How to ensure a digital safe and secure environment: Rovin Cutinho, Chief Product Officer, Canvs
Today we are practically always online. Security has hence become hygiene for us. We deserve to have the security of experts without having to be experts ourselves. Although the onus towards building secure environments lies on companies that build user-centric products, there are quite a few things users can do at their end which pay off high returns in the longer run. Much like most good habits, the lack of these practices has a much more pronounced downside than the observable upside of exercising these. At best you shall use the products as they are without losing anything that belongs to you, at worst you lost everything including your identity.
Here are 5 pointers for users to build sustainably secure environments:
i. Frugality in permissions: Applications often have the tendency to ask for permissions beyond what they require. Users should be careful around such permissions by disallowing all unnecessary ones. In fact, in 2020, applications asking for permissions that don't make sense aren't exactly trusted or much used for that matter.
ii. Update Products: For products like browsers messaging apps that users use every day and depend a lot on, users should be in the habit of updating them regularly to their latest versions. Teams behind such products are typically working on security patches for vulnerabilities they discover around the clock.
iii. Smaller digital footprint: Your digital footprint is essentially the amount of identifiable data we leave behind on the various products we use online. Reducing that, means releasing lesser information to strangers. Everyday we share locations, signup to services, give credit card info etc to new services. These actions happen so many times through the week that the sheer probability of one of them backfiring for us is considerable. Like most habits, exercising control on this is something we should act on atomically. It's easier to think twice every time you share some data with a new service, than to dig out everything you've shared over a period of time to a multitude of products.
iv. Using Social Signups: When given an option of signing up to a service that is new to you check for social signups via established products like Google, Fb, Twitter etc. This allows limiting security vulnerabilities to a single point of failure which is heavily backed by teams supporting millions of customers online on products which have abundant resources backing their own security. It's easier to trust a Gmail than to trust an established chain of hotels whose prime concern isn't tech or security.
v. Multi-Factor Authentication(MFA): In an environment where password thefts are getting increasingly sophisticated, having multiple touchpoints to create layered authentication is vital. We should use MFA by leading brands like Google to secure our passwords wherever supported.
General guidelines like these take users a long way towards staying protected online. However, it's always wise to think before you click; it's hard to undo mistakes in the digital realm.
