User Profile

fsudolphin

Newbie Caller

Joined 4 years ago

2 Publicaciones3 Likes

View All Badges

User Widgets

Contribuciones

Re: Forced to reset my password
Why are you surpirsed? Mandatory periodic password resets DECREASE security, per the National Institute of Standards and Technology.
4 years ago Place Accounts & Services
2Visto
0likes
0Comentarios
Re: Forced to reset my password
From the National Institute of Standards & Technology's Password Guidelines, literally guideline #2: 2. Eliminate Periodic Resets Many companies ask their users to reset their passwords every few months, thinking that any unauthorized person who obtained a user's password will soon be locked out. However, frequent password changes can actually make security worse. It's difficult enough to remember one good password a year. And since users often have numerous passwords to remember already, they often resort to changing their passwords in predictable patterns, such as adding a single character to the end of their last password or replacing a letter with a symbol that looks like it (such as $ instead of S). So if an attacker already knows a user's previous password, it won't be difficult to crack the new one. The NIST guidelines state that periodic password-change requirements should be removed for this reason.
4 years ago Place Accounts & Services
3Visto
3likes
0Comentarios

Grupos