The US National Institute of Standards and Technology (NIST) has some surprising recommendations that might prompt you to rethink your business’s password policies. Learn why change is needed and what NIST is recommending that companies do.
It’s time for a pop quiz. Is the following statement true or false?
It is best for businesses to require that employees create long, random passwords that include mixed-case letters, numbers, and symbols.
For a long time, the prevailing belief was that this statement was true, so many companies included composition rules in their password policies. However, the US National Institute of Standards and Technology (NIST) now believes these rules are hurting rather than helping businesses.