Definition: Desktop security provides protection for an immediate work area yet it is seldom featured in a discussion related to information assurance. Most of the threats against an information system originate from insiders or local vulnerabilities. One threat vector, known as “shoulder surfing” is a threat that is manifested at the workstation. So is the concept of an employee leaving his or her workstation while still being logged in to the computer. Employees should lock keyboards when leaving the immediate work area. Protection for personal workspace is important and identifying acceptable work practices is essential.
Its Relevance: Employees must be educated as to their responsibilities for work place security. Personal work space or workstation security is a very important issue. Information workers may, without any forethought, walk away from their computers while the screen is displaying confidential information. Source documents might be left on the desks. The worst news of all is that "insider threat" to the security of information is among the the highest threats faced by a system. The physical security of information resources is very important.