NIST’s new password rules – what you need to know

contributor : May 29, 2017

Category One

One of the biggest changes proposed by the new NIST Digital Identity Guidelines is getting rid of mandatory password changes.  This would mean no longer changing your password every 90 days, which I agree with and most users will welcome with open arms.

This, along with a few other interesting twists make this well worth a read.

If you don't want to read the whole document, Chester Wisniewski over at Sophos did a great job of summarizing the key points here:
https://nakedsecurity.sophos.com/2016/08/18/nists-new-password-rules-what-you-need-to-know/
New Company, New Logo

New Company, New Logo

Chris Bedel : Apr 2, 2015

I'm excited to announce the launch of Bedel Technology. Pretty much the same offerings that have been previously posted here at chrisbedel.com, but a...

Category One
Read More
New FFIEC IT Management Booklet: What your Board Needs to Know

New FFIEC IT Management Booklet: What your Board Needs to Know

Chris Bedel : Dec 9, 2015

Gone are the days where the Board of Directors at a financial institution could assign the responsibility of Information Security (now called...

Category One
Read More

What you need to know about Petya / Not Petya Malware

Chris Bedel : Jun 28, 2017

You've probably heard about the the latest outbreak of the 'Petya' ransomware. Like WannaCry, this is a worm-enabled ransomware, so it can spread...

Category One
Read More