Passwords

 

Password Security

Passwords are simply secret words or phrases. So that they are not found out, it is important to have strong passwords for all accounts that allow you to set a password. To create and maintain strong passwords:

• Use at least 12 characters including a number, an upper-case letter, and a special character.
• Create a different password for each device and account, so that if one is compromised, the others remain secure. 
• Never reuse work credentials on other accounts.
• Change your passwords every 90 days.
  
• Do not write down or share your passwords.
• Do not create a weak password that can be guessed, either by a person or a program designed to try many possibilities in rapid succession.
• Do not use any Personal Identifiable Information (PII) in your password including: your name; user name; family members; birthdays; nor address.
• Do not store passwords on a workstation, server, or backup media in plaintext or encoded in a way that can be readily converted back to plaintext.
• Do not share passwords over a network either in plaintext or encoded in a way that can be readily converted back to plaintext.
  

Here are some ideas for creating your passwords:

Think of a phrase, quote, or song verse and select the first character of each word to create a password:

"All good things must come to an end" translates to "Agtmctae"

Letters can be replaced with numbers or symbols. Do not replace numbers or symbols with obvious replacements like "a" with "@" or "s" with "$". Create your own unique replacements like replacing "d" with "$": 

"Agtmctae" translates to "A9tmct^@"

Cyber-attacks are on the increase, so be careful never to give out your password or any personal details to anyone who calls, texts, emails, or contacts you out of the blue. And certainly, don't send security information.