Home » Protection Manual for Human Rights Defenders » Chapter 12: Security, communications and information technology

Basic computer and file security

‹ Physical security of information in the officeupInternet security problems ›

1. More detailed advice on computer security is available from Front Line by contacting info@frontlinedefenders.org or from Privaterra at info@privaterra.org Lock computers away when leaving the office, if possible. Turn computer screens away from the windows.

2. Lock computers away when leaving the office, if possible. Turn computer screens away from windows.

3. Use surge protectors for all power outlets (variations in the electrical current can damage your computer).

4. Keep back-up information, including paper files, in a secure, separate location. Make sure your back-ups are secure by keeping them on an encrypted computer hard drive with a secure data back-up organisation, or secured by sophisticated physical locks.

5. To reduce the risk of someone accessing your computer, passphrase-protect your computer and always shut off your computer when you leave it.

6. Encrypt your files in case someone does access your computer or bypasses your passphrase protection.

7. If your computer is stolen or destroyed, you will still be able to recover your files if you have created a secure back-up every day. Keep the encrypted back-ups away from your office in a safe place.

8. Erased files cannot be reconstructed if you have wiped them using PGP Wipe or another utility, instead of just placing them in the computer’s trash or recycle bin.

9. Your computer can be programmed to send out your files or otherwise make you vulnerable without your knowledge. To avoid this, buy your computer from a trusted source, flatten the computer (i.e. reformat the hard drive) when you first get it, and then only install the software you want. Only allow trusted technicians to service your computer and watch them at all times.

10. Consider unplugging your computer’s phone connection/modem, or otherwise physically disabling your internet connection, when leaving the machine unattended. This way, rogue programs calling out in the middle of the night will not work. Never leave your computer on when you leave for the day. Consider installing software that will disable access after a certain set time of inactivity. This way, your machine is not vulnerable while you get a coffee or make a photocopy.

11. In your web preferences, enable file extensions in order to tell what kind of file it is before you open it. You don’t want to launch a virus by opening an executable file that you thought was a text file. In Internet Explorer, go to the Tools menu and choose Folder Options. Click View and make sure the box Hide extensions for known file types is NOT checked.

»