Password Change
 Password Change Policy |
|---|
- Password for administrative, highly privileged accounts must be changed annually.
- All user-level passwords (mail, web, desktop) must be changed annually
- Access to University systems will be closed when a password is not changed as scheduled
- Passwords must not be inserted into email messages.
Benefits of Password Change |
|---|
- Multiple Accounts Breach Limitation
- Reusing the same AUC password in several accounts like e-bank account, social media, Facebook and others, increases the risk if the password is hacked.
- It is always advisable to change your password to something unique for each of your accounts.
- Constant Access Prevention
- A hacker may try to access your account more than once over a period of time.
- Changing your password reduces the risk that they will have frequent access.
- Saved Used Password Prevention
- If you lose or change computers, it is possible that someone may gain access to your saved passwords.
- Consistently changing your password means that even if someone finds an old, saved password, it will no longer be useful.
- Credentials Stealing Prevention
- To avoid falling victim to credentials stealing, it is always advisable to change your password regularly.
|
|---|
- Password Complexity
- Use 10 characters that contain both upper and lower characters, one number and one special character
- Don’t Use Weak Password
- Passwords that contain personal information such as birth dates, addresses, phone numbers or names of family members, pets, friends and fantasy characters
- Passwords that contain work-related information such as building names, system commands, software, or hardware
- Passwords that contain patterns such as aaabbb, qwerty, 123321
- Passwords that contain some version of “Welcome123”, “Password 123”, “AUC 123”
