Passwords are a vital element of computer security. They provide frontline protection for secure user accounts. A password if too simple could result in the breach of an otherwise secure user account and would allow potential users with malicious intent to cause damage on an internal system and obtain otherwise personal information.
As such, all users at OnlineSCR must select and secure their password as outlined in the steps featured in this policy document below.
The purpose of this document is to aid and inform users with the creation of strong and unique passwords for the protection of their OnlineSCR account. This policy document is primarily for those who access the OnlineSCR platform and aims to enforce security when it comes to authentication and authorization.
Passwords must feature at least 1 lower case character.
Passwords must feature at least 1 upper case character
Passwords must feature at least 1 special character. (! , . $ £ # etc)
Password length must be equal or greater than 8 characters.
Passwords must not feature on the secure list of the internets most commonly used passwords.
Any violation of the above will prompt you accordingly of the invalid elements detected and will inform you on screen on what the problem is and to rectify before being able to effectively Create/Amend password information.
Do not use your user account/email address as your password. Additionally do not share this password with anyone, this includes staff, family, friends and colleagues. All passwords and user account information must be treated as secure and confidential information.
Don’t reveal a password over the phone to anyone
Don’t reveal a password in an mail message
Don’t reveal a password to the boss • Don’ talk about a password in front of others
Don’t hint at the format of a password (e.g., “my family name”)
Don’t reveal a password on questionnaires or security forms
Don’t share a password with family members
Don’t reveal a password to a co-worker while on vacation
Don’t use the "Remember Password" feature of applications
Don’t write passwords down and store them anywhere in your office.
Don’t store passwords in a file on ANY computer system unencrypted