Photo AI
A hospital stores patients' details on its computer network - OCR - GCSE Computer Science - Question 8 - 2019 - Paper 1
Question 8
A hospital stores patients' details on its computer network. The hospital is concerned about the security of its patients' details. (a) Staff already use strong pas... show full transcript
Worked Solution & Example Answer:A hospital stores patients' details on its computer network - OCR - GCSE Computer Science - Question 8 - 2019 - Paper 1
Step 1
Explain, with reference to system security, three other ways that the hospital could protect the network system.
Answer
-
Implementation of Firewalls: The hospital can set up firewalls to act as barriers between the hospital's internal network and any external untrusted networks. This helps to monitor and filter incoming and outgoing traffic, preventing unauthorized access to sensitive patient data.
-
Regular Security Audits: Conducting frequent security audits can help identify vulnerabilities in the system. By evaluating the network for potential weaknesses, the hospital can proactively address issues before they become security threats.
-
Employee Training and Awareness: Providing regular training for staff on the importance of cybersecurity can significantly enhance system protection. By educating employees about phishing attacks, social engineering tactics, and safe internet practices, the hospital reduces the likelihood of human errors that could compromise the network.
Step 2
Identify three errors that the hospital staff could make that may endanger the security of the network. Outline a procedure that could be put in place to prevent each error.
Answer
Error 1: Using Weak Passwords
Procedure 1: Implement a mandatory password policy that requires strong passwords containing a mix of letters, numbers, and symbols. Additionally, enforce password changes every few months.
Error 2: Neglecting Software Updates
Procedure 2: Schedule regular updates for all software and operating systems to ensure the latest security patches are always applied, thus minimizing vulnerabilities.
Error 3: Sharing Login Credentials
Procedure 3: Establish strict rules regarding password sharing and create a protocol for shared access. Use multi-factor authentication to ensure secure logins for different staff members.