Sunday, October 23, 2016

A baseline set of software and services for a home or professional Windows computer

This is a first installment on a post I've been writing (on and off, with lots of distractions) for the last month or two.  I started walking a friend through a list of security concerns and recommendations for their Windows computer, but soon found the subject complex enough that I needed to write it all down.  Later, as I started to document it all, I realized that others would benefit from it too.  Then it ballooned into a much larger task than I could have imagined, so it's still not ready.

So here is the Coles Notes version.  I'll finish the full write-up as soon as I find the time.

Area
Setting, Software, or Service
Router
WPA2 Personal/PSK, AES


Computer
TPM, ideally
Windows OS
Windows 10 Pro or
Windows 10 Home
Regular updates
Full disk encryption
BitLocker -- ideally using TPM-and-PIN mode
or
Device Encryption


Firewall
Windows Defender
Antivirus
AVG Free
or
Avast Free
Antimalware
VoodooShield Free
Browser privacy - Chrome
HTTPS Everywhere
uBlock Origin
Internet usage monitoring
GlassWire
VPN
TunnelBear


Password manager
LastPass Premium
Authenticator for 2FA
Authy


Container encryption
VeraCrypt -- needed if your computer drive isn't encrypted
Drive free space wiping
CCleaner -- needed if your computer drive isn't encrypted


Cloud sync/storage - zero knowledge
Sync.com
or
Boxcryptor 2.0
Cloud sync/storage - regular
Dropbox, OneDrive, Google Drive, Apple iCloud, etc.,


Cloud backup
CrashPlan
Local backup
CrashPlan
or
SyncBackFree --  ideally to a drive encrypted with BitLocker To Go
Image backup
Windows system image backup


Drive cleanup
CCleaner
Update monitoring
Secunia PSI


Credentials monitoring
haveibeenpwned.com


Mobile security
Device encryption
Regular updates
Mobile local storage
Documents by Readdle

. o O o .

No comments:

Post a Comment