What is a firewall and why should I use one?

A firewall is a software program or hardware device that filters the inbound and outbound traffic between your network or computer and the Internet. Firewalls add a layer of protection by blocking unauthorized and potentially dangerous data from entering your computer or network. Firewalls are especially critical for users who have an “always on” connection to the Internet.

Some users may think that data residing on their computer is not valuable and therefore a firewall is not necessary. However, even small pieces of information can be obtained by the hacker and used to steal identities and other personal data. In addition, hackers may be interested in taking over your computer to store illegal materials or launch other attacks that can   leave a trail back to your computer. Once a hacker gets access to your computer, the intruder may have access to resources and data stored on your machine.

What does a firewall protect me from?

Firewalls can help protect your data and computer by blocking the following:

• unsolicited traffic/malware from coming into your computer or network
• traffic from known malicious computers
• specific traffic you don’t want leaving your computer or network
• programs, protocols and ports that you specify
• attempts to access or attack your computer

Firewalls can also log activity, and these logs should be reviewed periodically to identify any anomalous or unexpected activity.

What type of firewall should I use?

There are two types of firewalls: hardware and software. A hardware firewall is usually an external device that sits between your computer and your connection to the Internet. A software firewall (also known as a personal firewall) runs directly on your computer. This firewall is the most common type for home users.

The selection of a firewall is dependent on what is being protected. The value of the assets, the complexity of the computers or networks, and their usage of the Internet will dictate the type and size of firewall that should be used.

Make sure you have a firewall–selected based on your business or personal needs– and that it is enabled.

Before enabling a firewall, read the documentation carefully to ensure proper configuration. A properly configured firewall can save you hours of recovery or rebuilding of data.

Below are some areas for consideration when installing a firewall:

• allow only the traffic that you need
• enable the “automatic update” feature if one exists and also periodically check the firewall vendor’s website for the latest software updates
• enable the logging feature and review the logs regularly
• change the default “administrator” account (if available) and password
• disable the remote management option (if available)

A firewall is a very valuable tool to protect your data and your computers, but it must be selected, installed, configured, monitored, and maintained effectively to do its job. It’s also important to note that although firewalls can block intruders, viruses or unwanted traffic from getting into your computer, using a firewall is not a complete solution to security. Firewalls should be used along with anti-virus, anti-spyware, and anti-spam software, as part of a defense-in-depth strategy for protecting your computer from various forms of malware (viruses, worms, trojans, etc.), hackers, and others who want your data or your computer for illegal or malicious purposes.

Remember: Cyber Security is Your Responsibility. Always apply safe cyber security practices to protect the data on your computer or network.

References

To learn more about firewalls, please visit the following sites:

MS-ISAC - Beginners Guide to Firewalls. http://www.cscic.state.ny.us/localgov/#download

US-CERT. http://www.us-cert.gov/cas/tips/ST04-004.html

How Stuff Works - Firewalls. http://computer.howstuffworks.com/firewall.htm

Firewalls for Dummies. http://www.dummies.com/WileyCDA/DummiesTitle/Firewalls-For-Dummies-2nd-Edition.productCd-0764540483.html

Courtesy: http://www.office.gov/cybersecurity

Protecting Portable Computing Devices

Many computer users, especially those who travel for business, rely on laptops and PDAs because they are small and easily transported. But while these characteristics make them popular and convenient, they are also easily lost or ideal target for thieves. Therefore, it is important to make sure you secure your portable devices to protect both the device and the information contained on the device.

What is at risk?

If your laptop or PDA is lost or stolen, the most obvious loss is the device itself. However, all of the information stored on it is at risk, as well. The data is often far more valuable than the portable device itself.

We’ve all read about lost or stolen portable devices containing confidential or sensitive information. Even if there isn’t any sensitive or confidential customer information on your portable device, think of the other proprietary information that could be at risk: passwords, emails, contact information, etc.

Below are tips to help you secure and protect your portable device.

Steps to take before you leave the office

1. Password-protect your portable device - Make sure that you have to enter a strong password to log in to your device. If possible use a “power-on” password. This prevents someone from booting up your laptop with a different Operating System on a CD, floppy disk, or flash drive.
2. Have your laptop configured to boot from the hard drive first - By forcing your laptop to boot from the hard drive first, it prevents someone from rebooting your laptop from another drive e.g. floppy drive, CD, flash drive.
3. Install and maintain firewall and anti-virus software – Protect portable devices from unauthorized access and malicious code the same way you protect your computer when at work. Install antivirus and firewall software and keep them updated.
4. Be sure all critical information is backed up – Portable devices should not be the only place important information is stored.
5. Remove information that is not needed – Don’t carry around sensitive and personal information on your laptop or other portable device that is not necessary to you or your work.
6. Store your portable devices securely - When not in use, store portable devices out of sight and, whenever possible, in a locked drawer or file cabinet.
7. Record identifying information and mark your equipment - Record the make, model and serial number of the equipment in a separate location so that if your portable device is stolen the information will be available to the authorities. Label your portable device with an asset tag or other identifying label.

Steps to protect data

1. Encrypt files or the full disk - By encrypting files or using full disk encryption, you reduce the risk of unauthorized individuals viewing sensitive data. We have taken this step in Office to employ full disk encryption on all office owned laptop computers.
2. Consider storing important data separately - By saving your data on removable media and storing it in a different location (e.g., on a lanyard around your neck instead of in your laptop bag), you can protect your data even if your laptop is stolen. If you store data separately you should also encrypt any confidential or sensitive data on that removable media.

Steps to take when traveling

1. When traveling by car - If it is necessary to leave a portable device in a car, lock it in the trunk or other location where it is out of sight. Never leave electronic devices in cars for extended periods during either very hot or very cold weather. Never leave the vehicle unlocked when unattended, even for a minute. Do not leave the portable device in the vehicle overnight.
2. When traveling by air or rail - Always keep your portable device with you or as carry-on luggage. Watch your device carefully as it goes through the screening process – this is an opportune time for a thief to take it. Make sure you have your portable device with you each time you board or disembark.
3. In the hotel room - If a room safe is available, lock the device with other valuables in the safe. If it does not fit in the room safe, ask the hotel staff for the use of the hotel safe. If this is not practicable, store the portable device out of sight when you leave the room.
4. At conferences and trade shows - Be especially wary at conferences, large meetings and trade shows. These are common venues for thieves. Downplay your laptop or PDA - There is no need to advertise to thieves that you have a laptop or PDA or that you have the latest, greatest features. This is the type of language thieves look for, to identify potential targets. Avoid using your portable device in public areas, and consider non-traditional bags for carrying your laptop.

Steps to take at home

1. Keep the portable device out of sight when not in use - If it is not in plain sight, a thief may not find it.
2. Treat it as if it were cash - Think of the laptop as $1,500 in cash and protect it accordingly.

What should you do if your laptop or other portable device is lost or stolen? Report the loss or theft to the appropriate authorities as soon as possible. These parties may include representatives from the following:

• Local law enforcement agencies
• Hotel or conference staff
• Airport or other transportation security offices
• Your organization’s security office or Help Desk. 

They can then inform the appropriate parties to help protect any services that may be at risk.

Sources:

Washington State Department of Information Services.  http://www.dis.wa.gov/technews/2006_02/20060209.aspx

State of Iowa Information Security Office.  http://www.secureonline.iowa.gov/newsletters/index.html

Office of the California State ISO. http://www.infosecurity.ca.gov/Library/Awareness/Information_Security-Awareness.asp

US-CERT - http://www.uscert.gov/cas/tips/ST04-017.html