Strong Passwords at Framingham State University

Strong passwords are an essential part of the current security environment at Framingham State University (FSU).  This is the first line of defense to keep account and access secure.  Therefore, it’s extremely important that each member of the FSU community creates and uses strong passwords that are resistant to being guessed or discovered.  FSU currently has the following minimum requirements for the creation of a “strong” password:”

Password Composition:

  1. A minimum of twelve (12) characters
  2. English uppercase characters (A through Z)
  3. English lowercase characters (a through z)
  4. Numerals (0 through 9)
  5. Special Characters (!, #, $, &)

Password Rules:

Passwords must NEVER include the following

  1. Three (3) consecutive characters from the first name, middle name, last name or username.
  2. Blank spaces.
  3. Special character sequences such as //.
  4. Personal or financial information such as Social Security or credit card numbers.

The following password management protocols also apply:

  1. You may change your password as many times as you like provided that:
    1. Password is different than the previous ten (10) passwords used
    2. Not used more than once in a 12-month period.
  2. Passwords must be changed immediately if an account is suspected of being compromised.
  3. Passwords should never be left in a location accessible to others.  It shouldn’t be placed in your work area in a “concealed” place such as under your keyboard or behind your monitor (you’re not fooling anyone!).
  4. Passwords used for FSU accounts should not also be used for personal accounts.
  5. Never share your passwords with anyone.  No one has a legitimate reason to ask for your FSU account passwords, and FSU officials and offices will never ask for them.
  6. If you suspect your account may be compromised or have questions, change your password and contact the Technology Resource Center service desk by creating a request through https://myit.framingham.edu, through E-Mail at IT@framingham.edu or by calling 508-215-5906.

Coming up with ideas or concepts for strong passwords can be challenging.  Below are a few tips and tricks that can be used to help create a strong password:

  1. Use “passphrases” instead of passwords.  Passphrases such as “ILikeIceCreamVerymuch!” is much harder to guess then “IceCream1”. 
  2. To add complexity, try replacing vowels with numbers: AEIOU = 12345. For example, “ILIkeIceCreamVerymuch!” can become “3L3k23c2Cr21mV2rym5ch!” which is far harder for people or programs to guess. 
  3. Avoid common dictionary words, and anything that can be found on social media accounts (pets, names, dates of birth etc.)  Many social media profiles and content are public and easy for attackers to review.
  4. If you don’t to come up with a new password, many password generators are available online.
  5. Use “password vault” software to remember your passwords. 

Password Vaults:

                A password vault is a software that is provided by an external vendor that stores and encrypts password for you.  This software has a master password (and normally some form of multi-factor authentication) that protects all your other passwords.  That way you only need to remember one password.  The software will often create random passwords for your accounts that can be stored in the password vault.  The software then applies the password to logins as you are about to login in a secure manner. 

                Framingham State University has partnered with Keeper Security to provide password vault software to FSU employees.  If you are interested in joining our pilot of the Keeper Security software, please submit a request for a license through the https://myit.framingham.edu portal, by E-Mail to IT@framingham.edu or by phone at 508-215-5906.  Further documents on keeper security are within this knowledge base as well as a FAQ.

                Currently FSU does not provide licenses of the Keeper Security software to students.  However, password vault use is still highly recommended.  Keeper Security offers students a 50% discount on a yearly subscription of this software.  Please visit the Keeper Security website (https://www.keepersecurity.com/student-discount.html) for more information on this offer.

                 If you need assistance changing your password you can view our guide on password resets located in this knowledge base.

Details

Article ID: 150351
Created
Sun 3/19/23 10:59 PM
Modified
Thu 10/19/23 5:57 PM