The Prague Post
September 8th, 2008
Endowment Fund     Business Listings ONLINE      Reservations      Classifieds    Subscriptions
Prague accommodation

Home » Archives » Tech & Telecom

Sci-fi comes to your computer

Companies look for high-tech solutions to protect IT sytems

By S. Adam Cardais
Staff Writer, The Prague Post
July 27th, 2005 issue

As vital information technology (IT) systems become increasingly vulnerable to attack, corporations are seeking ways to combine or replace password systems with more-advanced security to protect sensitive company data.

IT security threats can come from anywhere and are growing in severity, whether it's "phishers" sending out fake e-mails in the hopes of gaining access to private information or disgruntled employees with the power to compromise sensitive data stored on computers. To offset these new threats, companies are spending as much as 5 percent of their IT budgets to pay for stronger security systems incorporating everything from smart cards to biometrics, systems to identify users by unique body features.

"Companies have always been concerned with security," said Michel Bobillier, global offering executive for security and privacy services at IBM. "What has changed is that there are so many new openings [in companies'] IT systems. You don't know who's using your IT. All these changes are changing the threats."

In some cases, companies just want to replace passwords with these technologies because password systems have become so difficult to maintain, said Ladislav Šolc, a technology specialist at Microsoft. Not only is creating and storing new passwords, sometimes as often as once a month, costly to the company, but it's also a burden for employees. As a result, employees often weaken a system by looking for ways to circumvent password protocols, such as using common words or phrases that will be easier to remember.

Tight security
  • Attacks to IT systems are growing in scope and severity. Tools companies use to protect themselves:
  • Complicated passwords as long as eight characters that incorporate letters, numbers and symbols. IBM requires employees to change passwords once every two to three months
  • Smart Cards containing a small microprocessor that verifies a user's identity when scanned. PIN numbers protect the information on the card if it is lost
  • Biometrics authentication such as fingerprint or iris scanning is one of the most convenient ways to identify a user. Detractors note that the technology is expensive yet can be beaten almost as easily as others.

Šolc noted, however, that in the short term the majority of companies will continue using passwords because they can still play a vital role in strong security systems. More often than being eliminated, he said, complicated passwords will be used together with smart cards, identification cards that usually require a PIN or biometric systems that recognize features such as a fingerprint, skin or iris to create what some in the industry call "stronger authentication" systems.

At Microsoft, Šolc uses an eight-character password with numbers, letters and symbols to access company information when he is in the office. When outside of the office, working at home from his laptop computer for instance, he is required to use a password and smart card with a PIN. The PIN protects information on the card if it is lost, he said.

IBM is just as careful. Bobillier uses a smart card to enter his building in Geneva, Switzerland, and a password with a minimum of six characters, incorporating letters and numbers, to access his laptop. In the future, Bobillier said, IBM employees will be required to use a password and a smart card to access computers.

While neither company requires employees to use biometrics for computer access, Šolc said he is aware that some sensitive areas at Microsoft require a biometrics scan to get in.

So what security system does Bobillier prefer? He opted to have a finger scanner built into his laptop because he said it is more convenient to use than a password or smart card.

Both men were quick to point out that no system is foolproof. Fingerprint scanners can be beaten using fabricated prints, and the most powerful computers can crack complicated passwords.

—Petr Kašpar contributed this report.

S. Adam Cardais can be reached at acardais@praguepost.com


Other articles in Tech & Telecom (27/07/2005):

Browse the Current Issue

If you enjoyed this article, why don't you subscribe to the print version!
We accept secure online transactions provided by PayPal and Moneybookers

Be the first to add a comment!


Full Name: *
City: *
E-mail: **
This comment can be published in the print version of The Prague Post
Enter the text on the right:
 visual captcha
Comment: *
* Required field. In order to be approved for display, comments must have a first and last name and a city.
** E-mails are required and will only be used for internal purposes.

Most visited in Business Listings

Hotel booking
The Prague Post Online contains a selection of articles that have been printed in
The Prague Post, a weekly newspaper published in the Czech Republic.
To subscribe to the print paper, click here.
Unauthorized reproduction is strictly prohibited.