- Enable a timed logout to lock your computer when you step away.
- When viewing confidential or sensitive data, be aware of your environment.
- Beware of inadvertently revealing login information or passcodes.
- Log out of your computer when leaving.
Imagine all of your mail being delivered in clear envelopes. Unsettling, to say the least. The opaque envelope is designed to shield your personal information from prying eyes. The risk is that your personal data could be used to steal your identity, gain access to other confidential data, or be used to access the data of others, including work information.
One way to increase data security is to think about where you use devices. Consider who is looking over your shoulder when you login or view confidential data. Theft of login credentials or personal data in this manner is called shoulder surfing. It’s shockingly easy to learn a phone pin by watching.
Tailgating or piggybacking is another risk that describes someone who follows you after you have gained access to a resource. Think about your ATM activity. You enter your PIN and complete your transaction. The ATM machines asks you, “Would you like to perform another transaction?” You leave without answering. Someone pulls up quickly, who has observed your PIN entry. Because no card swipe is required, you’re out $100 or potentially much more. The parallel is the typical login – not logging out is an unlocked door to your personal information. Always logout of public machines. Always use a timed logout (five minutes or less) on your devices.
For more information, contact the ITS Help Desk at extension 7111 or email ITSHelp@colgate.edu.
Contributors: Ellen Holm, Ahmad Khazaee, Kevin Lynch and Mark Hine.