Why is it important to secure my account and computer?

Summary

This article explains the why and how for implementing different security measures for your account and computer.

Body

Contents:

  1. Why is it important to have a secure password?
  2. What if the material on my account is not confidential?
  3. Why do my passwords expire?
  4. What if I have to write down my password?
  5. What can I do to make my computer safer?

Request security assistance

Overview:

Having an insecure password, clicking on an unknown email attachment or not installing updates could make it possible for someone to:

  • Read all your email or messages
  • View your grades
  • Change your course schedule
  • Read or change anything on your computer
  • Read or change anything accessed from your computer
  • Turn on your computer’s microphone and listen in on conversations
  • Use your computer for cyber crime (for which you may be blamed)

The University of Idaho network is scanned approximately 450,000 times a day by individuals outside of the university network. This averages to be about 50-60 scans on every computer on the network every day. This amount of scanning is comparable to a burglar checking your door 50-60 times a day trying to break-in. The security of your account and computer is largely dependent on how your co-workers and fellow students use their computer and accounts.

Why is it important to have a secure password?

The University of Idaho relies on highly secure computing systems for everyday work. This includes sending and receiving email, registering for classes, paying for classes online, sharing documents and files with co-workers and many more critical activities. Having a secure password not only allows you to be safe when computing at the UI but also keeps your account from being used for illegal activities without your knowledge. 

What if the material on my account is not confidential?

You may not consider your email, class registration or work activities confidential. However, many security breaches can involve things like deletion or corruption of data or mass emails containing questionable material sent from a compromised account. When a single account is compromised on a system, it increases the potential to have all accounts on the system compromised. Since you are responsible for your own account and password, you may be considered responsible for illegal break-in attempts to other accounts due to your account being insecure.

Why do my passwords expire?

If you are not using push notification authentication through Duo, your password is only good for a set amount of time. To ensure the security of critical services at the university, we have implemented password expiration on accounts using less secure authentication methods. When a password expires, you are notified during log in to obtain a new password. This was primarily done to make password “cracking,” or guessing, more difficult, but it was also done to comply with independent state auditors on their recommendation to expire passwords.

How do I remember my password?

It is better to have a secure password that may be a little more difficult to remember than an easy to guess password. However, this comes with the problem of having to memorize the complex password. Rather than writing it down or just storing it in a document on your computer, you can use a password manager to keep all of your passwords safe in one place. 

What can I do to make my computer safer?

  • Use secure passwords for all of your accounts.
  • Install Antivirus software and keep it up to date. Visit our AntiVirus software page to learn more.
  • Install personal firewall software. Personal firewall software stops attempts from outside computers to connect to services on your machine (that you may not know you are running). Windows has a built in firewall that we recommend you enable. Contact your TSP or Local Support if you're an employee, or the Student Technology Center if you're a student.
  • Do not click on unknown email attachments and report any suspicious emails your recieve to abuse@uidaho.edu
  • Keep your operating system up-to-date and applications. Visit your vendor’s update sites often to check for security patches or allow applications to check for updates.

Related Articles

Related Articles (13)

Answers to frequently asked questions about email phishing.
This article describes how to manage and dispose of records, as well as the security implications of the included processes.
Learn how to set the password on your account. To follow these directions you need to know your username, password and setup your security profile.
Affiliates can reset their password if they have a Security Profile with 3 questions and 1 personal email address set up. If you do not have a security profile and have forgotten your password, please contact OIT.
Setting up a security profile with a minimum of 3 questions and 1 contact enables the reset of a forgotton or compromised password.
A list of the software provided through ITS Security, with links for downloads.
What to do about spam. Some people and business indiscriminately send large amounts of unsolicited commercial email (UCE). In recent years, spam content has expanded to include offensive advertising, malicious content and computer viruses.
Information about and helpful tips on identifying phishing emails.
Answers to frequently asked questions about Whole Disk Encryption.
Malware removal is not an effective way to ensure an infected computer is clean. The best way to approach malware infections is to format and re-image the computer.

Related Services / Offerings

Related Services / Offerings (2)

How to recover a file or email message?
Report an information security incident.

Attachments

pdf

manual_draft1.pdf Computer

Tue 1/23/18 2:15 PM
;