285 KB | 3 files | DOC, PDF
Despite technical advances, the simple password remains a key factor in protecting most organizations' vital data and network. These guidelines will help you set policies for strong passwords and manage risk from careless users.
Passwords are used in many ways to protect data, systems, and networks. For example, passwords are used to authenticate users of operating systems and applications such as e-mail, labor recording, and remote access. Passwords are also used to protect files and other stored information, such as password-protecting a single compressed file, a cryptographic key, or an encrypted hard drive. In addition, passwords are often used in less visible ways; for example, a biometric device may generate a password based on a fingerprint scan, and that password is then used for authentication.
This publication provides recommendations for password management, which is the process of defining, implementing, and maintaining password policies throughout an enterprise. Effective password management reduces the risk of compromise of password-based authentication systems.
The attached Zip file includes:
The excerpt from chapter 5 focuses on leveraging stakeholders to prepare your organization for change. This is an essential practice that ensures a successful product delivery. ... More >>
This report lays the foundation for a rational approach to software metrology, with the scope of the current effort being software as the object of measurement. ... More >>
This document makes recommendations for how users and developers should select checklists from the NIST National Checklist Repository, evaluate and test checklists, and apply them to IT products. ... More >>