There is a major disconnect between best on-line security practices and also the public’s perception, in line with analysis given by Google at this week’s conference on Usable Privacy and Security.
The disconnect is most apparent once it involves putting in computer code updates, that security specialists take into account the foremost necessary security follow, whereas non-experts appear to contemplate those self same updates to be a security risk. cardinal % of specialists, however solely a pair of % of non-experts, aforesaid computer code patches area unit among their prime priorities for guaranteeing on-line security.
Google asked 231 security specialists and 294 web-using non-experts to arrange a report known as “‘. . . nobody will hack my mind’: examination skilled and Non-Expert Security Practices.” (PDF) in an exceedingly web log post the authors of the report decision computer code updates “the seatbelts of on-line security; they create you safer, period.”
Businesses have had some laborious reminders concerning best security practices. associate Last Frontier health care supplier was punished $150,000 for failing to use computer code patches in Gregorian calendar month, simply before a report came out that JP Morgan may have prevented a breach by applying a planned computer code update which might have accessorial two-factor authentication to a vulnerable server.
Antivirus computer code is taken into account in virtually the alternative manner from computer code patches. whereas antivirus computer code was cited by a lot of non-experts than the other follow (42 percent), solely seven % of specialists take into account it a prime priority.
One space of basis is parole security. each teams known “use sturdy passwords” as a top-five security follow, and each teams mentioned another password-related follow amongst their prime 5. specialists area unit way more probably to use a parole manager, and stress individualism for passwords, however.
The report authors urge internet users to adopt the practices of the specialists. the opposite follow within the experts’ prime 5, on the far side keeping computer code updated and parole measures, is that the use of two-factor authentication.