Secure in My Identity
- 11 October, 2005 10:03
- Comments
"Take security issues into your own hands," the experts told me. Now all I've got are sore hands . . .
I admit it - I'm to blame. I used to think viruses, spam and security breaches were caused by bored students, criminals and Nigerian princes. They were assisted by people in Redmond releasing operating systems with holes in them, ISPs who let spam mail through or education authorities who taught people to spell (I used to pick dodgy e-mails by the poor spelling).
Having read reports by Gartner and others on security, I now know the mistake lies with me. It was me who didn't download yesterday's urgent patch until today, me who didn't turn on all the security protection that the vendors don't turn on in the base product and me who didn't test that the latest mandatory patch would stop my database working.
How could I possibly predict that opening unsolicited e-mails with attachments promising naked tennis player pictures or lengthening tips (in both meanings) could result in a virus attack? Anti-spyware vendor Webroot says the average business computer has 27 spyware pieces, which prompted me to check mine. My laptop had 83, but I've always considered I was well above average.
The real trouble is that hackers appear to read their e-mail more regularly than I do, because as soon as a security update bulletin is released, new viruses exploiting it deluge me while I'm still installing last week's patch.
My other security issue was wireless access. In tracking down what was causing a sudden huge excess in downloads, I discovered a guy parked outside with a Pringles can antenna. While he was engrossed in his laptop, I snuck outside and siphoned all his petrol. Then I blocked his access and watched as he drove away. He only made it 300 metres. These days petrol is worth a lot more than megabytes, so I reckon we're even now.
I have unearthed a valuable shareware tool that eliminates the most insidious virus to contaminate the business world: non-comprehensible corporate speak. Bullfighter (ouch!) analyses documents and presentations to reveal buzzwords empty in meaning. I recommend it highly to other people (clearly I do not require surveillance by a technological device in order to establish clarity in the phraseology within these literary oeuvres).
The biggest security issue today is identity stealing. Viruses are increasingly originating inside company DMZs, credit card identities are being stolen and the spotlight is now on biometric user authentication. The most common method is handprint recognition, although movies tell me iris recognition is the way to go. A more accurate biometric target is the ear, according to groundbreaking work by Southampton University researchers (when will they get a real occupation?). The ear is ideal as it changes very little between birth and old age. The drawback is that hair can obscure the ear, but I'd overcome that by mandating all employees have number three haircuts.
It was while working with health researchers that I hit on the best biometric test. We all know DNA is the most accurate individual marker, and tests have become cheap and rapid. So I've changed my computer keyboard to incorporate a DNA analysis test and have embedded tiny syringes into those little bumps on the keytops between D & G and between H & K. Each time either key is struck, a small blood sample is taken, analyzed and compared to the stored user record. Should the DNA records not match, the system is immediately locked.
As a biometric security device, it has been an outstanding success. The only downside is it causes considerable pain in the index digits when typing large documents.
Which is why, excepting one proper noun that I couldn't avoid, I've not used those two letters throughout this entire article. It's a small price to pay to guarantee accurate user identification (ouch!).
Bruce Kirkham is a veteran IT professional specializing in leading-edge technologies and scepticism, who views the IT industry not so much as "dot com" as "dot comedy"
Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.
- Bookmark this page
- Share this article
- Got more on this story? Email CIO
- Follow CIO on twitter
-
NBN build gaining momentum daily: Quigley
-
Face Time - Interview with John Brennan and Robert DiStefano
-
Monday Grok: Will Siri crack the walls of GOOG?
-
Face Time - Interview with John Brennan and Robert DiStefano
-
Face Time - Interview with John Brennan and Robert DiStefano
-
IBM agility@scale™: Become as Agile as You Can Be
In this eBook, Scott Ambler, IBM Rational software's Chief Methodologist for Agile and Lean discusses how IT organisations are finding that agile project teams, as compared to traditional project teams, enjoy higher success rates, deliver higher quality projects, have greater levels of stakeholder satisfaction, provide better return on investment (ROI) and deliver systems to market sooner. -
CSO Security Buyers Guide 2011
Welcome to the 2011 /2012 CSO Security Buyers Guide CSO is keeping security professionals ahead of the evolving threats and challenges to their businesses. This resource for security professionals assists you in finding leading IT security vendors by their products and solutions. Happy Browsing! The 2011 CSO Buyers Guide team -
Business Intelligence Best Practices for Dashboard Design
Even if a dashboard’s appearance looks professional and is aesthetically pleasing, appearances can be deceiving. Although visual design is important, it is also important to ask yourself: Is the data reliable? Is it timely? Is any data missing? Is it consistent across all dashboards?. This paper offers an overview of best practice business intelligence (BI) dashboard design principles and discusses data integration options for getting data into a dashboard.
Get exclusive access to Invitation only events CIO, reports & analysis. 
Comments
Post new comment