Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
PARTICIPATION
Information Security
Information Security is the protection of data against unauthorized access.
Confidentiality - Prevent the disclosure of information to unauthorized individuals or systems. Integrity - Data cannot be modified undetectably. Availability - The information must be available for the computing systems used to store and process the information. Authenticity - Necessary to ensure that the data, transactions, communications or documents are genuine. Non-repudiation - In law, non-repudiation implies one's intention to fulfill their obligations to a contract.
Electronic commerce uses technology such as digital signatures and public key encryption to establish authenticity and non-repudiation.
The log on process for Internet Banking is in three steps; 1. Request to input Username 2. Request to input Memorable Answer 3. Request to input Password using the virtual keyboard, which when combined with the Username is unique to the user.
HSBC uses Encryption as one of the techniques with this security design principle. Encryption and Decryption Encryption is the conversion of data into a form that people cannot read. Decryption is the reversal of that process. When managing HSBC account online, encryption software scrambles your information into an unreadable form every time you enter it.
Easy to use Just switch it on, enter your Secure Key PIN code and it'll give you a unique, one-off six digit pass code each time you log on. It's as simple as that. Small & portable It's about the same size as a credit card so it should easily fit in a wallet or purse. You can take it with you and log on to Internet banking anywhere you choose.
Benefits:
Much more secure: The code you need to input online is displayed on the device and therefore seen only by you. Online fraudsters can not steal something you physically have. This extra layer is something unique for each user. Protection for transactions: All Internet banking transactions (such as fund transfers to nondesignated accounts) need to be authenticated by a device held only by you.
02. Staying safe online Install Rapport Software Install anti-virus software Update your browser Keep your software up-to-date Dont share private information online Look after your paper statements Understand how criminals use the internet Avoid online fraud and con tricks Learn to spot fake emails and fake websites Protect your mobile phone
Install Rapport Software Get an extra layer of protection when you bank online. HSBC recommends that you install Rapport software from Trusteer. It's free, easy to install and simple to use. It works with the security software you already have to make online banking safer. Install anti-virus software Anti-virus software protects you, your privacy and your money. Viruses are bad news. They steal personal information, take over your PC, pop up unwanted adverts and they can even use your computer to attack other people's computers. Anti-virus software protects you against all of them. To work properly, anti-virus software has to download updates regularly over the internet. You can download Microsoft Security Essentials or McAfee Virus Scan Plus. 9
Update your browser The program you use to look at websites is called a web browser. Modern browsers warn you if you visit fake websites and it is harder for viruses to infect them. It makes sense to use a modern web browser. If you have updated your computer regularly, it is likely that you are already running either Microsoft Internet Explorer 8 on Windows PCs or Safari 5 on Macs. It is a good idea that you install an up-to-date web browser. Keep your software up-to-date It is harder for viruses to infect updated software. The criminals who create viruses take advantage of software bugs to infect computers. Software companies fix bugs with free downloadable updates. It is a good idea that you install updates for your software as soon as they become available. Most modern software will check for updates automatically. Dont share private information online All private information is useful to people who want to steal your identity or break into your Personal Internet Banking. You wouldn't give this information away to a stranger in the street but if you use social networking sites, such as Face book, Twitter or MySpace, you could be over sharing personal data. You may want to think carefully about the information you put into your profiles on sites like this. It is also a good idea that you check the privacy settings on each site that you use to make sure you only share personal information with people you trust. Look after your paper statements Fraudsters use personal information from different sources to steal people's identities. Viruses are one way to do it. But they also use paper documents of your accounts containing personal details, such as receipts and bank statements. Fraudsters use many methods such as searching in dustbins to obtain these documents.You should take simple precautions to keep your details safe and to dispose of these documents safely. Understand how criminals use the internet Criminals are in it for the money. There are many ways for them to make money online:
Steal your passwords and bank details with viruses, fake emails and fake websites Ask you to provide security details Send spam with bogus offers and products Take over your computer and use it to attack other people's computers Use viruses to display unwanted adverts on your PC
We take your Personal Internet Banking security and privacy very seriously. Protecting yourself and your money takes a bit of know-how and the right software. 10
Avoid online fraud and con tricks When it comes to protecting yourself and your money on the internet be wary of ridiculous deals. Criminals may contact you by email, through websites you use, via SMS or even by phone. It pays to be on your guard as they can be quite convincing. Here are some warning signs:
Big promises: 'You have won the lottery' Big threats. 'Your account has been hacked' A false sense of urgency. 'Act now or it'll be too late' There is no reason for them to contact you. Did you even buy a lottery ticket?
If an attachment looks suspicious, don't open it. Don't install software unless it comes from a website you trust. If you suspect that there is a problem with your Personal Internet Banking, you can always talk to usfirst. Learn to spot fake emails and fake websites Criminals use fake emails and fake websites to con people into giving away passwords and bank details. For example, they might send you an email that looks like it comes from us and it might contain a link to a website that looks like this one. When you try to log on, they can steal your password. They are good at making their emails and websites look realistic. But you can often spot the fake ones:
Dodgy looking email or web addresses Poor design, typos or bad spelling They ask you to do something unusual A site doesn't display the padlock symbol in the address bar when you log in
If in doubt, check with us first. Avoid clicking on links in emails. A starting point on protecting yourself online is to use the software we refer to from this site. Rapport software and up-to-date web browsers block fake websites. Protect your mobile phone Your phone may hold lots of personal data - take care of it. You may even use it for internet banking and online shopping. You may want to think about:
Setting and using a security PIN code Adjusting the phone settings so that it locks automatically if you don't use it for five or ten minutes Not storing passwords or other sensitive information on your phone in a way that can be understood by someone else Not storing your home phone number and address under 'home' in the contact list Be wary of voicemail and text message scams
If you lose your phone report it to your mobile phone provider immediately. Make a note of your phone's IMEI number (dial *#06# to get it). This will make it easier for your phone company to disable a stolen phone.
11
03. HSBC Security recommendations Microsoft Security Essentials McAfee Trusteer Browsers Microsoft Security Essentials Microsoft Security Essentials helps provide real-time protection for your home PC that guards against viruses and other malicious software. It is simple to install, easy to use and always kept up to date. It's free to anyone with a genuine copy of Microsoft Windows. McAfee We have teamed up with McAfee to offer our Personal Internet Banking customers access to free security software for 12 months. It automatically blocks, cleans and removes viruses from your PC and it monitors internet activity, looking for suspicious applications and data. It includes McAfee Site Advisor, which warns you about harmful websites. Trusteer Trusteer Rapport adds valuable security when you log on to HSBC Personal Internet Banking. It checks that you are using the real HSBC website and not a fake. It locks down the link between you and the bank so that fraudsters can't listen in. Finally, it blocks all known viruses that target online banking. Rapport doesn't replace your Personal Internet Banking security details or other protection such as anti-virus software. It works with them to add extra security. Browsers You use a web browser to look at websites. It's the doorway to the internet. Examples include Microsoft Internet Explorer, Google Chrome, Apple Safari or the software that is showing you this page now is your current web browser.The latest browsers have security features that block fake websites and protect against some viruses. If you are not with the latest, you may want to get the new browser software immediately and update it regularly for maximum protection.
References
[1] http://www.hsbc.co.uk/1/2/security-centre [2] http://www.hsbc.com/1/2/online-security [3] http://en.wikipedia.org/wiki/Information_security
12