New IT Password Policy

A new password policy has been developed to help keep information safe here at GRCC. This policy will make it more difficult for passwords to be guessed or cracked and will provide greater information protection. The policy will require a stronger password consisting of at least 10 characters including one upper case letter, one lower case letter and a number. Beginning January 1, 2012 the IT department will provide a self-serve password change website that will adhere to these new requirements.

More details on this policy can be viewed at http://grcc.edu/itpolicy

2 thoughts on “New IT Password Policy

  1. I would like to know why this is needed. I can’t believe anyone would want to get into someone else’s mailbox. Really??

  2. Unfortunately the tools to crack passwords are becoming ever more sophisticated which means we all need to increase the complexity of our passwords in response.

    Our passwords are used across a variety of our online systems (not just email) so that makes password security important – particularly in the case of, say, the RaiderCard transaction system which links to the bank account information of a lot of users.

    That said, even access to someone’s mailbox is extremely valuable; the “grcc.edu” is a valuable domain because it’s highly-trusted by a lot of email spam filtering software and by users (any of us would be more inclined to open an email or attachment from a co-worker for example – and that could have malicious software embedded in it).

    Someone who was inclined could use any of our email accounts to launch attacks or scam people out of personal information (like banking information). This includes not just criminals looking to make money, but even foreign governments and terrorist organizations.

    Not only that, but many GRCC employees communicate sensitive data with their email accounts that, if compromised, could result in a HIPAA or FERPA violation.

    25 Worst Passwords of 2011 [STUDY]
    Mashable | November 17, 2011 by Zoe Fox
    http://mashable.com/2011/11/17/worst-internet-passwords/

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s