Is network security too tough on the end user?

With time, trends come full circle.  Security is only as good as the tools you deploy, and insuring that they are properly used.  Why has the user again become the bane of the enterprise network administrator (if they really ever stopped)?

The enterprise user is where all the efforts of the enterprise network administrator are either successfully implemented or is completely negated.  Diligence by the enterprise network administrator has increased security ten fold, yet the user can unintentionally circumvent all that. Programs installed by the user can either bring in viri or trojans, or simple help give hackers a way in or out of the network or devices like the USB keys with storage space.  Enterprise users can unintentionally do as much if not more damage to a network then a determined hacker.

Security dictates that passwords be different (to prevent one comprise cascading to the others causing a total security breach) for each application.  In an example an enterprise network administrator has made complex (complex being a mixture of capitals, numbers and other letters like an exclamation “!”) passwords mandatory on all network resources, and these passwords must also be changed at intervals short enough to prevent them becoming cracked / brute forced. A major challenge being the time frame for each applications password renewal, I myself as security professional can at times feel burdened with all the passwords that I must remember to function everyday.

A normal day for me just from the password standpoint each one being different from the others:

Work process that require a password:

Badge in the building

Login to laptop

Launch VPN

Login to email

Expense report system

CRM tool

Travel booking website

Phone calling card

Conference call line

Human resources website

Team web calendar

Department intranet site

Internal training website

Electronic time card

Personal processes that require a password in the same day:

            ATM

            Message boards

            Bank website

            Other creditors and or online bill paying website

            PDA

To add insult to injury administrators can also configure these applications to prevent password recycling (where you use a previous password again).  This has lead many an enterprise user to secretly (or prominently) writing down their passwords. This leads to the full circle of trends, and this totally negates the purpose if the password being secret.

So what?s the answer? No passwords?  Little mini super secret notepads you hide in your underwear?  If your IT dept has the money to get a single sign on, does it work?  Most of the people that I talk to and all the places I have seen single sign on implemented don?t like it/nor does it work.  Poor implementation at this level is due to the single sign on uses some type of plug in for the applications, services packs and system setup is cost on top of the application it?s self.

What we need is an ISO Standard for passwords that all vendors must adhere to, and a set up API calls with the auth sitting in protected memory until being wiped or deleted for a new users to log in.  This way those applications can look at your original authentication for rights to launch the app.  This of course leads to how well the operating system can handle these protected memory space.  Windows .NET or what ever it?s called will let us know how close we come.  If Windows CE is supposed to out sell desktop licenses in the next five years, what does that do for security? 

And the pendulum swings.  Security is a concept, an unobtainable goal.  You never have a secure computer network, just one with security features.

The views expressed here are solely those of the author and do not reflect the beliefs of Digital Trends.

Digital Trends Live

Microsoft has #*!@ed up to-do lists on an epic scale

Microsoft has mucked up to-do lists on a scale you simply can’t imagine, a failure that spans multiple products and teams, like a lil’ bit of salmonella that contaminates the entire output from a factory.
Smart Home

Idaho mother says her child’s light-up sippy cup exploded

After a mother filled a Nuby insulated light-up cup with milk, the cup allegedly exploded. The incident caused burns to the mother's hand and face and a stinging sensation in her lungs that required a trip to the hospital.
Deals

Tidying up with Netflix’s Marie Kondo? Save on ClosetMaid essentials at Wayfair

Netflix recently premiered Tidying Up with Marie Kondo, a show about decluttering and organizing. If you want to try to live by her philosophy in 2019, Wayfair is offering up to 70 percent off on ClosetMaid's organization essentials.
Movies & TV

CBS recruits Michelle Yeoh for ‘Star Trek: Discovery’ spinoff

Yet another Star Trek show is on the way. CBS confirms that Michelle Yeoh will return to play her Star Trek: Discovery character, Philippa Georgiou, in a spinoff centered on Starfleet's clandestine Section 31.
Smart Home

A.I.’s humorous side: Here are the funniest things to ask Alexa

Amazon's Alexa voice assistant has a wide repertoire of funny responses, jokes, and hidden replies that you can have fun with. Here are the best funny things to ask Alexa and examples of what her responses are.
Opinion

As Amazon turns up the volume on streaming, Spotify should shudder

Multiple players are all looking to capitalize on the popularity of streaming, but it has thus far proved nearly impossible to make a profit. Could major tech companies like Amazon be primed for a streaming take-over?
Gaming

Throw out the sandbox. ‘Red Dead Redemption 2’ is a fully realized western world

Despite featuring around 100 story missions, the real destination in Red Dead Redemption 2 is the journey you make for yourself in the Rockstar's open world, and the game is better for it.
Gaming

‘Diablo Immortal’ is just the beginning. Mobile games are the future

Diablo fans were furious about Diablo Immortal, but in truth, mobile games are the future. From Apple and Samsung to Bethesda and Blizzard, we’re seeing a new incentive for games that fit on your phone.
Movies & TV

He created comics, movies, and superheroes. But Stan Lee lived for joy

Stan Lee was a creator, a celebrity, an icon, and beneath it all, a real-life good guy with all the same human qualities that made his superheroes so relatable. And his greatest joy was sharing his creations with the world.
Music

Brian Eno sets out to change music (again) with Bloom: 10 World

We always felt that Bloom was a musical system that could be developed further -- it was as if we’d built a CD player and only ever released one CD. For this release, we’ve created ten new worlds, starting with a reimagined version of…
Computing

Can two operating systems coexist? The Pixel Slate thinks so

The Pixel Slate is a 2-in-1 device like no other. It’s not the most polished product we’ve ever used, but Google has laid the foundation for letting mobile and desktop software live side-by-side in peace.
Android

Why commercials in Android Auto could turn your dashboard into a dumpster fire

Google announced some tweaks to the Android Auto experience, focused on making messaging and media easier, but I worry about the future of the platform. For better or worse, there’s a real chance our dashboards could turn into dumpster…
Gaming

These are the best video games you shouldn't leave 2018 without

Developers showed up with a number of amazing games this year. Each capitalized on something unique but there's always one that outdoes them all. Here are our picks for the best video games of 2018 and game of the year.
Home Theater

Will Marvel’s shows lose their punch if they move from Netflix to Disney Plus?

Disney could pick up the Marvel shows being canceled by Netflix, but the idea raises all sorts of questions. Is continuing Daredevil, Punisher, or Jessica Jones on Disney's own streaming service a good move?