The University of Texas Health Science Center at Tyler (UTHSCT) has updated the password policy for network accounts and is transitioning from the use of passwords to passphrases.
Effective Wednesday, December 11, all password resets will adhere to the new passphrase requirements.
What does this mean to you?
- Passphrases are a minimum of 10 characters.
- Passphrases do not have a complexity requirement such as upper/lower case, numbers and symbols.
- Passphrases allow for the use of spaces, punctuation, numbers, and symbols.
- Passphrases do not expire.
Why transition to passphrases?
- Passphrases are easier to remember than a random combination of symbols and letters. It would be easier to remember a phrase from your favorite song or your favorite quotation than to remember a short but complicated password.
- Passwords are relatively easy to guess or crack by both human and robots. The online criminals have also leveled up and developed state of the art hacking tools that are designed to crack even the most complicated password.
- Satisfies complex rules easily. The use of punctuation, upper and lower cases in Passphrases also meets the complexity requirements for passwords.
- Passphrases are next to impossible to crack because most of the highly-efficient password cracking tools breaks down at around 10 characters. Hence, even the most advanced cracking tool won’t be able to guess, brute-force or pre-compute these passphrases.
- Passphrases, at UTHSCT, do not expire.
Items worth noting:
- Depending on when your current password is set to expire, you may have to reset your passphrase twice within the next 90 days. However, once we pass the next 90 days, your passphrase will not expire.
- If an account is suspected of being compromised (i.e., a computer virus, a successful phishing attempt, etc.), your passphrase will be forced to reset.
- You are not allowed to reuse previous passphrases.
To review the full password policy, follow the link below: