CyberScrub Network Products
Establishing a Quality
Is My Password Secure?
Tips for Designing Password
How to Create a Strong
How to Keep Your
External Password Links
Simple Password Practices
Keep PC and Online
US Department of
Password Security: A
Guide for Students,
Faculty, and Staff of
the University of
Developing a Sensible
for Computing Services
"Best Practices" for
securing individual user
A collection of information
and resources specifically
focused on computer security,
data destruction, document
life-cycle solutions, compliance
and password management
Auto Form Filler
Establishing a Quality Password Policy
You will be able to enhance security by establishing a good password policy.
This will enable your company to participate in a process that will limit your
exposure to attack.
We will now examine components that are usually included in any such policy:
We recommend a minimum length for passwords of at least 10 characters
Use both upper and lower case letters to take advantage of case sensitivity
Be sure to include numerical characters
Be sure to include special characters
Prohibit any common words (any word found in a list or dictionary)
Prohibit calendar dates (such as birthdays) or license plate numbers
Password Life Cycle
Require users to change passwords at a pre-determined time, such as monthly or sooner
as the case may be. Prohibit new passwords from being variations of current or legacy passwords.
Never share a computer account
Ensure each account has a unique password
Never reveal a password, period. Hackers may pose as security or service representatives.
Never forward a password via email, chat or instant messaging programs
Always log off a computer when it will be unattended
If there is any chance a password has or may be compromised change the password immediately.
Many companies institute progressive sanctions ranging from loss of computer privileges to actual
termination of employment. There are even instances where criminal charges could result from the
disclosure of passwords. It may prove effective to communicate the implications of a security
lapse to ensure compliance.
Remember- you can use
CyberScrub KeyChain Password Manager
to manage your passwords. KeyChain Password Manager will remember your log in details for each
website and automatically fill in the user name and password log in fields.