IT Baseline Protection Manual - The Information Warfare Site
19.12.2012 Views
Share Embed Flag

IT Baseline Protection Manual - The Information Warfare Site

IT Baseline Protection Manual - The Information Warfare Site

IT Baseline Protection Manual - The Information Warfare Site

SHOW MORE
SHOW LESS
ePAPER READ
DOWNLOAD ePAPER
iwar.org.uk

You also want an ePaper? Increase the reach of your titles

YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.

START NOW

Safeguard Catalogue - Personnel Remarks<br />

____________________________________________________________________ .........................................<br />

S 3.18 Log-out obligation for users<br />

Initiation responsibility: Head of <strong>IT</strong> Section, <strong>IT</strong> Security Management<br />

Implementation responsibility: Head of <strong>IT</strong> Section, <strong>IT</strong> Security Management<br />

Where an <strong>IT</strong> system is used by several users and these persons have different<br />

access rights to the data or programs stored in the <strong>IT</strong> system, an access control<br />

system will only provide the necessary protection if every user logs off after<br />

finishing his/her task on the <strong>IT</strong> system. If it is possible for a third party to<br />

work on an <strong>IT</strong> system under the identity of another person, no form of access<br />

control is possible. <strong>The</strong>refore all users must be obliged to log off after<br />

finishing their tasks. For technical reasons (e.g. in order that all opened files<br />

are closed), procedures should also be defined for logging off from <strong>IT</strong> systems<br />

when no access control system is in operation.<br />

Where absence from the PC is likely to be of only short duration, instead of<br />

logging off it is acceptable to manually activate the screen lock (see also S 4.2<br />

Screen lock). When the user is away from his/her desk for an extended period,<br />

the screen lock should automatically be activated.<br />

Some <strong>IT</strong> systems allow a period to be specified, such that users are<br />

automatically logged off from the system when they have been inactive for a<br />

certain length of time. On the other hand, such a system can also lead to loss<br />

of data, so it should be thought about carefully. An automatic logoff system<br />

could be used, for example, in PC pools which are heavily accessed by the<br />

public since here a user who is logged on could block the workstation with the<br />

aid of the screen lock without good reason.<br />

Depending on the workstation environment, consideration should be given to<br />

what precautions should be taken for short-term absences of users. Thus the<br />

screen lock should be automatically activated more quickly, e.g. after only<br />

five minutes, in multi-user systems than in systsems used by only one user.<br />

Additional controls:<br />

- Are new staff and deputies also placed under the obligation to log off once<br />

they have finished with the computer?<br />

- Are staff reminded at regular intervals of the obligation to log off?<br />

____________________________________________________________________ .........................................<br />

<strong>IT</strong>-<strong>Baseline</strong> <strong>Protection</strong> <strong>Manual</strong>: Oktober 2000<br />

Screen lock<br />

Automatic logoff

logo

products

Resources

Company

Terms of service
Privacy policy
Cookie policy
Cookie settings
Imprint
Change language
Made with love in Switzerland
© 2024 Yumpu.com all rights reserved

Hooray! Your file is uploaded and ready to be published.

Saved successfully!

Ooh no, something went wrong!