Password safety has been a widely covered topic in the news recently. As an IT professional, one of the tasks you likely face is setting a policy regarding how often users’ passwords must be reset. But did you ever consider that changing passwords frequently might actually be less secure than infrequent changes?
This morning, WIRED published an interesting article referencing recent research that shows less frequent changes may be the way to go, as frequent changes could lead to your users’ passwords being less secure. These findings imply that the most critical aspect of password security may be the strength of the password itself rather than how often a new password is required to be set.
So how often does your IT policy require password updates?