Archive - November 2000
Guidelines for Username and Password Risk Management
Eric Vanderburg
Usernames and passwords still represent a great information security risk to organizations. This basic but crucial element can nullify the effectiveness of some of the best systems. That is why it is important to keep usernames and passwords secure if you hope to have assurance in your information system. To helpĀ manage information security risks, this article outlines several common bad password practices and the risks they present along with steps to take to reduce this risk and protect company information. Some of the most prevalent mistakes users make regarding passwords include:
- Sharing passwords
- Using the same password for multiple accounts
- Creating insecure passwords
- Retaining passwords long-term
