Passphrase Requirements

Question

What are the requirements for a GRCC Passphrase?

Why is GRCC switching from passwords to passphrases?

 

Information

Passphrase requirements are designed to enhance the security of our accounts and potential access to sensitive information. A few reasons why its considered a good policy:

  1. Length: A longer passphrase increases the complexity and makes it more resistant to brute-force attacks. A 14-character passphrase provides a good balance between usability and security.
  2. Character Type: The inclusion of both uppercase and lowercase letters increases the number of possible combinations, making the passphrase more robust against various attack methods. In addition, this also allows the user to create a passphrase that can be easily remembered.
  3. Change Frequency: Changing the passphrase annually adds an additional layer of security. Even if the passphrase is compromised, the window of vulnerability is limited to the time between passphrase changes. (MFA re-authentication frequency also adds an additional later of security).

By combining these elements, we create a strong and resilient passphrase that is less susceptible to common attacks. Frequent passphrase changes contribute to reducing the risks associated with prolonged exposure to potential threats and the change frequency is spaced adequately to avoid imposing a burdensome memory requirement.

Answer

GRCC Passphrase Requirements are as follows:

  • Passphrase Length: A minimum of 14 characters.
  • Character Types: Must include uppercase letters, lowercase letters, and numbers.
  • Passphrase Change Frequency: Once a year and whenever potentially compromised.

Passphrase best practices

Best practices that users can incorporate when creating strong passphrases include the following:

  • Use an easy to remember but uncommon group of four to eight words
  • Add spaces within and between words
  • Use capital letters or capitalize certain words
  • Add punctuation and special characters that make sense to the user but no one else
  • Use unusual or abbreviated spellings of words
  • Make some letters into numbers

Example: 

P!nk Dinner Dre$$ D@te

Details

Article ID: 3681
Created
Tue 3/5/24 12:04 PM
Modified
Mon 4/15/24 8:13 AM