD burner. Give backing up a shot as you never know how valuable your data is until it’s gone!

Update, update, update – you know that little message that pops up every now and then that insists there are updates available and wants to know what you’d like to do about it? Install the updates. They very often fix problems and add security enhancements like the new phishing filter in Internet Explorer 7.

If you don’t trust it beyond a shadow of a doubt, don’t install it – many programs that purport to protect you from spyware for example, install spyware themselves. If you don’t trust it completely, don’t install it.

Comments

Copyright © 2007 Glen Bowes • Using Modernpaper theme created by Performancing