Password Security

1. OUCS Policy and Rules

Passwords on OUCS systems:

1. Must not be simple words, names or other easily-guessed items such as postcodes or car number plates
2. Must be changed at least once a year
3. Must not be given to anybody else. Your account is for your use only.

The IT Committee's Security and Privacy Policy Group has drawn up a security policy for the University. Suspected breaches of security are handled by the Oxford University Computer Emergency Response Team (OxCERT), which also has an advisory role.

The policy of requiring passwords to be changed at least once every 12 months is in direct compliance with the advice of OxCERT, operating under the above University policy.

Up: Contents Next: 2. What is password security?

Sections in this document:

• 2. What is password security?
• 3. Why is password security important?
• 4. Why can't I tell anyone my password?
• 5. What about writing my password down?
• 6. Why shouldn't I include my password in an email message?
• 7. How do Crackers crack passwords?
• 8. Social Engineering