SlideShare una empresa de Scribd logo
1 de 45
Descargar para leer sin conexión
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Password Security &
Management
Jezmynne Dene, MLIS
Portneuf District Library
Chubbuck, Idaho
jezmynne.dene@portneuflibrary.org
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Why Be Worried?
• Hacks happen. To everyone.
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Who Hacks?
• Overseas syndicates
• Bored kids
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
General Security Tips
• It’s gonna happen – not a matter of
“if” but “when”
• Bad guys chase the path of least
resistance
–Make it just difficult enough to make it not
worth their time
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
General Security Tips
• Update and patch everything
–Especially Flash and Java
• Remove what you don’t use
• Change your passwords frequently
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
General Security Tips
• Redundant backups
–Local hard drives
–Remote service, like Carbonite or similar
• Be careful with remote wipe options
–Hackers can wipe out all your stuff if they
access your devices remotely
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Social Engineering
• By far the easiest way to hack
• Using your info against you
• A good guess will get a hacker into
your stuff
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Social Engineering
• Use false personal data for security
questions
• Guard your data on websites and social
networking
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Social Engineering
• Daisy chaining accounts
–Avoid having everything point to one email
account for resets
• Usernames across services
–Vary usernames for important accounts, like
banking or credit cards
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
2 Factor ID
• Uses your login and something you
have on you, like your phone, a
biometric, a smart card, or a USB
device
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Good Passwords
• “Sorry, but your password must
contain an uppercase letter, a number,
a punctuation mark, a gang sign, an
extinct mammal and a hieroglyph” --
@StephBWright
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Good Passwords
• At least eight characters long
• Combination of numbers & letters
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Good Passwords
• Contains special characters
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Good Passwords
• No names
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Good Passwords
• No words found in the dictionary
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Good Passwords
• Avoid common styles
–Replacing numbers for vowels
–Capitalizing the first letter
–Putting a special character at the end
• If you’ve thought of a pattern,
someone else has, too.
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Good Passwords
• Long Passwords
–A five letter password has 10 billion
combinations and can be brute force
cracked in five seconds
• 9 letters can’t be brute forced, but
they’re vulnerable to rainbow tables
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Good Passwords
• Change them often. More often than
you’d think.
–Set a calendar reminder
–Change one every day when it’s time to
change
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Good Passwords
• Combination of numbers & letters
• Contains special characters
• No names
• No words found in the dictionary
• Never reused by other sites
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Good Passwords
• NEVER REUSED BY OTHER SITES.
• NEVER REUSED BY OTHER SITES.
!!!!!!!!
• !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
That’s eleventy
billion different
passwords I have
to remember!!!!
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Password Managers
• Software that manages multiple
passwords
• Encrypted and secure
• Passwords are always with you
• Can auto log into websites
• Many work with tablets and mobile
devices
• Keeps a record of accounts
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Password Managers
• How do they work?
–Secured data file, usually on your device or
computer
–Some are web based
–Some require a token
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Password Managers
• Pros
–Creates & manages complex and unique
passwords
–Only one password to remember
–Bypasses keylogging software
–Helps against phishing, because it’ll spot
fake URLs
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Password Managers
• Cons
–If someone gets your one password, all is
lost.
–If you don’t have your key or app, you’ll
have to reset your password to get into your
accounts.
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Password Managers
• Good for you, and good for your library
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Password Management Security
• Specify logins by country
• Disallow Tor network logins
• Track logins and shares
• Drill down master password prompts
–Every login? Every change? You decide
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Other Features
• Support for multiple profiles
• Supports multiple identities
–Work, personal, school
• Saves credit card information
• Saves bank information
• Last Pass offers credit monitoring
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Other Password Managers
• RoboForm
• Iron Key Personal
• Splash ID
• Dashline
• Msecure (Security
Everywhere)
• KeePass
• Direct Pass
• Norton Identity Safe
• MyLok+
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
KeePass Roboform
1 Password SplashID
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Business Solutions
• Some offer business options perfect
for libraries
• Last Pass - $24 per employee per year
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
To Sum:
• General Security
–Make it hard enough to make it not worth
their time
–Remove apps/programs and kill accounts
you don’t use
–Change your passwords frequently
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
To Sum:
• General Security
–Run your updates and patches
–Redundant back ups
–Be cautious and don’t leave your stuff lying
around, physical or digital
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
To Sum:
• Social engineering
–Use fake personal data
–Vary usernames
–Don’t link everything to one email address
–Be very mindful of sharing your personal
data
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
To Sum:
• 2 factor ID
–Turn it on if it’s an option, and it’s a high
target site like Facebook , Twitter, or Gmail
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
To Sum:
• Good passwords
–Numbers, letters, and caps
–Special characters
–Make ‘em long
–Change ‘em often
–NEVER REUSE THEM. EVER.
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
To Sum:
• Try password managing tools
–Decide which meets your personal and
library needs
–Ask how they maintain security of your data
–Use trials to get the best fit
Jezmynne Dene
Portneuf District Library
jezmynne.dene@portneuflibrary.org
Be Safe Out There!
Thank you!
Jezmynne Dene, MLIS
Portneuf District Library
Chubbuck, Idaho
Jezmynne.dene@portneuflibrary.org

Más contenido relacionado

Similar a NCompass Live: Password Management & Security

everybody-password-cracking-101.pdf bbgg
everybody-password-cracking-101.pdf bbggeverybody-password-cracking-101.pdf bbgg
everybody-password-cracking-101.pdf bbgg
ankomahg434
 
Security and Privacy Brown Bag
Security and Privacy Brown BagSecurity and Privacy Brown Bag
Security and Privacy Brown Bag
501 Commons
 

Similar a NCompass Live: Password Management & Security (13)

E security
E securityE security
E security
 
Computer / Internet Security WHPL
Computer / Internet Security WHPLComputer / Internet Security WHPL
Computer / Internet Security WHPL
 
Basic Security for Digital Companies - #MarketersUnbound (2014)
Basic Security for Digital Companies - #MarketersUnbound (2014)Basic Security for Digital Companies - #MarketersUnbound (2014)
Basic Security for Digital Companies - #MarketersUnbound (2014)
 
11 Commandments of Cyber Security for the Home
11 Commandments of Cyber Security for the Home11 Commandments of Cyber Security for the Home
11 Commandments of Cyber Security for the Home
 
everybody-password-cracking-101.pdf bbgg
everybody-password-cracking-101.pdf bbggeverybody-password-cracking-101.pdf bbgg
everybody-password-cracking-101.pdf bbgg
 
Computer / Internet Security
Computer / Internet SecurityComputer / Internet Security
Computer / Internet Security
 
Don't Get Hacked
Don't Get HackedDon't Get Hacked
Don't Get Hacked
 
Security and Privacy Brown Bag
Security and Privacy Brown BagSecurity and Privacy Brown Bag
Security and Privacy Brown Bag
 
2 Laymans Course - LAMP V2.pptx
2 Laymans Course - LAMP V2.pptx2 Laymans Course - LAMP V2.pptx
2 Laymans Course - LAMP V2.pptx
 
An Introduction To IT Security And Privacy In Libraries & Anywhere
An Introduction To IT Security And Privacy In Libraries & AnywhereAn Introduction To IT Security And Privacy In Libraries & Anywhere
An Introduction To IT Security And Privacy In Libraries & Anywhere
 
Online Self Defense
Online Self DefenseOnline Self Defense
Online Self Defense
 
Finalised refresh digital champion training
Finalised  refresh digital champion trainingFinalised  refresh digital champion training
Finalised refresh digital champion training
 
Digital Citizenship for Teens
Digital Citizenship for TeensDigital Citizenship for Teens
Digital Citizenship for Teens
 

Más de Nebraska Library Commission

NCompass Live: Auditing Library Websites
NCompass Live: Auditing Library WebsitesNCompass Live: Auditing Library Websites
NCompass Live: Auditing Library Websites
Nebraska Library Commission
 

Más de Nebraska Library Commission (20)

NCompass Live: Program Planning with a Marketing Mindset
NCompass Live: Program Planning with a Marketing MindsetNCompass Live: Program Planning with a Marketing Mindset
NCompass Live: Program Planning with a Marketing Mindset
 
Big Talk From Small Libraries 2024: Afterschool Meals Program: Sign-In Sheet ...
Big Talk From Small Libraries 2024: Afterschool Meals Program: Sign-In Sheet ...Big Talk From Small Libraries 2024: Afterschool Meals Program: Sign-In Sheet ...
Big Talk From Small Libraries 2024: Afterschool Meals Program: Sign-In Sheet ...
 
Big Talk From Small Libraries 2024: Afterschool Meals Program: Sign-In & Out ...
Big Talk From Small Libraries 2024: Afterschool Meals Program: Sign-In & Out ...Big Talk From Small Libraries 2024: Afterschool Meals Program: Sign-In & Out ...
Big Talk From Small Libraries 2024: Afterschool Meals Program: Sign-In & Out ...
 
Big Talk From Small Libraries 2024: Afterschool Meals Program: Leftover Meal ...
Big Talk From Small Libraries 2024: Afterschool Meals Program: Leftover Meal ...Big Talk From Small Libraries 2024: Afterschool Meals Program: Leftover Meal ...
Big Talk From Small Libraries 2024: Afterschool Meals Program: Leftover Meal ...
 
Big Talk From Small Libraries 2024: Afterschool Meals Program: Daily Meal Cou...
Big Talk From Small Libraries 2024: Afterschool Meals Program: Daily Meal Cou...Big Talk From Small Libraries 2024: Afterschool Meals Program: Daily Meal Cou...
Big Talk From Small Libraries 2024: Afterschool Meals Program: Daily Meal Cou...
 
Big Talk From Small Libraries 2024: Afterschool Meals Program: Allergies & ...
Big Talk From Small Libraries 2024:  Afterschool Meals  Program: Allergies & ...Big Talk From Small Libraries 2024:  Afterschool Meals  Program: Allergies & ...
Big Talk From Small Libraries 2024: Afterschool Meals Program: Allergies & ...
 
Big Talk From Small Libraries 2024: Memory Cafés: A Community Program
Big Talk From Small Libraries 2024:  Memory Cafés: A Community ProgramBig Talk From Small Libraries 2024:  Memory Cafés: A Community Program
Big Talk From Small Libraries 2024: Memory Cafés: A Community Program
 
Big Talk From Small Libraries 2024: Genrefying your Public Library
Big Talk From Small Libraries 2024:  Genrefying your Public LibraryBig Talk From Small Libraries 2024:  Genrefying your Public Library
Big Talk From Small Libraries 2024: Genrefying your Public Library
 
Big Talk From Small Libraries 2024: Case Study: Implementing an Afterschool ...
Big Talk From Small Libraries 2024:  Case Study: Implementing an Afterschool ...Big Talk From Small Libraries 2024:  Case Study: Implementing an Afterschool ...
Big Talk From Small Libraries 2024: Case Study: Implementing an Afterschool ...
 
Big Talk From Small Libraries 2024: Farmer’s Day Fundraising
Big Talk From Small Libraries 2024: Farmer’s Day FundraisingBig Talk From Small Libraries 2024: Farmer’s Day Fundraising
Big Talk From Small Libraries 2024: Farmer’s Day Fundraising
 
Big Talk From Small Libraries 2024: Towering Bookstacks and Heavy Doors: Less...
Big Talk From Small Libraries 2024: Towering Bookstacks and Heavy Doors: Less...Big Talk From Small Libraries 2024: Towering Bookstacks and Heavy Doors: Less...
Big Talk From Small Libraries 2024: Towering Bookstacks and Heavy Doors: Less...
 
Big Talk From Small Libraries 2024: Accepting Credit Cards with PayPort
Big Talk From Small Libraries 2024: Accepting Credit Cards with PayPortBig Talk From Small Libraries 2024: Accepting Credit Cards with PayPort
Big Talk From Small Libraries 2024: Accepting Credit Cards with PayPort
 
Big Talk From Small Libraries 2024: Leveraging Student Projects and Organizat...
Big Talk From Small Libraries 2024: Leveraging Student Projects and Organizat...Big Talk From Small Libraries 2024: Leveraging Student Projects and Organizat...
Big Talk From Small Libraries 2024: Leveraging Student Projects and Organizat...
 
NCompass Live: Winning Grants for Your Library Programming
NCompass Live: Winning Grants for Your Library ProgrammingNCompass Live: Winning Grants for Your Library Programming
NCompass Live: Winning Grants for Your Library Programming
 
NCompass Live: ConnectEd Nebraska: Bridging the Digital Divide through Innova...
NCompass Live: ConnectEd Nebraska: Bridging the Digital Divide through Innova...NCompass Live: ConnectEd Nebraska: Bridging the Digital Divide through Innova...
NCompass Live: ConnectEd Nebraska: Bridging the Digital Divide through Innova...
 
NCompass Live: WiFi In the Library
NCompass Live: WiFi In the LibraryNCompass Live: WiFi In the Library
NCompass Live: WiFi In the Library
 
NCompass Live: Best of the Best Teen Reads of 2023
NCompass Live: Best of the Best Teen Reads of 2023NCompass Live: Best of the Best Teen Reads of 2023
NCompass Live: Best of the Best Teen Reads of 2023
 
NCompass Live: Auditing Library Websites
NCompass Live: Auditing Library WebsitesNCompass Live: Auditing Library Websites
NCompass Live: Auditing Library Websites
 
NCompass Live: Meet the NLC, Part 2
NCompass Live: Meet the NLC, Part 2NCompass Live: Meet the NLC, Part 2
NCompass Live: Meet the NLC, Part 2
 
NCompass Live: Meet the NLC, Part 1
NCompass Live: Meet the NLC, Part 1NCompass Live: Meet the NLC, Part 1
NCompass Live: Meet the NLC, Part 1
 

Último

Salient Features of India constitution especially power and functions
Salient Features of India constitution especially power and functionsSalient Features of India constitution especially power and functions
Salient Features of India constitution especially power and functions
KarakKing
 
Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...
Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...
Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...
ZurliaSoop
 
The basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptxThe basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptx
heathfieldcps1
 

Último (20)

Graduate Outcomes Presentation Slides - English
Graduate Outcomes Presentation Slides - EnglishGraduate Outcomes Presentation Slides - English
Graduate Outcomes Presentation Slides - English
 
ICT role in 21st century education and it's challenges.
ICT role in 21st century education and it's challenges.ICT role in 21st century education and it's challenges.
ICT role in 21st century education and it's challenges.
 
Salient Features of India constitution especially power and functions
Salient Features of India constitution especially power and functionsSalient Features of India constitution especially power and functions
Salient Features of India constitution especially power and functions
 
On_Translating_a_Tamil_Poem_by_A_K_Ramanujan.pptx
On_Translating_a_Tamil_Poem_by_A_K_Ramanujan.pptxOn_Translating_a_Tamil_Poem_by_A_K_Ramanujan.pptx
On_Translating_a_Tamil_Poem_by_A_K_Ramanujan.pptx
 
Sociology 101 Demonstration of Learning Exhibit
Sociology 101 Demonstration of Learning ExhibitSociology 101 Demonstration of Learning Exhibit
Sociology 101 Demonstration of Learning Exhibit
 
Single or Multiple melodic lines structure
Single or Multiple melodic lines structureSingle or Multiple melodic lines structure
Single or Multiple melodic lines structure
 
Accessible Digital Futures project (20/03/2024)
Accessible Digital Futures project (20/03/2024)Accessible Digital Futures project (20/03/2024)
Accessible Digital Futures project (20/03/2024)
 
Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...
Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...
Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...
 
How to Give a Domain for a Field in Odoo 17
How to Give a Domain for a Field in Odoo 17How to Give a Domain for a Field in Odoo 17
How to Give a Domain for a Field in Odoo 17
 
Unit 3 Emotional Intelligence and Spiritual Intelligence.pdf
Unit 3 Emotional Intelligence and Spiritual Intelligence.pdfUnit 3 Emotional Intelligence and Spiritual Intelligence.pdf
Unit 3 Emotional Intelligence and Spiritual Intelligence.pdf
 
Exploring_the_Narrative_Style_of_Amitav_Ghoshs_Gun_Island.pptx
Exploring_the_Narrative_Style_of_Amitav_Ghoshs_Gun_Island.pptxExploring_the_Narrative_Style_of_Amitav_Ghoshs_Gun_Island.pptx
Exploring_the_Narrative_Style_of_Amitav_Ghoshs_Gun_Island.pptx
 
2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx
2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx
2024-NATIONAL-LEARNING-CAMP-AND-OTHER.pptx
 
Application orientated numerical on hev.ppt
Application orientated numerical on hev.pptApplication orientated numerical on hev.ppt
Application orientated numerical on hev.ppt
 
How to Add New Custom Addons Path in Odoo 17
How to Add New Custom Addons Path in Odoo 17How to Add New Custom Addons Path in Odoo 17
How to Add New Custom Addons Path in Odoo 17
 
On National Teacher Day, meet the 2024-25 Kenan Fellows
On National Teacher Day, meet the 2024-25 Kenan FellowsOn National Teacher Day, meet the 2024-25 Kenan Fellows
On National Teacher Day, meet the 2024-25 Kenan Fellows
 
Interdisciplinary_Insights_Data_Collection_Methods.pptx
Interdisciplinary_Insights_Data_Collection_Methods.pptxInterdisciplinary_Insights_Data_Collection_Methods.pptx
Interdisciplinary_Insights_Data_Collection_Methods.pptx
 
80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...
80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...
80 ĐỀ THI THỬ TUYỂN SINH TIẾNG ANH VÀO 10 SỞ GD – ĐT THÀNH PHỐ HỒ CHÍ MINH NĂ...
 
Food safety_Challenges food safety laboratories_.pdf
Food safety_Challenges food safety laboratories_.pdfFood safety_Challenges food safety laboratories_.pdf
Food safety_Challenges food safety laboratories_.pdf
 
The basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptxThe basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptx
 
Google Gemini An AI Revolution in Education.pptx
Google Gemini An AI Revolution in Education.pptxGoogle Gemini An AI Revolution in Education.pptx
Google Gemini An AI Revolution in Education.pptx
 

NCompass Live: Password Management & Security

  • 1. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Password Security & Management Jezmynne Dene, MLIS Portneuf District Library Chubbuck, Idaho jezmynne.dene@portneuflibrary.org
  • 2. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Why Be Worried? • Hacks happen. To everyone.
  • 3. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Who Hacks? • Overseas syndicates • Bored kids
  • 4. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org General Security Tips • It’s gonna happen – not a matter of “if” but “when” • Bad guys chase the path of least resistance –Make it just difficult enough to make it not worth their time
  • 5. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org General Security Tips • Update and patch everything –Especially Flash and Java • Remove what you don’t use • Change your passwords frequently
  • 6. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org General Security Tips • Redundant backups –Local hard drives –Remote service, like Carbonite or similar • Be careful with remote wipe options –Hackers can wipe out all your stuff if they access your devices remotely
  • 7. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Social Engineering • By far the easiest way to hack • Using your info against you • A good guess will get a hacker into your stuff
  • 8. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Social Engineering • Use false personal data for security questions • Guard your data on websites and social networking
  • 9. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Social Engineering • Daisy chaining accounts –Avoid having everything point to one email account for resets • Usernames across services –Vary usernames for important accounts, like banking or credit cards
  • 10. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org 2 Factor ID • Uses your login and something you have on you, like your phone, a biometric, a smart card, or a USB device
  • 11. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Good Passwords • “Sorry, but your password must contain an uppercase letter, a number, a punctuation mark, a gang sign, an extinct mammal and a hieroglyph” -- @StephBWright
  • 12. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Good Passwords • At least eight characters long • Combination of numbers & letters
  • 13. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Good Passwords • Contains special characters
  • 14. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Good Passwords • No names
  • 15. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Good Passwords • No words found in the dictionary
  • 16. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Good Passwords • Avoid common styles –Replacing numbers for vowels –Capitalizing the first letter –Putting a special character at the end • If you’ve thought of a pattern, someone else has, too.
  • 17. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Good Passwords • Long Passwords –A five letter password has 10 billion combinations and can be brute force cracked in five seconds • 9 letters can’t be brute forced, but they’re vulnerable to rainbow tables
  • 18. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Good Passwords • Change them often. More often than you’d think. –Set a calendar reminder –Change one every day when it’s time to change
  • 19. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Good Passwords • Combination of numbers & letters • Contains special characters • No names • No words found in the dictionary • Never reused by other sites
  • 20. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Good Passwords • NEVER REUSED BY OTHER SITES. • NEVER REUSED BY OTHER SITES. !!!!!!!! • !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!
  • 21. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org That’s eleventy billion different passwords I have to remember!!!!
  • 22. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Password Managers • Software that manages multiple passwords • Encrypted and secure • Passwords are always with you • Can auto log into websites • Many work with tablets and mobile devices • Keeps a record of accounts
  • 23. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Password Managers • How do they work? –Secured data file, usually on your device or computer –Some are web based –Some require a token
  • 24. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Password Managers • Pros –Creates & manages complex and unique passwords –Only one password to remember –Bypasses keylogging software –Helps against phishing, because it’ll spot fake URLs
  • 25. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Password Managers • Cons –If someone gets your one password, all is lost. –If you don’t have your key or app, you’ll have to reset your password to get into your accounts.
  • 26. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Password Managers • Good for you, and good for your library
  • 27. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org
  • 28. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org
  • 29. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org
  • 30. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org
  • 31. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org
  • 32. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org
  • 33. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org
  • 34. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Password Management Security • Specify logins by country • Disallow Tor network logins • Track logins and shares • Drill down master password prompts –Every login? Every change? You decide
  • 35. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Other Features • Support for multiple profiles • Supports multiple identities –Work, personal, school • Saves credit card information • Saves bank information • Last Pass offers credit monitoring
  • 36. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Other Password Managers • RoboForm • Iron Key Personal • Splash ID • Dashline • Msecure (Security Everywhere) • KeePass • Direct Pass • Norton Identity Safe • MyLok+
  • 37. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org KeePass Roboform 1 Password SplashID
  • 38. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Business Solutions • Some offer business options perfect for libraries • Last Pass - $24 per employee per year
  • 39. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org To Sum: • General Security –Make it hard enough to make it not worth their time –Remove apps/programs and kill accounts you don’t use –Change your passwords frequently
  • 40. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org To Sum: • General Security –Run your updates and patches –Redundant back ups –Be cautious and don’t leave your stuff lying around, physical or digital
  • 41. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org To Sum: • Social engineering –Use fake personal data –Vary usernames –Don’t link everything to one email address –Be very mindful of sharing your personal data
  • 42. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org To Sum: • 2 factor ID –Turn it on if it’s an option, and it’s a high target site like Facebook , Twitter, or Gmail
  • 43. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org To Sum: • Good passwords –Numbers, letters, and caps –Special characters –Make ‘em long –Change ‘em often –NEVER REUSE THEM. EVER.
  • 44. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org To Sum: • Try password managing tools –Decide which meets your personal and library needs –Ask how they maintain security of your data –Use trials to get the best fit
  • 45. Jezmynne Dene Portneuf District Library jezmynne.dene@portneuflibrary.org Be Safe Out There! Thank you! Jezmynne Dene, MLIS Portneuf District Library Chubbuck, Idaho Jezmynne.dene@portneuflibrary.org