NIST’s new password rules – what you need to know

contributor : May 29, 2017

Category One

One of the biggest changes proposed by the new NIST Digital Identity Guidelines is getting rid of mandatory password changes.  This would mean no longer changing your password every 90 days, which I agree with and most users will welcome with open arms.

This, along with a few other interesting twists make this well worth a read.

If you don't want to read the whole document, Chester Wisniewski over at Sophos did a great job of summarizing the key points here:
https://nakedsecurity.sophos.com/2016/08/18/nists-new-password-rules-what-you-need-to-know/
New FFIEC IT Management Booklet: What your Board Needs to Know

New FFIEC IT Management Booklet: What your Board Needs to Know

Chris Bedel : Dec 9, 2015

Gone are the days where the Board of Directors at a financial institution could assign the responsibility of Information Security (now called...

Category One
Read More
New Company, New Logo

New Company, New Logo

Chris Bedel : Apr 2, 2015

I'm excited to announce the launch of Bedel Technology. Pretty much the same offerings that have been previously posted here at chrisbedel.com, but a...

Category One
Read More
Sheltered Harbor: New Concept? Or Should You Be Doing This Stuff Already?

1 min read

Sheltered Harbor: New Concept? Or Should You Be Doing This Stuff Already?

Chris Bedel : Apr 3, 2017

Several of our banking clients have reached out to us in the past couple weeks to ask our thoughts on Sheltered Harbor. My guess is that the common...

Category One
Read More