SITUATION: The organization has established a password system for security of its host
processor and each of its local area networks (LAN). The corporate system administrator in
the Management Information System (MIS) department maintains passwords for the host
system. Each LAN has its own LAN administrator who maintains the passwords for users on
that LAN.
Upon examination of the working areas in the organization, it is found that quite often the
passwords of various users are stuck to the CRTs by Post-It NotesĀ®. When personnel are
questioned about this practice, they complain about different passwords for the host and the
LAN and the frequency with which the passwords change (every four weeks for the host,
various other intervals for the LANs). The users also complain that the passwords are too
restrictive (names and dates, which can be conveniently memorized, are not permitted).
ANALYSIS: Given the situation described above, address the following questions in a paper
(700 - 1,050 words) in a APA Style format (make sure to include an introduction and
conclusion as well):
1) What is the risk associated with the described situation?
2) What measures can be taken to reduce or eliminate the risk?
3) Is there an alternative that can be convenient for the employees to change the
passwords but maintain the integrity of ALL networks?
4) What is your recommendation to resolve this situation?