Laptop computers -- security starts with user Published Feb. 17, 2005 SCOTT AIR FORCE BASE, Ill. -- Youve placed firewalls between you and the Internet and you've implemented passwords to gain access to your systems, yet still youve been infected with a virus. How did this happen? How did an outsider gain access to your system and corrupt your information?Look again, maybe it wasnt an outsider. Maybe it was you!No matter how many firewalls you implement to protect your systems from hackers, those devices wont protect your system from the insider threat. Users unwittingly bring hostile code into their organization and, unbeknownst to them and you, infect everyone on the network. The least obvious but most common security breach is the innocent user downloading dangerous code either at their duty location, at home, or while TDY, and then introducing that code into the enterprise, most often when they re-dock their laptop at work.Complacency comes into play when downloading files to your laptop. Often you trust the source or feel that your antivirus software will catch any and all viruses. The few files you downloaded couldnt possibly contain a virus. Think again. You always jeopardize the network whenever you download a file or accept a file and dont automatically run a virus scan. Participating in this type of unsecured practice places the entire AMC network at risk potentially causing loss of productivity and in some cases crashing the network.What countermeasures can be used before departing your location with a laptop?Ensure the latest antivirus definitions files are loaded on the laptop.Allow the workgroup manager to scan your laptop prior to allowing connection to the visiting network.Do not download any files in transit without running a virus scan first.Unfortunately, few laptop users exercise such caution. Organizations need to do a better job of educating their laptop users about antivirus security. Disabling the Infrared Port on your laptop can help. I don't know anybody who actual transmits data via the infrared port on their laptop, but the IR port can be used to browse someone else's files from across a conference room table without them knowing it. Disable the IR port via the BIOS, or simply cover it up with a small piece of black electrical tape.Always backup your laptop before you do any extended traveling that may put your data at risk. This doesn't have to take a lot of time, and you can use the built in backup utilities. If your network doesn't have the disk space to backup all of your traveling laptop users, you may wish to look into some personal backup solutions, including external hard drives, CD-R's, memory sticks, or tape backups.Regardless of the approach or the security method chosen by your organization, it is only effective if it is practiced. Users must make security practices a part of their regular routine. I am just as guilty as the next person when it comes to ignoring a practice that is inconvenient. However, when it comes to computer security, a little inconvenience now can save you (and everyone else connected to the network) a whole lot of inconvenience later.People are the weakest link in the security chain. If you care about your laptop and your data, a healthy dose of paranoia will help keep it safe. Get into the habit of locking your laptop when you're not working with it, or when storing it. Use common sense when traveling, and try to stay in physical contact with your laptop at all times. If you are traveling with trusted friends or business associates, use the "buddy system" to watch each other's back. A determined thief or industrial spy may still be able to get your laptop if they set their mind to it, but why make it easy for them?Treat your laptop has if it were an investment. After all, you and I paid for it. Would you like to see a return on your investment? I would. Air Mobility Command News Service is a service of the Internal Division Office of Public Affairs 503 Ward Drive, Room 214 Scott Air Force Base, Illinois 62225-5335 618-229-7821