Today @ Colorado State has been replaced by SOURCE. This site exists as an archive of Today @ Colorado State stories between January 1, 2009 and September 8, 2014.

Announcements

New eID password policy begins in April

March 27, 2013

Longer, stronger passwords will be easier to remember, easier to type.

When it comes to passwords, longer is stronger!

Starting April 1, CSU is launching a new policy to improve the strength of eID passwords. Stronger passwords will be better at protecting CSU systems, protecting users from identity theft, and (believe it or not) make the eID easier to type and easier to remember.

When it comes to hacking passwords, it's all about how many guesses it takes to get it right. That's why length is much more important than complexity when creating secure passwords. In other words, a password or "passphrase" made up of a series of short, easy-to-remember words (for example, "glib-horseman-podium") is much stronger than the kind of password we've been accustomed to recommending (for example, "X78vir$!"). And the first one sure is easier to type, even though it's longer.

Change once a year

What's also longer is the time between required password changes. Once you've changed to a longer password, it will be good for another year, rather than only six months as in the past.

Faculty and staff -- If you choose to wait, you'll still receive the normal reminder when it's time to renew six months after the last time you changed (or created) your password, or you can choose to change at any time. Either way, once you've changed to a longer password, it'll be good for a year.

Students, associates, and retirees -- You can choose to change your password anytime after April 1, but starting in the fall semester you'll receive notice via email and RAMWeb when you need to choose a new password. From then on, you'll need to refresh your password once a year.

Anyone can go to the eID password change website (http://eid.colostate.edu) and choose a longer password starting April 1, rather than waiting for the deadline, and feel secure about having a stronger password right away. Or you can wait until we notify you that you need to change. Either way, the password change tool will help you through the details and remind you of the rules. Remember, this is about increased security that's actually easier to use!

For more information, see the ACNS webpages:


For additional questions, feel free to contact Steve Lovaas, IT Security Manager in ACNS.


Contact: Steve Lovaas
E-mail: Steven.Lovaas@ColoState.edu
Phone: 970-297-3707