Xut bn Security In A Box (https://info.securityinabox.

org)
Trang ch > Bn in PDF > Bn in PDF

2. Lm th no bo v thng tin ca bn khi

nhng nguy c vt l trc tip
D bn n lc xy dng mt hng ro bo v quanh chic my tnh ca mnh ti vn phng, vo mt bui sng no ,
c th bn thc dy v pht hin rng chic my tnh hay d liu trong b mt do b ly trm, b chp in, hay
do bt k mt s c v km may mn hoc bi nhng hnh ng ph hoi. Mi th t mt s c chp in, ti vic m
ca s lm ly c ph u c th dn ti tnh hung ton b d liu ca bn b mt v bn khng th s dng chic
my tnh c na. S nh gi mt cch cn thn nhng ri ro, n lc lun duy tr mt mi trng m bo cho h
thng my tnh v mt chnh sch bo mt [1] c vit r rng c th gip trnh nhng loi nguy c ny.

Tnh hung c bn
Shingai v Rudo l cp v chng vi nhiu nm cng tc gip cng ng ngi nhim HIV ti Zimbabwe s dng
phng php iu tr thch hp. H ang tm kim ti tr trang b h thng mng my tnh cho vn phng. Do h sng
ti khu vc c nhiu hn lon, v c chnh tr ln c s h tng nn bn thn h v nhng nh ti tr u mun m bo
rng cc thit b mi s c an ton, khng ch khi cc tin tc hay virt m cn trnh khi b sung cng, sm st, xung
in v cc loi s c tng t. H yu cu Otto, mt k thut vin my tnh a phng gip xy dng k hoch tng
cng an ton cho h thng my tnh v mng h d nh thit lp khi c ti tr.

Nhng iu bn c th hc c trong chng ny:

Mt s v d v cc mi e da vt l [2] trc tip i vi my tnh v d liu cha trong my tnh .
Phng php hiu qu nht bo m an ton cho h thng trc nhng mi e da .
Cch xy dng mi trng vn hnh an ton cho cc thit b my tnh v mng.
Nhng iu cn cn nhc khi xy dng k hoch bo m an ton cho h thng my tnh trong vn phng
bn.

nh gi nhng nguy c
Nhiu t chc thng nh gi thp tm quan trng ca vic bo m an ton cho vn phng cng nh h thng thit b
ca mnh. Dn n vic h thiu cc chnh sch quy nh r rng cc qui tc cn thc hin bo v my tnh v cc
thit b lu tr khi b mt trm, thin tai, s c, v cc nguy c vt l khc. Tm quan trng ca cc chnh sch ny c th
kh r rng tuy nhin vic thc hin chng mt cch ng n phc tp hn nhiu. Nhiu t chc, ly v d, c h thng
kha ca cht lng cao v thm ch c h thng ca s chng t nhp nhng li khng ch ti s lng cha kha
m h s dng, vic nhng ai c cha kha, th d liu ca h vn khng an ton.
Shingai: Chng ti mun a mt bn tm tt chnh sch an ninh vo trong h s xin ti tr, nhng chng ti cng cn
bn tm tt ny phi bao qut. Chng ti cn bao gm nhng g?
Otto: Ti s rng mnh khng th gi mt-gii-php-ph-hp-cho-mi-trng-hp vi nhng vn ca an ton thng
tin v mt vt l. Nhng c tnh ca mt chnh sch tt lun gn vi tnh hnh c th ca tng t chc. Tuy nhin, sau
y l nhng gi chung: khi anh c gng xy dng mt k hoch, anh cn kho st tht k mi trng lm vic v suy
ngh cn thn v sng to v nhng ni anh cho rng s l im yu v nhng iu cn lm tng mc an ton cho
chng.
Khi tin hnh nh gi mc ri ro v kh nng gp s c m t chc ca bn c th gp phi, bn cn nh gi
nhiu mc khc nhau kh nng d liu ca t chc c nguy c b nh hng.
Cn nhc cc knh thng tin bn ang s dng v cch bn s dng chng. V d bao gm vn bn th t, fax,
ng dy thoi c nh, di ng, th in t v tin nhn qua Skype.
Tm hiu phng php bn ang lu tr nhng thng tin quan trng. Cc cng my tnh, th in t v cc my
ch th in t, th nh USB, th nh ngoi, a CD, DVD, in thoi di ng, cc bn in ti liu, ghi ch vit tay...
u l nhng kh nng dn n ri ro.
Xem xt a im cc thng tin, ti liu c ct gi. C th l ti vn phng, nh ring, trong thng rc gc
phng, hay mt ni m ang gia tng ph bin l u trn Internet. Trong trng hp cui, s kh kh khn
xc nh xem mt thng tin c th c thc s lu tr u.
Lun nh rng mt mu thng tin c th nhiu mc nguy c khc nhau. Cng ging nh vic bn tin cy mt phn
mm dit virt bo v d liu trong chic th nh ca mnh khi phn mm c hi [3] , bn cn c mt k hoch chi

tit v bo v thng tin khi b nh cp, b mt hay b ph hy. Mt s hnh ng bo v trong thc t nh chnh sch
sao lu d phng rt c tc dng cho c cc nguy c d liu v nguy c vt l, v c cc chnh sch khc kh c th cho
tng loi nguy c.
Khi bn quyt nh xem nn b chic th nh USB ca mnh vo ti o hay gn vo y ti du lch, bn ang ra quyt
nh v bo v n v mt vt l, cho d thng tin bn bo v l thng tin d liu. Trong a phn cc trng hp, cu tr
li phn ln ph thuc vo tnh hung. Bn ang i b trn ph hay i qua bin gii? Liu cn c ai s mang chic ti
ca bn? Tri c ma khng? l nhng cu hi bn cn cn nhc trc cc quyt nh kiu ny.

Bo v d liu ca bn khi nhng k xm nhp

C nhng k l tm cch truy cp thng tin ca bn cng l mt loi nguy c vt l quan trng. S l mt sai lm khi cho
rng y l nguy c vt l duy nht nguy hi ti an ton d liu ca bn, nhng cn thin cn hn khi b qua n. C mt
s bc bn c th thc hin gim thiu ri ro v nguy c gin ip. Cc phn loi v khuyn ngh di dy - a
phn c th p dng nh hay vn phng gii thiu mt nn tng c s m bn cn da vo xy dng v m rng
tng ng vi cc nhu cu bo v vt l ca ring mnh.

Xunh quanh vn phng

Lm quen, tm hiu v hng xm. Ty tnh hnh an ninh ca quc gia v khu vc ln cn, c th xy ra mt trong hai
kh nng sau: Hoc bn c th khin h tr thnh nhng i tng s gip bn mt ti vn phng ca mnh,
hoc bn c th lit h vo danh sch nhng nguy c cn c cp trong k hoch an ninh ca mnh.
R sot li ton b ca ra vo, ca s v cc li vo ra vn phng.
Cn nhc vic thit lp h thng camera quan st hay h thng cm bin chuyn ng.
C gng to mt khu vc tip tn, ni khch kha c n tip trc khi h bc vo vn phng, v phng hp
cch bit vi ni lm vic.

Trong vn phng:
Bo v h thng cp mng bng cch i dy cp bn trong vn phng.
Kha cc thit b mng nh my ch [4] , b nh tuyn [5] , b chuyn mch [5] , v modem [5] trong phng hay t mng
an ton. Mt k xm nhp c kh nng truy cp trc tip ti nhng thit b ny c th ci t phn mm c hi
c th truyn d liu hoc tn cng cc my tnh khc ngay c khi hn ra khi vn phng.
Nu bn s dng mng khng dy, mt iu ht sc quan trng l bn phi bo mt im truy cp [5] k xm
nhp khng th kt ni v kim sot thng tin trong mng. Nu bn s dng mt mng khng dy khng bo mt,
bt k ai quanh vi mt chic my xch tay cng tr thnh mt k xm nhp tim tng. y l mt nh ngha
kh bt bnh thng theo ngha trc tip, nhng n s gip cn nhc rng mt k l mt c th kim sot thng tin
mng khng dy ca bn s c kh nng truy cp khng khc g k no t nhp vo vn phng bn v cm
kt ni trc tip qua cp mng. Nhng bc cn thit thit lp mt mng khng dy bo mt s thay i ph
thuc vo phn cng v phn mm thit b c s dng, tuy nhin chng u kh n gin.

Ti mi trng lm vic:
Bn cn iu chnh v tr mn hnh ca mnh cn thn, c trn bn v khi bn ri ni lm vic, trnh ngi khc
thy c nhng g hin th trn mn hnh. Trong vn phng vic ny c ngha l phi ch cc hng ca ra vo,
ca s, khu vc khch ch, nu c.
Hu ht cc thn my tnh u c mt khe cho php bn kha li phng b ngi khc m ra. Nu bn c mt
thn my tnh nh vy, bn nn kha li phng k t nhp c th cm cc linh kin gin ip. Bn cng nn
cn nhc kh nng ny mi khi mua my tnh mi.
Kha cc my tnh bng cc kha an ton [6] nu c th trnh k gian ly trm. Vic ny rt quan trng vi cc
my tnh xch tay hoc my bn c nh d dng c giu trong cc ti hoc di o.

Phn mm v cc thit t lin quan ti an ninh vt l

Chc chn rng khi bn khi ng li my tnh, n s yu cu nhp mt khu ng nhp. Nu cha th bn c
th bt tnh nng ny bng cch vo trnh n Start, chn mc Control Panel v nhn p chut vo biu tng
User Accounts. Trong ca s User Accounts, chn ti khon ngi dng ca bn v nhn chn Create a Password.
Chn mt mt khu bo mt theo hng dn trong Chng 3. Lm sao To v Duy tr Mt khu Bo mt [7] ,
nhp vo mt khu, xc nhn, chn Create Pasword v nhn Yes, Make Private.
C mt s thit t trong phn BIOS [8] ca my tnh c lin quan ti bo mt vt l cho my. Trc ht, bn
cn cu hnh my tnh n khng th khi ng [9] t a mm, CD-ROM hay DVD. Tip bn cn t
mt khu truy cp BIOS [8] k xm nhp khng th thay i cc thit t trong . Hy nh chn mt mt
khu mnh.

Nu bn chn s dng mt c s d liu mt khu bo mt nh trong hng dn ti Chng 3. Lm sao

To v Duy tr Mt khu Bo mt [7] lu cc mt khu ca Windows hay BIOS [8] trn mt my tnh ring,
hy m bo rng bn khng ch gi mt bn duy nht c s d liu mt khu trn my .
Cn to thi quen kha mn hnh my tnh vi mt khu mi khi bn ri my tnh. Trong Windows, c th thc
hin rt d dng bng cch n cng lc phm biu tng Windows v phm L. Thao tc ny ch c tc dng khi
bn c s dng mt khu truy cp cho ti khon ngi dng, nh trong hng dn bn trn.
M ha [10] cc thng tin nhy cm. Xem thm Chng 4. Lm sao bo v d liu my tnh [11] c thm chi tit
v cc mc cho cc hng dn s dng phn mm thch hp.
Rudo: Ti c cht bn khon v nhng thit t nhm trong BIOS. Liu ti c lm hng my tnh nu ti lm g sai
khng?
Otto: Tt nhin iu y l c th, t nht l tm thi. Thc t, cc thit t m anh c th cn thay i kh n gin, tuy
nhin mn hnh hin th ca chnh BIOS c th hi ng ngi v n c th dn ti treo my tm thi. Nhn chung, nu anh
khng thc s t tin lm vic vi BIOS, hy nh mt ai c nhiu kinh nghim v my tnh hn gip anh.

Nhng thit b di ng
Hy lun gi my xch tay, in thoi di ng hay cc thit b cm tay khc c cha thng tin nhy cm bn mnh.
c bit khi bn i du lch hay li mt khch sn. Vic mang theo mt kha dy [6] cho my xch tay khi i du lch
l mt tng hay, tuy nhin i lc kh tm c mt vt thch hp kha my tnh vo. Nn nh rng, vo gi n
thng l lc bn o chch ra tay, bn chng thng bit vo lc li cc phng khch sn ly my xch tay vo
nhng gi m khng c ngi .
Nu bn c mt chic my xch tay, hay mt thit b h tr c nhn (PDA), hy trnh chng nhng ni d thy.
Khng cn thit phi ph trng cho bn o chch thy rng bn ang mang nhng thit b c gi tr hoc cho cc
k c nh ly d liu ca bn bit rng bn ang mang trn vai chic ba l c cha mt ci cng cha y d
liu. Trnh s dng cc thit b c nhn ti ni cng cng, v cn nhc vic mua mt ci ba l khc kiu ti du lch
ng my tnh xch tay.

m bo mi trng vn hnh an ton cho cc thit b

phn cng
Ging nh cc thit b in t khc, my tnh l thit b kh nhy cm. Chng khng p ng tt trc s mt n nh ca
ngun in, nhit khc nghit, bi bn, m cao, hoc cc tc ng c kh. C mt s vic bn c th thc hin
gip bo v my tnh v cc thit b mng ca mnh khi cc nguy c trn:
Cc tc nhn in nh qu dng, p, xung in, mt in, st p c th gy tn hi vt l ti my tnh ca bn.
Nhng s c ny xy ra thng xuyn c th khin cng b li, gy mt d liu lu tr trn , hoc c th lm
hng nhng b phn trong my tnh.
Nu bn c th, hy lp nhng b lu in UPS [12] cho nhng chic my tnh quan trng trong vn phng. Mt b
lu in [12] s cung cp in tm thi khi b mt in.
Khi cc b lu in [12] khng thch hp hoc qu t , bn vn c th s dng cc b lc in hoc cc b
chng qu xung, chng s gip loi b cc xung nhiu in gy chp chn hoc qu xung in.
Kim tra mng in trc khi kt ni cc thit b quan trng vo . m bo rng cc cm in u c 3 l, mt
l chn ni t. V nu c th, cn kim tra hot ng ca li in trong vng mt vi ngy bng cch cm mt
s thit b r tin nh n v qut vo mng in trc khi s dng cho my tnh.
trnh cc s c ni chung, cn trnh t cc thit b quan trng ti ni hnh l, khu vc tip tn hay cc
phm vi d tip cn. Cc b lu in, cc b lc in, chng xung in, cm v cc dy ni di, c bit l
nhng dy ni vi my ch v cc thit b mng nn c t nhng ni c th trnh vic bt tt do nhm ln.
Nu bn s dng cc loi cp, dy ni v cm mng cht lng cao, bn nn mua cng loi cho ton b vn
phng v mt s lng d tr. Cc c vt h, tut khi cm v gy m-ve in thng xuyn c th nguy hi hn
l ch kh chu. Chng c th gy nh hng trc tip i vi cc my tnh ni ti chng. Cha ht, nhng ngi
dng thy kh chu do thng ni my tnh ca h vo cc cm b m-ve s tm cch dng bng dnh qun li,
s gy nn nguy c chy n.
Nu bn phi t nhng chic my tnh trong t, cn to thong v thng kh nu khng chng s b nng v h
hng.
Cc thit b my tnh thng khng nn gn cc my pht, l thot nhit, my iu ha v cc ng ng dn.
Nu cn bn hy hi ngi ph trch cng ngh lp t cc my o nh nhit k, bo ng t ng c th gip
bn cnh bo nu phng cha my ch quan trng v cc thit b mng tr nn qu nng hay qu m.

Shingai: Thc t chng ti va phi gii quyt vi vn nh vy hi u nm. Chng ti mt hng thng tm ra
ci dy ni m n khng h tut khi gic cm pha sau my tnh.
Rudo: V cc c vt in khng phi lc no cng trng c v nh chng s gy chy thm nh!
Shingai: Vng c chng na. Cui cng Rudo phi mang mt t v t Johannesburg. Anh cng bit rng, in thng
kh bt n nh, nhng t ra th cc thit b in cng kh d s dng.

Xy dng chnh sch an ton vt l

Mt khi bn xc nh cc mi nguy c v cc im yu m t chc ca bn gp phi, bn cn cn nhc cc bc cn
thc hin tip tng cng an ninh v mt vt l. Cn to mt chnh sch an ninh vi cc bc c ghi ra r rng. Ti
liu s c dng lm hng dn chung cho bn thn bn, cho cc ng nghip v cc nhn vin mi ca t chc.
N phi bao gm lit k cc hnh ng cn thc hin trong mi trng hp c s c khn cp v an ninh vt l. Mi
ngi lin quan u phi c, thc hin v cp nht cc quy chun ny. H cn c khuyn khch hi v a ra cc
kin ci tin ti liu.
Chnh sch an ton vt l ca bn c th bao gm nhiu mc theo cc tnh hung:
Mt chnh sch s dng vn phng: v h thng bo ng, cc loi kha v ai c cha kha, khi no th khch c
php vo vn phng, ai gi cc hp ng v sinh v cc vn tng t nh vy.
Chnh sch quy nh nhng ni trong vn phng ch dnh cho nhng ngi c thm quyn ra vo.
Bn kim k ti sn, bao gm s seri sn phm v cc m t vt l.
Mt phng n tiu hy giy loi cha thng tin nhy cm.
Cc phng n khn cp lin quan ti:
Ai phi c thng bo nu thng tin nhy cm b d r hoc khng ng ch
Cn lin h ai trong trng hp c chy, ngp lt hoc cc tai ha thin nhin khc xy ra
Lm sao sa cha khn cp mt loi kha
Lm sao c th lin lc vi cc cng ty, t chc cung cp dch v nh in, nc v Internet
Cch khi phc thng tin t h thng lu tr ngoi tuyn. Bn c th tm thm thng tin v hng dn sao lu ti
Chng-5 Sch Hng dn [13] .
Chnh sch an ninh [1] ca bn cng cn c xem xt li nh k v cn c sa i cho ph hp vi cc thay i
chnh sch m cha c thc hin t ln xem xt trc. V, cui cng, ng qun sao lu bn thn ti liu cng vi
nhng d liu quan trng khc. Xem phn c thm [14] c thm thng tin v xy dng chnh sch an ninh [1] .

c thm
Thng tin thm v nh gi ri ro, xem cc phn Security Awareness [15] , v Threat Assessment [16] trong cun Digital
Security and Privacy for Human Rights Defenders [17]
Gii thch chi tit v thit lp mt khu BIOS [18] , xem chng Windows Security [19] trong cun Digital Security and
Privacy for Human Rights Defenders [17] .
Hng dn v thit lp chnh sch an ninh, xem tnh hung 1 Case Study 1 [20] trong cun Digital Security and
Privacy for Human Rights Defenders [17] .
V xem thm [Protection Manual [21] v Protection Handbook [22] dnh cho cc Nh u tranh Nhn quyn.
URL ngun (c tm thy vo ngy 04/11/2015 - 03:11): https://info.securityinabox.org/vi/chuong-2
Cc lin kt:
[1] https://info.securityinabox.org/vi/glossary#Security_policy
[2] https://info.securityinabox.org/vi/glossary#Physical_threats
[3] https://info.securityinabox.org/vi/grossary#Malware
[4] https://info.securityinabox.org/vi/glossary#Server
[5] https://info.securityinabox.org/vi/glossary#Router
[6] https://info.securityinabox.org/vi/glossary#Security_cable
[7] https://info.securityinabox.org/vi/chuong-3
[8] https://info.securityinabox.org/vi/glossary#BIOS
[9] https://info.securityinabox.org/vi/glossary#Booting
[10] https://info.securityinabox.org/vi/glossary#Encryption
[11] https://info.securityinabox.org/vi/chuong-4
[12] https://info.securityinabox.org/vi/glossary#UPS
[13] https://info.securityinabox.org/vi/chuong-5

[14]
[15]
[16]
[17]
[18]
[19]
[20]
[21]
[22]

https://info.securityinabox.org/vi/chuong_2_5
http://www.frontlinedefenders.org/manual/en/esecman/chapter1_2.html
http://www.frontlinedefenders.org/manual/en/esecman/chapter1_3.html
http://www.frontlinedefenders.org/manual/en/esecman
https://info.securityinabox.org/vi/grossary#BIOS
http://www.frontlinedefenders.org/manual/en/esecman/chapter2_1.html#2_1c
http://www.frontlinedefenders.org/manual/en/esecman/chapter4.html
http://www.frontlinedefenders.org/manuals/protection
http://www.frontlinedefenders.org/manuals