Understanding Online Security — Open Awards Essential Digital Skills Digital Skills & IT Revision
This subtopic equips learners with essential knowledge and practical skills to protect themselves and their data in digital environments. It covers identif
Topic Synopsis
This subtopic equips learners with essential knowledge and practical skills to protect themselves and their data in digital environments. It covers identifying risks such as malware and phishing, implementing secure practices like strong password usage and regular backups, and understanding the importance of safe internet browsing to maintain confidentiality and integrity of information.
Key Concepts & Core Principles
- File Management: Understanding how to create, save, open, and organise files and folders on a computer, including using appropriate file names and locations.
- Online Safety: Knowing how to protect personal information, recognise phishing attempts, and use strong passwords to stay safe on the internet.
- Basic Word Processing: Using a word processor to create, edit, and format simple documents, such as changing font size, style, and alignment.
- Email Communication: Sending, receiving, and replying to emails, including attaching files and using the subject line appropriately.
- Internet Navigation: Using a web browser to find information, navigate websites, and understand the difference between a search engine and a website address.
Exam Tips & Revision Strategies
- When answering scenario-based questions, always link the chosen safety measure directly to the risk it mitigates, e.g., 'I use a PIN so if my phone is stolen, they can't access my bank details'.
- For practical backup assessments, narrate the steps as you perform them: identify the original file, select the destination, confirm the copy is successful, and state what threat this prevents (e.g., accidental deletion, ransomware).
- In PIN/password discussions, use real-world analogies to demonstrate depth: 'A PIN is like a front door key – you wouldn’t lend it to a stranger because they could enter your house without your knowledge.'
- Always refer to real-world consequences when explaining safety measures, such as identity theft or loss of coursework.
- Before the assessment, practise creating and testing passwords that meet security rules, and perform several backup tasks to build habit.
- Use key vocabulary like 'confidential', 'secure', and 'phishing' correctly in your explanations to show understanding.
- During practical tasks, talk through your actions (e.g., 'I am now saving a copy to my USB as a backup') to provide clear evidence.
Common Misconceptions & Mistakes to Avoid
- Believing that a simple password like '1234' or a pet's name is sufficient, underestimating the risk of guessing or cracking.
- Assuming that backing up work means simply saving it again on the same device, rather than copying to an external or cloud location that remains safe if the device fails.
- Thinking that anti-virus software alone fully protects against all online threats, neglecting the need for cautious behaviour such as not opening unknown email attachments.
- Confusing a secure website (https) with a legitimate one; learners may trust any site with a padlock icon without verifying the actual domain or sender identity.
- Thinking it is safe to write passwords down on a note kept near the computer, rather than using a secure password manager or memory techniques.
- Believing that backing up work is only necessary for final versions of documents, not for work in progress.
Examiner Marking Points
- Award credit for demonstrating the ability to identify at least three distinct online risks (e.g., computer viruses, phishing emails, unsecured Wi-Fi) and explain their potential impact on personal data.
- Award credit for successfully performing a backup of a specified file to a given location (e.g., USB drive, cloud storage) and verbally confirming why this action protects against data loss.
- Award credit for explaining the characteristics of a strong PIN or password (e.g., minimum length, mix of characters, not easily guessable) and providing at least two reasons for keeping it confidential.
- Award credit for outlining at least two safe internet practices (e.g., checking for HTTPS, avoiding suspicious downloads, logging out of shared devices) and linking them to the prevention of unauthorized access or data theft.
- Accurately identify appropriate safety measures when using ICT equipment, such as keeping food and drink away and reporting faults immediately.
- Demonstrate the ability to save and back up work using removable storage or cloud services, ensuring files can be retrieved if the original is lost.
- Explain why PINs and passwords must be kept secret and describe methods to create strong, memorable passwords (e.g., using a combination of letters, numbers, and symbols).
- List safe internet practices, including not sharing personal details, recognising suspicious emails, and only using secure websites (those with https).