I am often times shocked at how many times I come across people that are oblivious of basic etiquette. Whether driving, waiting in line, or talking on the phone, people miss the absolute basic etiquette of certain everyday activities.Myself included, I am sure. After writing the last article on Password Management, it dawned on me that there are possibly those unaware of Password Best Practices, and with hacktivists on the rise guessing and stealing passwords, a knowledge of Password Best Practices along with deployment of a stronger identity security is imperative! Password Best Practices may seem like a no brainer, but you would be surprised at the amount of people still using “Password1” as their password.
So . . . let the Do’s and Don’ts begin.
- Never use the same password for multiple systems.
- Never tell a password to anyone, including those claiming to be from security or customer service within your organization.
- Never write down a password.
- Never provide a password over the phone, e-mail, or instant message.
- Make sure to log off or lock your workstation before leaving a computer unattended.
- Change your password whenever you suspect it may have been compromised.
- Passwords should be alphanumeric at minimum.
Many organizations, like PennState are educating those that have passwords. Although Password Best Practices (PBP) is a great place to start when it comes to enforcing Password Management, PBP should not be the only thing that you implement for identity security. Strong identity security happens when a second factor, something you have, is deployed and enforced within your environment. PBP is an etiquette tool that every organization should educate their employees on but should not only rely on to protect private information.
PortalGuard’s identity solution has provided many with stronger identity security and has educated organizations on PBP.