IT Security – Can We Really Trust This Provider?

Multiple Opal cards have the capacity to make people enormously paranoid about using their credit. They’re even more paranoid when it comes to making sure that their passwords are safe, secure and easy to remember. Australians are some of the most suspicious people on earth, but there seems to be little change.

Maybe this is because the public trusts too much in the Cloud, and skepticism is totally justified. After all, it is a new frontier, and there’s still a lot of “unexplored country” out there. Companies are mindful of possible security problems and take proactive measures to protect themselves – but are they being over-zealous in their protection against known weaknesses?

This is a frightening thought, but it might be even more concerning if Australia had similar views on cryptography as the US and some other countries. There is no question that Australia is high on the list of nations that needs to have stronger cyber security. The problem is that its Government seems unable to see this and is encouraging citizens to send their emails in plain text that can be intercepted at any time.

One of the reasons for this breakdown of law enforcement is that the present approach of requiring ages for key and password to be increased is counterproductive. It is difficult to have an open and honest dialogue with your Customers about risks and vulnerabilities with comprehensive digital rights management. Those who enforce the laws are spending themselves in over their heads.

It is in no small part due to the lack of a cohesive cyber security strategy that we are seeing today. Once a cloud provider has been caught breaking the law via one of the many Data Protection authorities, the damage is done and they quickly become isolated. They soon become too frustrated and frustrated that their customers are not shopping in their own country anymore.

Once upon a time, Cloud computing looked extremely attractive to Australia’s banks. They saw this as a way to efficiently and cost effectively meet the demands of their customers for data back up. It was a relatively new concept at that time.

It is a different story now.

No longer is it simply the banks who need to think about cyber security, as Cloud Computing has now become a widespread concern. There is a real and current need for a comprehensive and frank exchange of information between the business and its employees.

It is a challenging environment out there and one in which the potential liability for failure is very real. Cloud computing is undoubtedly accessed by more and more people and while there will be no shortage of attention in the media about cyber security breaches, there will be an equally big queue of victims claiming they haven’t fallen victim to cyber hacking!

It pays to be aware though.

Here are a few tips for your Internet security.

If in doubt, don’t share data

Don’t share data in the public – Real talk, this one is a no-brainer. Don’t dump files into the Cloud, unless it is with someone you know well and trust. In short, “if in doubt then don’t share data”.

Stay aware – Remember that cyber threats are constantly evolving and it is critical to stay ahead of the game. Year on year, there will be more new malware, new exploits and new attacks. All of this means your Internet security platform needs to be able to cope with this and learn from the lessons of those who have been hit.

Control access – Make sure that those who have right to access your data are subject to the same control. Don’t send an email unless you know the recipient well or you know the subject of the email. Exercise caution when clicking on links – particularly if they come from your contactless bank statement.

Encrypt – We all know that we should never open files attached to our emails, but what if you receive an attachment from a friend? How will you be able to determine the file is or is not safe to open? An encryption service should be able to provide this information for you.

Gilbert Doctor, CEO of InFiveGroup, a company that provides encryption and authentication services, says that one of the areas that set it apart from other providers was its emphasis on putting control over the data back to the user.

‘On the whole I think users will be really happy with the services we provide them … In five years’ time, I think people will look back and say this was the right move,’ he said.

The five-year anniversary edition of Doctor’s guide is available now from his company. It has been expanded to recognise the key points of risk and the measures that the agency takes to protect an organisation’s assets.

He reveals how each of the biggest names in IT have worked to keep their users’ data safe over recent years and reveals how users can lock their work-station remotely if they are worried about working alone.

The details are revealed following a two-year, nationwide audit of PCI security compliance led by then-Assistant Secretary of the Treasury for tax affairs, Jack Goldsmith.