Development of an internet intrusion prevention tool

Abstract

This thesis explores the current shortcomings in computer and Internet security, and how the lack of user education in basic security concepts is detrimental to computer and network security. The use of cryptography and potentially expensive technical means to secure systems will fail when one neglects security education of users. The thesis addresses a portion of the security education problem by designing and developing a tool to educate users on the two major successful methods for penetrating a computer system, weak passwords and social engineering. The tool can teach users how to pick good passwords and the steps to take to prevent social engineering attacks. The tool consists of a tutorial and ends with an exam to test user comprehension concerning picking good passwords and preventing social engineering attacks