SecureTheVillage

NIST’s New Password Rule Book: Updated Guidelines Offer Benefits and Risk

Source: ISACA

Focus Areas: Cybersecurity Leadership & Culture, Frameworks & Best Practices, Information Security Management / MSSP, Secure The Human

Intended for: CIOs, CTOs, IT Directors, CISOs, Information Security Managers, Executives

The updated US National Institute of Standards and Technology (NIST) standards on password security published in the NIST Special Publication (SP) 800-63-3 “Digital Identity Guidelines”1 represent a novel approach to improve IT security while working with, rather than against, the capabilities and limitations of the weakest link in information security: the users themselves. The updated NIST guidelines offer adopters a number of advantages in usability and security while introducing new risk and implementation challenges. These issues should be carefully considered before, during and after implementation of the new guidelines.

Visit Resource

Related Resources

Cyber Risk Management Reasonable Security 2022 Risk Management Framework for Information Systems and Organizations (NIST 800-37r2)

Become A CyberGuardian

Protect your community: take the CyberGuardian Pledge, join our email list, get invited to events.

Take the Pledge

SUPPORT US

SecureTheVillage is a community-based response to the cybersecurity and privacy crisis. We are a 501c(3) nonprofit with a vision of a cybersecure global village. We invite you to join with us as together we make the vision a reality. It takes the village.

Be a CyberPartnerDonate