Security - Baseline
Home arrow Security arrow Page 2 - 10 Tips for Better Password Management















Renew Your Subscription

Security



10 Tips for Better Password Management



By Ericka Chickowski
2008-04-21
Article Views: 15856
Article Rating:starstarstarstarstar / 18

  Table of Contents:
  1. 10 Tips for Better Password Management
  2. Four Through Seven
  3. Eight Through Ten

Any security expert will tell you that shoring up user-authentication information is essential to building the foundation of a solid security program. A good way to start is to employ a few of the login and password-management best practices detailed here. 

Rate This Article:
Poor Best
Add This Article To:

10 Tips for Better Password Management - Four Through Seven


( Page 2 of 3 )



4. Prevent reuse of old passwords.

Make sure users aren’t just reusing the same stable of four or five passwords during regular updates. Also, ensure that the passwords really are new passwords and not just an easily derived variation of the same old password. For example, “password2” is not an acceptable update of “password.”



5. Lay the rules out in a password policy.

Let the users know the ground rules regarding passwords. Set a policy that requires a minimum password length with a minimum number of symbols and numbers, establishes update frequency, and bans bad habits like password sharing and handwritten passwords. Finally, be sure to enforce the policy to make it stick.

 

6. Invest in password training.

Make your users aware of why they need to follow the policy and offer tips so they can comply easily. Give them guideline and training on how to develop stronger passwords. Offer advice on coming up with easy-to-remember, strong passwords, such as using the first letter of a favorite catchphrase, while replacing a few letters with numbers.



7. IT staff shouldn’t know user’s passwords.

To some, this may be a no-brainer, but it is oft overlooked and bears repeating. A system should be in place to prevent IT staff from ever knowing user passwords.




 
 
>>> More Security Articles          >>> More By Ericka Chickowski
 



Sponsored Links
  • Get up and running in as quickly as 30 days with BI. Learn how today.

  • FREE Securing Smartphones & Tablets for Dummies Book from Sophos
  • 5 New Technologies That Will Change Enterprise ITAdvertisement
  • Build an IT Infrastructure That Delivers the Future
     
    		•
     
    FEATURED SPONSORED ARTICLES
    FEATURED SPONSORED VIDEOS

     

    Related Content

    Articles Labs/How-To Multimedia


    LATEST STORIES
    - Five Ways to Put Mobile Technology to Work
    - Ten iPhone Apps that Will Save You Money
    - Mobility Transforms the Customer Relationshi...
    - BPM Keeps Pace With Business Changes
    - Speech Recognition Speaks To Businesses


     

     

    Advertisement
    rss graphic
           Baseline Newsletters

    Baseline:  

    Issue Index | Contact Us | About | Magazine Customer Service | Navigation Guide

    Quick Links:  

    Project Planners | Enterprise Resource Planning | Network and Online Security | Data Analysis | Process Management | Storage Devices| Link to Us

    Ziff Davis Enterprise Home | Contact Us | Advertise | Link to Us | Reprints | Magazine Subscriptions | Newsletters
    Tech RSS Feeds | White Papers | Tech Podcasts | Tech Video | VARs | System Builder

    Baseline | Careers | Channel Insider | CIO Insight | DesktopLinux | DeviceForge | DevSource | eSeminars |
    eWEEK | Enterprise Network Security | LinuxDevices | Linux Watch | Microsoft Watch | Mid-market | Networking | PDF Zone |
    Publish | Security IT Hub | Strategic Partner | TechDirect | Technology White Papers | Windows for Devices

    Developer Shed | Dev Shed | ASP Free | Dev Articles | Dev Hardware | SEO Chat | Tutorialized | Scripts |
    Code Walkers | Web Hosters | Dev Mechanic | Dev Archives | igrep

    Use of this site is governed by our Terms of Use and Privacy Policy

    Copyright ©1996-2012 Ziff Davis Enterprise Holdings Inc. All Rights Reserved. eWEEK and Spencer F. Katt are trademarks of Ziff Davis Enterprise Holdings, Inc. Reproduction in whole or in part in any form or medium without express written permission of Ziff Davis Enterprise Inc. is prohibited.