Many people express concern about Internet security. Yet despite the worries, according to the recent Bentley Survey on Consumers and Internet Security most Internet users need substantially more information and education about online security threats and best practices.

The Bentley survey demonstrates that a large percentage of the public lacks knowledge about several Internet security issues:

• 90% report that they have installed antivirus software, but 10% never or rarely update their antivirus software;
• 30% are not knowledgeable about computer viruses;
• 40% are not knowledgeable about spyware;
• 49% are not knowledgeable about security flaws in Internet browsers;
• 44% are not knowledgeable about the ability of hackers to hijack home computers and use them to send spam;

The survey reveals that Internet users are fairly evenly split about the appropriate public policy approach to home PC security. For example:

• 32% believe companies in the computer industry should develop voluntary measures to ensure home computers are secure;
• 56% prefer that security software updates be automatically installed by manufacturers or ISPs;
• 35% think the U.S. government should pass laws now that would require the computer industry to implement measures to ensure all home computers are secure.

According to the survey, other serious concerns are on Americans' minds. Examples:

• 48% of Internet users are rarely sure or are unsure that sensitive information is encrypted before transmitting it over the Internet;
• 59% are concerned that hackers might harm American corporations or the government by breaking into their computers;
• 70% are concerned that hackers might use home computers to spread a virus over the Internet that harms other computers;

The survey recommends specific best practices Internet users can follow to protect their computers against Internet threats. Measures include:

1. Using antivirus software and keep virus definitions updated.
2. Installing a firewall to protect against Internet intruders.
3. Regularly downloading security updates for operating systems and other software.
4. Using passwords with a mix of letters, numbers and symbols that are at least 8 characters long and not dictionary words. Internet users also should change their passwords regularly.
5. Making an effort not to view, open or execute any e-mail attachments from an unknown source. Users should be suspicious of unexpected attachments perhaps even from people you know.
6. Disconnecting from the Internet when not in use.

Obviously, following these steps is a good start. Unfortunately too often Internet users learn about security protection only after their security has been compromised.

Eric Sinrod is a partner in the San Francisco office of Duane Morris (www.duanemorris.com), where he focuses on litigation matters of various types, including information technology disputes. His column appears Wednesdays at USATODAY.com. His Web site is www.sinrodlaw.com, and he can be reached at . To receive a weekly e-mail link to Mr. Sinrod's columns, please send an e-mail with the word Subscribe in the Subject line to .

Reprinted here with permission from USAToday.com.