Password Security

1. OUCS Policy and Rules

Passwords on OUCS systems:

Must not be simple words, names or other easily-guessed items such as postcodes or car number plates
Must be changed at least once a year
Must not be given to anybody else. Your account is for your use only.

The IT Committee's Security and Privacy Policy Group has drawn up a security policy for the University. Suspected breaches of security are handled by the Oxford University Computer Emergency Response Team (OxCERT), which also has an advisory role.

The policy of requiring passwords to be changed at least once a year is in direct compliance with the advice of OxCERT, operating under the above University policy. There is another web page giving more details about the policy of password expiry.

Up: Contents Next: 2. What is password security?

Sections in this document:

2. What is password security?
3. Why is password security important?
4. Why can't I tell anyone my password?
5. What about writing my password down?
6. Why shouldn't I include my password in an email message?
7. What is a Cracker?
8. Where else do I need to take care?
9. Social Engineering

Password Security

1. OUCS Policy and Rules

Document Links: