You are here: silicon.com > Resources > White Papers > Security > Security Administration > Security Standards

Security Standards White Papers

Password Policy for Directories

Tags:
security standards

Overview Authentication by use of a username & password is widely used, and efficiently managed organizations will normally apply a number of controls on passwords. These controls, collectively referred to as "Password policy" might include: passwords must be at least six characters long, passwords must be changed at least once every six months, users must change passwords after an administrator reset. In situations where applications share common username/password it is often desirable to manage them in a single location. This is convenient for the user and generally gives better security by keeping the authentication in one place.

Further White Paper Details
Publisher	Isode	File Format	HTML
Date Published	January 2007
Format	White Papers
Topics	Security Standards, Security Management, Directory Services

Did you find this white paper useful? 2 out of 5 users found this white paper useful

NAC 2.0: A new model for a more secure future

Publisher:
Sophos

Reducing Total Cost of Security Ownership

Publisher:
SonicWALL

Take a holistic approach to business-driven security

Publisher:
IBM

Symantec Control Compliance Suite (CCS) 9.0 Sneak Peek

Publisher:
Symantec

Extending PCI Compliance to the Mobile Workforce

Publisher:
Fiberlink Communications

Microsoft finally issues IE spoofing bug patch

The newly announced patch will disable a feature that lets people code a username and password directly into a link so that someone clicking the link can easily access the restricted page to which it points.

Channel:
Security Strategy

Hackers turn to dictionary to invade Cisco WLANs

Last week, the company notified customers that a preset username and password coded into its Wireless LAN Solution Engine (WLSE) and Hosting Solution Engine (HSE) could give attackers complete control of the wireless LAN management devices.

Channel:
LANs

Phishing is fastest growing form of consumer theft

The analyst believes that so-called keystroke logging, or the practice of using spyware to record all the characters a computer user types into his machine, is also growing rapidly. Crimes such as phishing, whereby criminals use misleading email...

Channel:
Malware

Password Hell (Part 1): The IT chief's nightmare

John Odell, group IT director at BBA Group, said a lot of time and money is still being wasted by businesses responding to end user problems, such as having to reset passwords. Many companies have automated the process of ensuring passwords are set...

Password Hell (Part 2): Companies must get it right... now

Although many companies are now adopting alternatives, CA's Perry said he doesn't expect to see major changes in the use of username and password until at least five years down the line, saying it will be hardware replacement cycles that will...

ID tech tightens up compliance

But, as reliance on technology continues to grow, the number of passwords that users have assigned to them has mushroomed, leading not only to insecure password management practices but also causing many headaches for helpdesks that must reset...

Virtualisation: Architectual Considerations and other Evaluation Criteria

In the past several years, server virtualisation technology has moved quickly and firmly into the IT mainstream. Of the many approaches to system virtualisation available in the market today, VMware's hypervisor architecture has gained the greatest market acceptance. This paper examines the architectural issues, solution support, and enterprise readiness required when deploying such a virtualisation solution.

Publisher:
EMC

Getting Started with Master Data Management

Master data management forms part of an overall enterprise governance program that aims to establish trusted data throughout the enterprise. This white paper from Mike Ferguson of Intelligent Business Strategies defines master data, examines why it is needed, and explores methodologies for implementing master data management.

Publisher:
DataFlux

Optimising Storage with Global File Virtualisation

This white paper will provide an overview on how Rainfinity Global File Virtualisation virtualises unstructured data environments and moves data -including active, open files-without disruption to users or applications. Rainfinity is the only enterprise-class file virtualisation solution, and delivers complete NAS optimisation across geterogeneous environments, such as NAS, CAS, and file servers.

Publisher:
EMC

Also on silicon.com

Site Navigation:

Security Standards White Papers

Password Policy for Directories

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific