Information security authentication program for Moonshine Mining Essay

bootlegshine tap deals with the dig business related to diamond, sapphire, gold and so on Moonshine exploit maintains all its intellectual comelyties and well-nigh otherwise important documents in 3 inhering servers in Perth head office. This development is real confidential to the moon shining. This tuition should be forthcoming only to the internal moon shining employees and other authorized forces. Moonshine has identified the potential risk for the information assets through the risk assessment procedure.To overcome these risks, proper assay-mark and other certification procedures must be implemented in the ecesis. Each and any regularity has its own disadvantages and advantages, the proper investigation and study must be performed to choose the best fit rule for the placement. Introduction Computer warrantor must be an integral part of the organization. Computer Security is the resistance afforded to an automated information governing body in order to at tain the applicable objectives of preserving the integrity, availability and confidentiality of information system resources.Through the selection and application of curb safeguards, protective cover religious services the organizations mission by protecting its fleshly and financial resources, reputation, legal position, employees, and other tangible and intangible assets (NIST 2006). Many organizations be spending millions of dollars in calculator security. Computer security policies and goals should be inline with the organization mission and policies. Computer security should be very greet telling. specialized teams must be formed in the organization for monitoring and controlling the computer security policies and procedures. basal Security policies should be followed in Moonshine Company Computer security policies must be accessible by every unitary in the organization. Each and every single personnel in the organization is responsible for implementing and maintaini ng the computer security. User support must be provided for puzzle out various problems related to computer security. Help desks atomic number 18 involve to be created for this type of support. Additional support end be any helpline and online chat. bundle support should be operable in the organization. Various restrictions are needed to be imposed on the usage of some(prenominal) kind of parcel in the organization.Licensed and authenticated software are recommended for trouble bleak working environment. Backup plan should be implemented and followed carefully for takings if disaster or unrecoverable errors ca utilise. Media should be properly maintained and half-yearly assessments are to be needed. Login information should be kept secret and several log records are to be assed for detecting unauthorized user access. Basic security features standardized firewall, antivirus software are to be made realise in the system. Integrity checks and other checks are to be perform ed frequently.Documentation and livelihood are the important activities needed to be done regarding computer security. hallmark Authentication is very important for maintaining the computer security. Each and every personnel must be authenticated for accessing the information resources. There are umteen types of documentation methods. It jackpot be broadly classified into two categories, Biometric documentation and Non Biometric authentication. The authentication must be implemented with the proper security algorithm to avoid intrusions. Many authentication schemes are developed over the years. some(prenominal) hashing and other schemes are combined to make the better authentication protocol. concealing through Biometric Authentication It is base on identifying the person base on their personal and behavioral traits. There are several biometric authentication methods the likes of hitchhike print comprehension, reflexion recognition, iris recognition. Some the distinct advantages of biometric method are users need non required to remember intelligence/codes, steadfast characteristics and ease of use. Finger print authentication Finger print authentication is the basic biometric authentication method.The patterns available on ridges and valleys of persons flip are unique for every individual (Harris D. 2000). Several algorithms are available in the market to uniquely identify the persons based on the patterns. The finger print authentication commode be implemented in moon digging company with a very low-toned amount of investment. The cost of installing devices and other software required for finger print authentication would be very minimal when compared to other biometric authentication methods. When compared to non biometric methods the database size would be litter larger for biometrics methods.Since the numbers of users in the moon mine company is very less the biometrics method can be comfortably implemented without any trouble. Fing er print authentication method is not very much suitable for moon shine digging company because in the mining company the person works with hook of dusts and smoke. Some readers might not recognize the dirty and dusted hands. Since it is a mining company persons may have some cuts in their hand so the readers may not work properly in those situations. Most of the fourth dimension users might wear gloves in their hand, they might feel uneasy to dispatch for each and every time for the authentication.Face recognition Face recognition is another basic biometric authentication method. In this method, the persons face is captured using photographic camera or infrared waves and it is authenticated with the existing database. The spatial geometry in the face is analyzed to uniquely identify the face. The face can be easily recognizes with diverge of nervus facialis expressions or change of hair style etc. The advantages of face recognition it is the reach free process. The database should be maintained with facial information of the users. The change in the face is very minimal.The moon mining company can prefer this method of authentication. The cost of implementation is similarly not so towering gear. Some of the disadvantages include detecting the face act and low light environment (Vijayan 2009). Since it is a mining company it would influence in low light areas, so proper methods must be chosen to avoid low light environment problems. People from some ethnic groups and nationalities wont expose the face to outer world. In those situations the face recognition it is not possible to implement. gladiola Recognition Iris recognition is one of the latest methods of biometric authentication.The colored area that surrounds pupil is use for the identification of the persons (Daouk 2006). Every people have unique color pattern. It is similarly a non contact method of authentication. The cost of implementation is little high when compared to other methods. I t is very fast and robust. The latest iris technologies are very powerful in recognizing the patterns even though they are covered with the contact lenses and glasses. Iris based authentication is recommended if the moon mining company wants high end solution for the biometric authentication and ready for little high investment.digital Signatures A digital signature is an automated method of verifying our general handwritten signatures. The various features like speed, pressure, nodes etc are verified for authentication. This method is based on behavioral aspect of the person. It is simple method for authentication. It has many disadvantages like it can be imitated by others easily signature is tending to change slowly by time. Its not so safe to go with this type of authentication method. Privacy through Non Biometric Authentication The non biometric method for authentication is very parkland in the organization.It is simple and easy to implement. No particular infrastructure is required to implement these authentication methods. It is very cost effective method. RFID Authentication method The privacy can be provided by ensuring the proper authentication mechanism in practice. Several authentication protocols are used in existence systems. The authentication impart be performed in the readers and authentication parameters and value are stored in the RFID tags. The RFID readers would be available in each and every computers of the moon shining company.One of the common practices is store common password in all the RFID tags to be used. Whenever the tag is read if the password matches the other processing is done else the tag would be neglected. Another method for authentication is to assign store all the RFID tags unique number in database, when the tag is detected the number is cross checked with the database for authentication. Despite the many benefits of RFID systems, it has few pitfalls and some common problems. The main security threat in the RFID sy stem is the privacy security breaches. either the information is stored in the RFID tags.The RFID tags can in any case be read by others who have the RFID readers. The data can be read and modified in the tags by any one using the RFID readers (Moscatiell 2007). The RFID systems may be collapsed if several RFID tags are processed together. The RFID tags can communicate only to one RFID reader at instance. If two RFID readers are accessing a single tag, there may be a cast aside or collapse in the system. Other Radio signal hurly burly can violate some of the properties of the RFID systems. Some other security threats also exist for the RFID systems. Device Based AuthenticationIn this device based authentication, some special secure devices are used to generate the passcodes. These passcodes are verified for authorizing the persons. One of the famous devices is RSA based secureId device. It uses public key encryption for generating the passcode. Each and every user will have a sm all hand held device to generate the passcodes. These passcode are verified using the security algorithms for authentication. This method of authentication is also suggested for moon mining company. Conclusion All the organization should follow the tight computer security principles and policies.The basic security features must be installed in each and every computer system in the organization. All the users must be educated about the computer security principles and various threat regarding. The company can also go for the third parties for implementation and maintenance of computer security in the organization. This would help the organization to have the better security. Dedicated teams must be available for performing and monitoring all the computer security activities. The organization will be in trouble if the computer security practices are not followed in the organization.