Home >> Integrating IT >> Project Management

Why you shouldn't trust your users

By: Mark Gibbs On: 31 May 2008 For: CIO Canada Creator

A famous experiment continues to show that people are willing to divulge the answers to questions about corporate security in exchange for a chocolate bar.

IS YOUR NETWORK SECURE ENOUGH TO FIGHT OFF CHOCOLATE? The short answer: probably not.

Even with all of the security-related news in recent years, Infosecurity Europe’s now famous experiment (it just completed the sixth one) shows people are still willing to divulge questions about corporate security in exchange for a chocolate bar.

Here are four things you can do to minimize the security risks from your users:

First, educate, educate, educate. There is no substitute for informed workers, and telling them once a year won’t be enough.

Second, make them sign an agreement that has some teeth. Something along the lines of, “If it is found that I have jeopardized corporate security through my stupidity I understand that I will be thrown out on my ear” (human resources may want to fine tune the wording).

Third, reduce or even remove your reliance on user names and passwords as access controls. Fingerprint readers and swipe cards in addition to or instead of account names and passwords will provide insulation against users revealing their account details to a third party.

Fourth, warn your users about strangers with candy.

Sign up for our Newsletters

Tags: informed workers

Close X

Your Name:

Your E-mail:

Friend's Name:

Friend's E-mail:

Close X

| Views: 564 | Rating:

(0 votes)

Rate this article on a scale of
1 to 5 stars,5 being the best.

Close X

Page 1

Quick Access

Video Conferencing Cloud Computing Resource Centre CIO Canada's Brainstorm Centre CIO Canada Debate

Mark Gibbs is a contributor to the International Data Group (IDG) News Service, which publishes global technology stories from bureaus around the world to more than 300 publications in more than 60 countries.

Nicolas Sarkozy falls prey to cybercrooks

French authorities tighten Internet banking security after it was revealed that hackers had stolen 'small sums of money' from the online bank account of the country's president

Flunking the password test

In a recent survey, one in three IT administrators said that they or one of their colleagues have used top-level admin passwords to pry into confidential or sensitive information at their workplace.

Strangers with candy

Your company's security is for sale for the price of a chocolate bar

Good thing I lied about my age
hello and welcome to shane schick’s computerworld. i am shane’s assistant editor, greg meckbach. shane will be away for a while. see his most recent post below.i have two confessions to make. first, i have been a luddite, and did not sign up for facebook until nearly a year ago, when i joined computerworld canada and made a profile for our group. the second confession is, i lied about m

blog comments powered by Disqus

Most Popular

Articles

Most Viewed
Most Emailed
Top Rated

Most Viewed
Most Emailed
Top Rated

Shaw wins Internet deal with city of WinnipegBy: Howard Solomon (16 May 2012)Shaw Communications has scored a big win in its campaign to extend its services to municipalities. The Calgary-based cableco won a bidding contest to ...
The cost of open data: A Canadian lawyer's analysisBy: Lou Milrad (14 May 2012)We’ve started hearing a lot over the last year or so about “open data”, particularly in the municipal sector. It’s all ab ...
Rogers offers lure to M2M developers By: Howard Solomon (11 May 2012)Network operators are always looking for ways to expand the way organizations can use their networks beyond voice and data centre traffic. To encour ...
Canadian employee survey indicates dark view of cloudBy: Shane Schick (16 May 2012)If Canadian enterprises are using cloud computing, their employees may be the last to know. A recent research bulletin from Toronto-based Pollara of ...
Researcher runs IP network over xylophonesBy: Joab Jackson (14 May 2012)NEW YORK -- Vint Cerf once wore a shirt that read "IP on Everything," a wry comment on the universatility of the Internet Protocol he helped invent, a ...

Cisco kills off Cius developmentBy: Paolo Del Nibletto (5/25/2012 11:56:00 AM)In a surprise move, Cisco Systems Inc. has confirmed it will no longer invest in developing the Cius tablet device running Android.The Cius tablet was ...
Microsoft's new server and tool upgrades and CIOsBy: Juan Carlos Perez and Chris Kanaracus (5/25/2012 10:21:00 AM)MIAMI -- CIOs and IT directors tracking the barrage of major upgrades for Windows and Office also need to stay tuned to the refresh cycle for Microsof ...
Microsoft clarifies tremendous Windows 8 claimsBy: Gregg Keizer (5/25/2012 9:21:00 AM)FRAMINGHAM, Mass. -- Reports earlier this week that Microsoft CEO Steve Ballmer predicted unprecedented sales of Windows 8 were wrong on multiple ...
How to make PHP apps scaleBy: Andrew Oliver (5/25/2012 9:14:00 AM)SAN FRANCISCO -- The power of PHP and an RDBMS is the ability to nail the major features of an application with cheaply paid developers in a reco ...
Funding rural broadband: Whatever it takesBy: Howard Solomon (5/25/2012 7:11:00 AM)For rural communities looking to get ultra-fast broadband speeds increasingly seen in cities, there’s only one obstacle: Money. Getting it is ...

VIDEO: Why IT pros need 'soft skills'By: Brian Bloom (23 May 2012)Unemployment in the high-tech sector is low. But are IT pros getting the jobs they want? Stafflink CEO Tim Collins explains why having impressive ...
Why integrate Wi-Fi radios into small cellular cellsBy: Ajay Kumar Gupta (15 May 2012)FRAMINGHAM, Mass -- (Gupta is team lead at Wesley Clover Communications Solutions, which develops solutions from Canadian companies -- including Mitel ...
CEOs demand CIOs prepare for growth and mobilityBy: Mark Chillingworth (15 May 2012)CEOs have shifted their position and are releasing funds to CIOs that have innovations for mobile users and revenue generation ideas, finds the CIO Su ...
EMC mega-launch targets hybrid cloud, big dataBy: Jeff Jedras (22 May 2012)LAS VEGAS – With nearly 15,000 attendees making this its biggest user conference, IT infrastructure vendor EMC Corp. has made its largest ...
Why Eugene Kaspersky has big problems with big dataBy: Jeff Jedras (22 May 2012)NASSAU, BAHAMAS – The big data drumbeat is becoming deafening in the technology sector as vendors and analysts rush aboard the latest trend. But ...

Related White Papers

Achieving The Enterprise Strategy Through Project Execution - A disconnect exists between those deploying projects and the executives whose strategies those projects support. CEOs need transparency to make strategic projects successful.

Five IT Projects for business agility - Five real-world IT projects that can make your IT department a hero in the eyes of your CEO and drive business agility and success. Learn more here.

IBM Service Management - a better way to manage - An overview of IBM's service management products, this brochure outlines how these tools help you align people, processes, information and technology. Complimentary with registration. Sponsored by IBM.

Driving innovation through effective service management - This white paper discusses how a service-oriented governance framework can help ensure that IT decisions are consistent with business vision, values and strategies—and that IT delivers maximum value to the business.

IBM Whitepaper: Enabling operational excellence for your application infrastructure - Today's organizations must optimize the quality of service, while minimizing IT expenditures; respond quickly to customer and market demand, while using all available assets; and have an IT infrastructure that keeps pace with changing business needs - with a minimum of human intervention. This white paper explains how businesses of all sizes can use IBM WebSphere Extended Deployment software to increase business flexibility and reduce IT complexity.

more: White Papers

CIO Canada	ComputerWorld Canada	Network World Canada	Computer Dealer News	Direction Informatique	IT Business.ca
Click Here to Subscribe Now!

IT World Canada Curated
	Job and Career Resources • Canadian IT Jobs • IT Sales Jobs • Salary Calculator • Tech Learning Space	Knowledge Services • CDN ProFIT - Turnkey Marketing solutions • Visability • Knowledge Store
Subscribe Now- Register

Log In

Why you shouldn't trust your users

A famous experiment continues to show that people are willing to divulge the answers to questions about corporate security in exchange for a chocolate bar.

Quick Access

Related Content

Related Videos

Most Popular

Related White Papers

Email
Password