Report: NIST to Release New Online Password Security Guide

TheÂ National Institute of Standards and TechnologyÂ could release this summer new guidance that recommends the use of long passwords or passphrasesÂ to eliminate the need for periodic password changes, Nextgov reported Friday.

The guide also calls onÂ government agencies and contractors to allow password length of at least 64 characters; encourageÂ employees to create passphrases based on memorized secrets usingÂ any characters; and refrain from imposing composition rules.

NIST recommends agencies to check whether new passwords contain repetitive or sequential characters as well as context specific words, such as the name of the service, the report noted.

The agencyÂ also suggest checking new passwords against lists of passwords obtained from previous breaches.

NIST currently reviewsÂ public feedbackÂ on the guidelines viaÂ GitHub.

Tags:

cyber
Cybersecurity
featured
Github
govcon
guidelines
National Institute of Standards and Technology
NIST
passphrase
password
password policies

Report: NIST to Release New Online Password Security Guide

High-Growth Friday Saved GovCon Index From Continuing Downward Trend

Space Operations Command Takes Control of SBIRS Baseline Release Initiative

GAO Urges Federal Agencies to Complete IT Security Requirements Implementation

Leave a Reply