New Password Standards Take Effect on Feb. 1Here’s what you need to know about our new password standards…

Posted by MDC News

Passwords are the first line of defense against unauthorized access of the College’s information systems and other resources. Poorly constructed passwords are easily compromised and can lead to a breach of the College’s security protocol and leak of your confidential information. You can greatly reduce these risks by constructing strong passwords and ensuring proper password management.

On Feb. 1, 2015, the College will activate new password standards.  All passwords created after Feb. 1, must adhere to these new standards.  The new password must:

  1.  Be at least 15 characters long.
  2.  Contain characters from each of the following four classes:
  • English uppercase letters (example: A, B, C, etc.)
  • English lowercase letters (example: a, b, c, etc.)
  • Numbers (example: 0, 1, 2, etc.)
  • Non-alphanumeric special characters (example: !?*, etc.)
  1. Expire automatically every 180 days.

The new password must NOT:

  1. Contain user name, first name, middle name, last name, nickname or birthdate.
  2. Be repeated for at least five cycles.
  3. Be based on a predictable pattern, such as the alphabet or the layout of a standard keyboard.

The College recommends that you follow the steps below to create a strong password:

  1. Use an easy-to-remember phrase that contains at least four words, with “word” defined as two or more distinct letters. (Example:  “April showers bring May flowers”)
  2. Substitute numbers, symbols, acronyms or abbreviations for letters or words.  (Example: “@$h0wersB5Flwrs”)
  3. Test the password strength through a password checker.

More password tips from MDC

  1. Always use strong passwords.
  2. Make sure to use different passwords for each of your accounts.
  3. Be sure no one watches when you enter your password.
  4. Always log off if you leave your device and anyone is around. It only takes a moment for someone to steal or change your password.
  5. Avoid entering passwords on computers you don’t control (like computers at an Internet café). They may have malware that steals your passwords.
  6. Avoid entering passwords when using unsecured Wi-Fi connections (like at the airport or coffee shop). Hackers can intercept your passwords and data over this unsecured connection.
  7. Don’t tell anyone your password. Keep your passwords safe by keeping them to yourself.
  8. It’s okay to write down your passwords, but don’t store your written passwords close to your computer.  You can also write a “tip sheet,” which will give you a clue to remember your password, but doesn’t actually contain your password on it.