Authentication & Password Security Responsibilities

Welcome! 

To help protect our systems and client information, all users must follow these basic password and access rules. All users are required to follow secure authentication practices to protect company systems, client data, and sensitive information.


🔑 Your Password Responsibilities

Users must:

Use a password or passphrase with at least 14 characters

Use strong combinations (letters, numbers, symbols)

Never reuse previous passwords

Change passwords every 90 days or immediately if compromise is suspected

Report immediately to IT if credentials may be compromised

 

🚫 Account Security

Do not share your login credentials with anyone

Your account is for your use only

After 5 failed login attempts, your account may be locked

 

Session Security

If your system is idle for 15 minutes, you will need to log in again

 

🌐 Remote Access Security

Multi-factor authentication (MFA) is required where applicable

Always use secure login methods when accessing systems remotely


🔐 Creating Strong Passwords & Passphrases

A strong password is your first line of defense against unauthorized access.

Recommended Approach: Use a Passphrase

Instead of short complex passwords, use a long passphrase made of random words.

Examples:

Weak: P@ssw0rd123

Weak: Company2024

Strong: River!Coffee!Sunset!Laptop

Strong: GreenTiger#Walks@Midnight42

Best Practices

Use at least 14–16 characters (longer is better)

Use a mix of:

Uppercase and lowercase letters

Numbers

Symbols

Avoid:

Names, birthdays, or common words

Company name or predictable patterns

Reusing old passwords

👉 Tip: Think of a random sentence or phrase that is easy for you to remember but hard for others to guess. 

Why This Matters (How Fast Passwords Can Be Cracked)

Attackers use automated tools that can try millions or billions of guesses per second.

Estimated Crack Times:

  • ❌ Weak password (8 characters, common words)
    → Can be cracked in seconds
  • ❌ Moderate password (10 characters, simple mix)
    → Can be cracked in minutes to hours
  • ⚠️ Stronger password (12 characters, mixed)
    → Can take days to months
  • ✅ Strong passphrase (14+ characters, random words + symbols)
    → Can take years to centuries

👉 The longer and more unpredictable your password is, the harder it is to break


👉 Acknowledge Policy Here
             “Please confirm you have read this policy by clicking below:”
Subscribe to: Posts (Atom)
  • (no title)
    Welcome to the  IT Department Team Porta l This platform has been established to provide all employees with  centralized access  to IT polic...