Desktop Security

But before then, will your answer to the following simple question be positive or otherwise?

Have hackers paid you a courtesy call in recent times? If so, what did they leave on their trail, especially on your desktop? I want to assume it won’t be palatable if truly they are hackers? This only brings out the essence of desktop security.

What then is desktop security?

Every security, be it programs, facilities or your attitude or behaviour, put in place to check that there is no unauthorise access, or disclosure or modification or damage to your information assets stored on your desktop, also known as Personal Computer, can be regarded as desktop security.

I think it will also be appropriate to talk about various names of desktop computer before looking at desktop security in more details.

Desktop Computer – what is it?

Desktop Computer can be defined in various ways to mean various things depending on the context. It can be defined as “a single computer commonly refers to as a PC (Personal Computer)”.

Although this term is often used to refer to a specific type of personal computer, that is, one based on the nonproprietary architecture developed by IBM or Mac or Sun. This type of personal computer has a higher capacity than others and is commonly used in special areas like engineering. The general definition will be assumed in this paper.

The term desktop in the real sense simply refers to a stationary computer regardless of whether it is on a desktop or under a tower case.

Desktop computer is also called a “client computer” or simply “client” or a “desktop”. It is also referred to as a microcomputer in reference to its size when compared with the earlier, bigger version, the minicomputer.

A microcomputer is a computer system in miniature. It is a collection of hardware and software that is small enough to fit on a desk (or into a briefcase) but able to perform the four major functions that defines a computer system: input, processing, storage, and output. After microcomputers were developed, the term “personal computer” was coined to describe it and this was later shortened to “PC”.

Clearly, networked desktop computers are the dominant e- computing platform since late 1990s to date hence an understanding of desktop computer security is more important than ever. Desktop machines are an integral part of the client-server distributed computing paradigm that dominates the late 1990s. So, to talk about desktop security without looking at what is happening within the network that links them will not be a complete exercise.

Then, what are the possible risks with desktop computers which will then determine the type of destop security to be put in place.

RISKS PECULIAR TO DESKTOP COMPUTERS

i) This can be summarized as data disclosure, data loss or destruction and data integrity issues.

This can happen by copying sensitive/critical information assets like proprietary information, product specification/formulation using removable disk drives to copy it. The intention may be to sell it, which means that it is disclosed to unauthorized parties. The information might be altered this.

ii) Removal of hard drive. In some cases, when the attention is on the computer hardware but not the information it contains, the hard drive could be removed out rightly or replaced with a substandard quality. The intention in this case is sell the parts removed.

iii) The use of foreign and un-authorized or pirated software on company desktop.

Employees could also bring into the business systems, foreign and un-authorized or pirated software which may be a subject of litigation, if it is later found out by the rightful owner.

iv) Viruses, Trojan codes, Spyware could infect the individual or company desktop.

The foreign software download can also be a source of viruses, Trojan codes, spyware into the company network which can then spread to all computers on the network.

DESKTOP SECURITY

For the purpose of our discussion of desktop security, the approach that shall be adopted here would be to discuss both the desktop as a stand alone and as a computer that is linked up to other computers on a network. The advent of the internet and the World Wide Web even makes it more relevant. Specifically, these will include the following:

i) Install good and up-to-date Antivirus program. Also retain the setting that schedules regular updates of virus definitions from the central server.

ii) Implement appropriate security policy. This concerns corporate entities. Where it is a personal computer that is being used at home, appropriate security awareness training of the owner or users is necessary to guide as to the appropriate computing or surfing behaviour.

iii) All desktops should have an administrator account that is not used as the regular login account.

The login for the administrator account should be changed from the default. From experience, administrator password are so common made available among the IT staff that it can easily be obtained by a non-IT staff.

iv) All the passwords should be “strong” and meet the minimum standard e.g.

a. must be 6-8 characters in length and include the following

b. must include both lower and upper case

c. must include alpha numeric

d. must include punctuation such as ! $ % & * , . ? + - =

e. must include special characters

f. must be new, it must not have been used before or at least, in the last two years or six previous password changes.

g. passwords expire of every six months with mandatory change put in place

v) The guest account should be disabled.

vi) Mobile storage devices (flash drives, CD/DVD drives, memory sticks, floppy drives, and external hard drives) need to be controlled.

vii) There should adequate and regular data back up (as shown below, back up of the data on the servers was in progress).

viii) All available security features on new machines e.g. firewall should be activated even, if other security controls would be added.

ix) All compromised machines, when identified and separated, should be rebuilt from scratch (i.e. erase the hard drive and start fresh from installation disks).

x) Appropriate mandatory access control must be put in place for remote logging. VPN and/or SSL should be used where security is of essence.