Keeping things private -- encryption and
more
I'm sure you want to do all you can to keep
your private information secure -- your address, credit
card numbers, date of birth, social security
number, mother's maiden name and financial
account information. You also probably have
sensitive information that you don't want spread around:
For example, phone numbers, business transactions,
health records, and your email.
You could keep this information from being
compromised by never putting it on your computer,
or using it online. That's becoming less
practical every day for many of us though.
If you're going to put it on your computer
and also go online you need effective precautions.
Some of your private information is probably
kept in records on other computers. It's
more likely to be compromised there from
your own computer. But that's another matter.
Here's what I'd do if I were you:
-
Guard against theft of your private information
by intrusion. You need a strong
defense against hackers, Trojans, spyware and things of that ilk to keep the vandals
out.
-
Use strong passwords, and use a different password
for each sensitive account.
If someone gets
your password for one account,
you don't
want your accounts to be vulnerable
too.
-
Protect your critical passwords with strong
encryption. Do not let your
browser or garden-variety
password utility store your
critical passwords.
Utilities like Password Safe that use strong encryption are a good way
to store passwords on your computer though. There are many password utilities to pick
from, but most have weak encryption
that
is easily broken.
-
Consider encrypting the sensitive files or
folders on your hard drive. Even though you
have a strong Internet defense, encryption
is good backstop defense against intrusion.
And it prevents anyone who has physical access
to your computer from getting at the information
as well. I use SafeHouse, but there are other good ones.
-
Never send sensitive or critical information
by email. Email is notoriously easy to intercept.
Ordinary email is not encrypted and thus
the contents are in plain view. Use some
form of strong encryption, PGP, for example You usually need to set encryption up with
your recipient in advance.
-
Make sure you're using a secure connection. Unsecured
connections can be easily intercepted. Use
a browser that can make a secure connection
(most modern ones do) and do not send sensitive
or critical information unless you're connected
to a secure Web site. Secure Web site addresses start with https, not http. You should check for that "s"in your address window when you're at the
site. There will also be an
icon, like a
closed padlock, down in the
status bar when
you're connected to a secure
website. [more]
Purge your hard drive before you sell or give
your computer away. Don't just erase the
sensitive files, and empty the Recycle Bin.
The files will still be there. Even formatting
the drive won't remove them.
Identity Theft
If you do all the things above,
the chances
of someone stealing your identity from your computer are remote. There are
lots of other ways to steal your
identity
though. If it does happen to
you, it will
be a "nightmare from hell."
|
If you give your your old computer away, sell it, or just get it fixed before you remove your personal information, your information may be more vulnerable than it ever was online. So remember to purge that hard drive first.