Password Requirements
SUMMARY
Passwords are an important part of business and information security. Passwords prevent unauthorized access to systems and confidential information. These new password requirements aim to improve security by ensuring strong passwords are used throughout the organization's information systems. All employees are responsible for selecting strong passwords and keeping them secure.
PASSWORD REQUIREMENTS
PBS’ new password requirements call for increased password length, minimum password age, and enforced password history. To create strong passwords, network account passwords must follow these guidelines:
-
Password Length: The minimum password length will be fifteen characters.
Example: A sentence or phrase that is easy to remember but hard for attackers to guess.
Tip: "MyDogEatsCarrotsDaily!" is strong and memorable.
- Password Complexity: PBS Passwords no longer require you to mix arbitrary symbols, numbers, and uppercase letters unless you would like to. Focus on length and memorability, not strange character substitutions.
- Password History: Password history ensures that the same password is not used continuously. Every password associated with a user’s account must be unique and cannot be reused for an amount of time determined by this setting in conjunction with the minimum password age.
- Allowed Characters: Spaces, symbols, numbers, and case sensitivity are all supported. You can use natural language sentences, which are easier to remember.
- No Forced Password Rotation: You will not be required to change your password in a rotation anymore. Passwords only need to be changed if compromised or forgotten.
- Password Minimum Age: PBS network account passwords have a minimum password age of 30 minutes. This setting works in conjunction with password history to prevent password recycling.
PASSWORD BEST PRACTICES
To protect the integrity of the PBS systems and information, everyone must follow these guidelines to create and protect passwords.
- Use a pass phrase that is easy for you to remember, but hard for someone to guess. Examples: "somethingaboutHarryIsFun" or "Gracias means thank you"
- Avoid obvious patterns such as qwerty, abcdef, ggghhh, 123321.
- Avoid stand-alone words, in any language, including slang or jargon, followed by a digit and\or symbol. Example: Password1$.
- Avoid using your name, or the names of family members or pets, SSN, phone numbers, etc. Protect your password. For passwords to provide the required level of security, they need to be protected.
- Your PBS password must be treated as confidential information.
- Avoid writing down your password, or storing your password on any system without encryption.
- Avoid sharing your password with anyone, including other PBS employees.
- Do not use the same password for work and personal accounts, or across all company applications.