Journal of Accountancy Large Logo
Home > Offense and Defense
ShareThis
|
TECHNOLOGY

Password Management Strategies for Safe Systems: Offense and Defense

 

By JAMES F. LEON
JULY 2009

Editor's note: This is a Web-exclusive exhibit for "Password Management Strategies for Safer Systems."

Primary Security Risks Effective Countermeasures
Failing to enhance password security in order to focus on searching for a “perfect” security system and obtaining more funding.
  • Immediately improve password security procedures.
Implementing new system security procedures or a new security system without adequate planning and full knowledge of current system’s capabilities.
  • Learn how current system stores and protects passwords.
  • Observe employees' password-related practices (for example, check for notes near monitors).
  • Identify security system capabilities necessary to ensure employees' adherence to password security requirements.
  • Perform a thorough needs analysis before buying new security software.
Inconsistently enforcing safe password practices.
  • Obtain high-visibility, senior management support of safe password practices, and publicize them to all employees.
  • Enforce all safe password practices without exception.
  • Make adherence to safe password practices a condition of employment.

Also read these other Web-exclusive exhibits:
Safe Password Practices
Glossary of Key Terms

View CommentsView Comments   |  
Add CommentsAdd Comment   |   ShareThis
CPE Direct articles Web-exclusive content
AICPA Logo Copyright © 2013 American Institute of Certified Public Accountants. All rights reserved.
Reliable. Resourceful. Respected. (Tagline)