Get work done even under lock and key.

Passwords and Security Vishnu Gopal, mobME

RESTRICT ACCESS TO IMPORTANT STUFF

RESTRICT ACCESSDo not obstruct work.

WHAT. HOW. PROBLEMS. BENEFITS.

secure documents:email, keys, content

technical: chat logs, logins, code, server access, billing info

example:securing email.

STOP forwarding @mobme mails to personal accounts.

choose STRONG passwords not used

elsewhere.

do not reveal your password.

change the password often, say once a month.

Problem 1: I can’t remember my ruddy password.

Problem 2: I can’t access a computer and something

needs to be done now!

Problem 3: I can’t be bothered to change my password!

Solution 1: There’ll be a central person or database to ask.

Solution 2: Give up your key. Change it afterwards.

Account for this.

Solution 3: Somebody else will do it for you.

Benefit 1: Track and account activity.

Benefit 2: Defined Responsibility

Benefit 3: Prevent accidents.

Benefit 4: Prevent social engineering hacks

This is hard to do well and

get the right balance.

But the problems are not technical.

Let’s analyze the FA server wipeout.

No defined responsibility.

Too much access.

Not enough documentation & help.

How do you prevent this?

fundamental tradeoff here is: secure systems

are harder to access

but secure systems prevent accidents and

hacks...

and just for that reason, they decrease overall

turnaround time.

what can you do?

FinisQuestions?

vish.in