7/A. P3: Explain why organization must adhere to legal requirements when considering IT system Security.
7/AB. D1: Evaluate the effectiveness of the technique used to protect organisations from security threats whilst taking account of the principles of information security and legal requirements.
Principles of information security
Information security is an extremely important concept so when protecting information in an organisation there is three core principles to follow to maintain the utilization, flow and storage of data this is also known as the CIA triad these are the three main objectives of information security and they are: …show more content…
Proper password security
Passwords are is a convenient method of authentication the way it works is the system requires someone to enter a piece of information and then match it to the one that the system has if the information is correct the user will be able to access the system but there is some disadvantages of this some people may try to gain your password by looking over your shoulder or a brute force attack which implies that the person trying to require your password will try to maybe use a program that will automatically enter numbers and letters to try match it so some companies will have a method to prevent this for example they give you a certain number of tries to enter the password so this means that the person who entering the password will get a certain amount of tries this will prevent programs from searching for your password there is also the fact that you might have to type in more than one piece of information to gain access so this could be a password plus a security question that only you would