II. LITERATURE REVIEW Information security has become a major issue for IT-related organizations especially for those who rely on internet as a delivery medium. This fact is well realized by the industry e.g. the banks but it is not well realized by the academic institutions. Academic institutes rely on digital information to carry out various academic as well administrative functions. They face unique information security threats and incidents like data theft, malicious software infections, hacking computers, infiltration by other entities via their networks, website defacement, unauthorized usage of internet bandwidth etc. Information security is not just enabling usernames or passwords [3]. With the increasing number of viruses, worms, Trojans, hackers, phishers and social engineers day by day, it is almost impossible to remain secure on the internet.