The document discusses basic information security topics such as using strong passwords, encrypting data, avoiding phishing scams and malware, and the responsibilities of both individuals and companies to maintain security. It also provides examples of popular passwords, encryption tools, and resources for verifying security threats and learning more about how to stay safe online.

1. Information Security
Alfred Thompson
act2@acthompson.net
http://www.acthompson.net
http://blog.acthompson.net
@AlfredTwo

2. Introduction
Writing computer Software since 1972
Using the Internet since 1982
27 years working for major software companies
Most recently 9 years at Microsoft
9 years of teaching and writing textbooks
Currently on the CS 2012 curriculum committee
Frequent speaker at educational technology events

3. Agenda
Basic Security
Data Security
Internet hazards
Industry Responsibilities

4. Lock the Door
Passwords are your keys
Make them solid
Keep them safe
Don’t use the same key for everything
Easy to remember – hard to guess

5. 25 Most Popular Passwords of 2012
1. password (Unchanged)
2. 123456 (Unchanged) 14. sunshine (Up 1)
3. 12345678 (Unchanged) 15. master (Down 1)
4. abc123 (Up 1) 16. 123123 (Up 4)
5. qwerty (Down 1) 17. welcome (New)
6. monkey (Unchanged) 18. shadow (Up 1)
7. letmein (Up 1) 19. ashley (Down 3)
8. dragon (Up 2) 20. football (Up 5)
9. 111111 (Up 3) 21. jesus (New)
10. baseball (Up 1) 22. michael (Up 2)
11. iloveyou (Up 2) 23. ninja (New)
12. trustno1 (Down 3) 24. mustang (New)
13. 1234567 (Down 6) 25. password1 (New)

6. Password Extensions
Biometrics
Secondary Passwords
Physical devices
• Smart Cards
• Encryption Keys on flash sticks

7. Keeping Data Safe

8. Data Encryption
PGP Whole Disk Encryption
Product of Symantic
Microsoft BitLocker (Whole Disk)
Included in Windows 7 and 8
Microsoft Office (Document encryption)
Not the most secure in the world
PGP International Project
Open Source
http://www.pgpi.org/

9. Encrypted Communications
https://silentcircle.com/

10. They Are Out To Get You
Phishing
E-mail sent by Spam
online criminals
Unwanted
to trick you into
e-mail, instant
revealing personal
messages,
information
and other online
Identity Theft communication
A crime where con Hoaxes
artists get your personal
information and access E-mail sent by online
your cash and/or credit criminals to trick you
into giving them money

11. Be Careful Out There

12. Phishing
http://www.wombatsecurity.com/antiphishingphil

13. Verify Stories
http://snopes.com/
http://urbanlegends.about.com/
Stories should be sourced!
If it’s too good to be true it probably is false
Why yes it could hurt to pass it along

14. Malware
Viruses/Worms
Software programs
designed to invade Trojans
your computer, and Viruses that pretend to be
copy, damage, or helpful programs while Spyware
delete your data. destroying your Software that tracks
data, damaging your your online activities or
computer, and stealing displays endless ads.
your personal
information.

15. Avoiding Malware
Keep your operating system updated
Install and keep updated an anti virus package
Don’t install things you are not sure of
Pay attention to web browser warnings

16. Responsibility Goes Both Ways
SSL for encrypted transactions
Privacy Policies must be taken seriously
Companies are responsible for protecting your data

17. Secure Socket Layer

18. Application Responsibility

19. Resources
http://www.microsoft.com/security
http://www.fbi.gov/about-us/investigate/cyber/cyber
http://www.cnet.com/internet-security/