Information Technology

News

NEWS - 12.12.2007

Change your passwords at least every 120 days

In order to comply with security requirements specified by CSUMB’s Information Security Officer (ISO), IT@CSUMB will has begun a process of configuring certain applications with sensitive data to require users to change their account passwords at least every 120 calendar days. Initially, user accounts on CMS, Banner, and CBORD systems will be affected beginning in January 2008.

In addition, selecting a good, strong password – one that is difficult for other people or computers to ascertain – is very important.

For example, a modern dual-processor laptop can ascertain the password “Darren” in less than a minute. Lengthening the password and using both alpha and numeric characters (“Land3rz”), requires about four days to crack. Adding punctuation, such as “B33r&Mug,” extends the process to more than 20 years. Quite a difference.

See http://it.csumb.edu/site/x7305.xml for information about changing your CSUMB passwords. Also, http://www.lockdown.co.uk/?pg=combi&s=articles for examples of good and not so good choices for passwords.