Privilegirani uporabniki in varna uporaba gesel
Privilegirani uporabniki in varna uporaba gesel
Privilegirani uporabniki so skupina strokovnjakov, ki nadzirajo in skrbijo za pravilno delovanje informacijskega sistema znotraj podjetij. So specifična skupina uporabnikov, ki imajo praktično neomejen dostop do informacijskega sistema ter informacij zaupne narave, zato je potrebno postaviti dobro varnostno politiko nadzora in upravljanja privilegiranih uporabnikov. Ker pa so tovrstni uporabniki le ljudje, se tako kot pri navadnih uporabnikih pojavi problem pravilne rabe gesel. Gesla uporabnikom velikokrat predstavljajo nujno zlo, zato so tudi posledično slabe kvalitete in ne dosegajo standardov varnostne politike gesel. Dodatne težave se lahko pojavijo tudi pri izposoji gesel, saj se možnost vdora v informacijski sistem s tem še dodatno poveča. Skozi magistrsko nalogo in s pomočjo anketnega vprašalnika poskušamo ugotoviti, kako privilegirani uporabniki v slovenskem prostoru sledijo varnostni politiki gesel na podlagi priporočil in standardov.
therefore, a good security policy must be set up for the supervision and management of privileged users. However, as in the case of ordinary users, the problem of incorrect use of passwords also occurs with privileged users. For many users, creating passwords is often “a necessary evil” and consequently the passwords are of poor quality and do not meet password security standards. Additional problems may also arise in the case of password sharing, as the possibility of an intrusion into the information system is further increased. In this master’s thesis (with the help of a questionnaire), my aim was to determine how privileged users in Slovenia follow the password security policy according to recommendations and standards.
Privileged users are a group of experts who supervise the information system in a company and make sure that it functions properly. They are a specific group of users who have practically unlimited access to the information system and information of confidential nature
information system, information security, privilegirani uporabnik, geslo, informacijski sistem, identifikacija, privileged user, identification, authentication, info:eu-repo/classification/udc/659.2:004.056(043.2), informacijska varnost, avtentikacija, password
information system, information security, privilegirani uporabnik, geslo, informacijski sistem, identifikacija, privileged user, identification, authentication, info:eu-repo/classification/udc/659.2:004.056(043.2), informacijska varnost, avtentikacija, password
selected citations These citations are derived from selected sources.This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).0 popularity This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network.Average influence This indicator reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).Average impulse This indicator reflects the initial momentum of an article directly after its publication, based on the underlying citation network.Average
Citations provided by BIP!Popularity provided by BIP!