UDelNet now supports longer passwords
New password requirements will improve security of University systems
9:28 a.m., April 20, 2011--University of Delaware Information Technologies (IT) has implemented new password requirements to improve the security of University systems and UDelNet, the campus network.
“In the most recent IT Activity Report, we announced that new UDelNet passwords must use at least eight characters and pass certain ‘tests,’” said Scott Sweren, the University’s information security officer. “The change affects new passwords used to log in to UD email and to authenticate for most network applications.”
FYI Stories
June 6: UDid It! Picnic
2FA protects you
All new UDelNet passwords must conform to the following rules:
- UDelNet passwords must now be at least eight characters long and may include up to 30 characters.
- Eight- to nine-character passwords must pass a dictionary check. For example, your password needs to be more secure than a name, a word, or a word with a number tacked on.
- 10- to 30-character passwords are tested using a point scoring system. Three points are required for approval:
- One point for using an upper case letter.
- One point for using a lower case letter.
- One point for using a number.
- One point for using any character not listed above with the exception of a blank “space.”
Although you do not yet need to change your existing UDelNet password if it does not conform to the new standards, IT staff members recommend that you change your old password to a new longer password.
“Longer passwords are generally more secure, but we are checking to be sure that even long passwords or pass phrases are hard for hackers to guess,” said Karl Hassler, associate director IT Network and Systems Services.
Data from recent Internet security breaches show that too many people choose weak or trivial passwords. “Of the 32 million passwords exposed in one breach, about 30 percent were six or fewer characters long and about half were common words, names, slang or adjacent keys on the keyboard,” Sweren said. “‘123456’ is the most common password people select at many sites. We need people to choose better UDelNet passwords than that.”
UD’s new password standards will help you select a safer password. “Choose a long and strong password or pass phrase,” Hassler said. “A strong UDelNet password secures not only your personal information, but also the academic, financial, medical, or other UD information entrusted to your care.”
Additional information
Preview the security of a potential password with UD’s password checker.
View IT’s “Use secure passwords” web page.
Report a suspected data breach or stolen password to the IT Support Center.