Accepting Reality<\/h2>\n
I\u2019m old enough to say \u201cback in the day\u201d, and back in the day we had seven or eight accounts and thought it was a pain in the ass. Little did we know that it\u2019d get worse \u2013 much worse\u2026<\/p>\n
Dashlane shared that in 2015 the average user had 90 different online accounts<\/a>!<\/p>\n In order to manage this overflow of accounts, end users make perfectly understandable, but insecure, choices:<\/p>\n And these choices reduce the security of their online presence. And this doesn\u2019t even touch the concept of shared organizational resources!<\/p>\n And while computers can place filters on password creation to encourage \u201cbetter\u201d passwords, the reason we need to do that is because, given no guidelines, fully a third of all passwords would end up abc123\u2026<\/p>\n Coming up with a password should be more robust than trying to figure out a new way to manipulate your beloved pet\u2019s name and birthday.<\/p>\n If in addition to a username and password, logging into critical applications required the person to “have” something, that would clearly stop intruders. The most common tool that we can employ is a cell phone \u2013 we\u2019ll have another level of confident if we require a code from a cell phone app in order to login.<\/p>\n And so, every user needs a digital vault for account information. And every environment that allows an additional key at login time needs to be configured to do so.<\/p>\n The best digital vaults will assist in the creation of arbitrary passwords that meet stringent composition rules, store those passwords, supply those passwords when logging into web sites, and allow teams to share specific secure information between themselves. We\u2019ve selected Lastpass<\/a> as our preferred vendor. It doesn\u2019t mean you can\u2019t choose any of the options out there \u2013 but if you\u2019re going to ask us to assist, you probably want to use the one we\u2019re familiar with.<\/p>\n And while not all environments support Multiple \/ Two Factor Authentication (MFA\/2FA), Office365, Google, and many other useful sites do. There are several different apps to choose from to load on your Android\/Apple phone. Some are free, others come with a modest subscription. For practical purposes, pick an app that is native to your device and works with your most important sites.<\/p>\n\n
Making IT Secure<\/h2>\n
And Another Thing<\/h2>\n
The Two Fundamental Steps<\/h2>\n
![\"CMIT](\"https:\/\/cmitsolutions.com\/rochester-ny-1109\/wp-content\/uploads\/sites\/9\/2022\/09\/CMMIT-Solutions-Logo-300x150.png\"){kind=logo}
In the Rochester area, CMIT Solutions provides local, responsive IT support and technology services for small to mid-sized businesses. As your IT partner, we ensure systems are running, your data is secure, and your staff is productive. Backed by a national system, we have over 200 locations across the country with local ownership in Rochester.<\/div>\n![\"\"](\"https:\/\/cmitsolutions.com\/rochester-ny-1109\/wp-content\/uploads\/sites\/9\/2022\/02\/Steve-Tylock3-150x150-1.jpeg\")
Steve Tylock is a systems infrastructure professional with broad information technology experiences in servers, desktops, networks, security, applications, team development, and solution architecture across the domains of business, education, government, and manufacturing. He specializes in analyzing environments leading to strategies and plans for growth and excellence.<\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"