Most Important things to increase your facebook security.
Many Facebook users lack knowledge and experience about how to
protect themselves in the social networking environment, which has made
the situation worse. Facebook appeals to new Internet users who often
lack the computer savvy to identify online threats, and the most
vulnerable segment of the audience — kids — have little life experience
required to make reasonable decisions.
Because of this, I believe Facebook needs to enhance the security and privacy features of its site so the problems don’t escalate out of control. With the help of my colleagues, here are some key recommendations I believe will make Facebook a safer place:
This way, all users can make sure no one is snooping into their conversations, even if they’re browsing Facebook through an untrusted Internet connection. Additionally, it will render attack tools such as Firesheep completely useless.
I admire the fact that Facebook has enabled optional HTTPS browsing in its recent security features roll-out. However, I don’t think the option is clearly marked enough for most users to find and utilize it. Therefore, I feel that this feature should be made mandatory for everyone.
This is what most banking, financial institutions use when you visit their pages. Now Facebook allows you to do the same.
You must check to see that is avilable for your account, then turn it on.
Go to security settings> Login approvals> set up now> give your mobile number and click continue.
Facebook will send you a code. put the code where necessary.
Malicious Facebook apps are being analyzed and reported by researchers on a daily basis. Facebook needs to perform a thorough security check and approve all incoming applications to make sure no malicious app makes its way onto a user’s profile.
At the very least, allow users to add a list of trusted/approved applications to his or her profile. If the person wants to use an application that is not trusted, they should be able to run it in some sort of “profile sandbox,” so that any malicious activity would not affect their friends and family.
Currently, Facebook’s recommended privacy settings easily allow for an attacker to become the friend of a friend of a target, and consequently to access data needed to reset a password for an email account, or to misuse other personal information. Why does Facebook allow “everyone” to access status, photos, posts, bio, favorite quotes and family and relationships by default?
In the security market we follow a simple rule that works: “Disable everything, then enable the things you really need.” If Facebooks wants to take steps to actually make its site safer, the default setting should make personal information visible only to friends. Allow the users to decide later whether they want to change their data exposure.
Because of this, I believe Facebook needs to enhance the security and privacy features of its site so the problems don’t escalate out of control. With the help of my colleagues, here are some key recommendations I believe will make Facebook a safer place:
1.Ensure secure browsing
This way, all users can make sure no one is snooping into their conversations, even if they’re browsing Facebook through an untrusted Internet connection. Additionally, it will render attack tools such as Firesheep completely useless.
I admire the fact that Facebook has enabled optional HTTPS browsing in its recent security features roll-out. However, I don’t think the option is clearly marked enough for most users to find and utilize it. Therefore, I feel that this feature should be made mandatory for everyone.
What is Secure Browsing?
Facebok has introduced Secure Browsing. This allows you to use the more secure https protocol for visiting Facebook Pages.This is what most banking, financial institutions use when you visit their pages. Now Facebook allows you to do the same.
How do I turn on Secure Browing (https)?
Secure browsing is not turned on by default when made available to your account.You must check to see that is avilable for your account, then turn it on.
Check to see that Secure Browsing (https) is available
- Visit your Account Settings (on top right of page, Down Arrow -> Account Settings)
- Choose the 'Security' tab in the left hand menu.
- For 'Secure Browsing' click Edit.
Account Security, Secure Browsing (https)
Turn on Secure Browsing (https)
- For "Browse Facebook on a secure connection (https) when possible" select the box to make it ticked.
- Click 'Save Changes'.
2. Mobile security code
Go to security settings> Login approvals> set up now> give your mobile number and click continue.
Facebook will send you a code. put the code where necessary.
3. Make Clear Which Facebook Apps Are Trusted
Malicious Facebook apps are being analyzed and reported by researchers on a daily basis. Facebook needs to perform a thorough security check and approve all incoming applications to make sure no malicious app makes its way onto a user’s profile.
At the very least, allow users to add a list of trusted/approved applications to his or her profile. If the person wants to use an application that is not trusted, they should be able to run it in some sort of “profile sandbox,” so that any malicious activity would not affect their friends and family.
4. Tighten the “Recommended” Privacy Controls
Currently, Facebook’s recommended privacy settings easily allow for an attacker to become the friend of a friend of a target, and consequently to access data needed to reset a password for an email account, or to misuse other personal information. Why does Facebook allow “everyone” to access status, photos, posts, bio, favorite quotes and family and relationships by default?
In the security market we follow a simple rule that works: “Disable everything, then enable the things you really need.” If Facebooks wants to take steps to actually make its site safer, the default setting should make personal information visible only to friends. Allow the users to decide later whether they want to change their data exposure.
0 comments:
Post a Comment