HITRUST Password Requirements

The Health Information Trust Alliance, also known as HITRUST, is an organization that created the Common Security Framework (CSF). The HITRUST Alliance is a non-profit organization with a program set up to standardize compliance requirements amongst many industries. A few examples of compliance standards that have been included are: federal legislation (ARRA and HIPAA), federal […]

Read more

The NEW Azure AD Password Protection Service by Microsoft Azure

This is not the first nor last attempt Microsoft will make to help companies stop easily cracked passwords from being used as end-user passwords. Back in 2016, Microsoft attempted to ban easily hacked passwords on Microsoft Account Service and Azure Active Directory, but none of their other platforms. However, many articles online showed the shortcomings […]

Read more

Password Policy Strengthening Options

Humans are very predictable and unless we are the victim of a substantial data breach, we will probably assume our company’s network is safe and we are doing a decent job protecting it. Companies may slide by for years and not be on a hacker’s radar; but truth be told, if you are not taking […]

Read more

Yubico’s New USB Security Key Review

Recently, Yubico released a new security key to create a passwordless login for Windows 10. The YubiKey USB key is currently only available for Windows Technology Adoption Program users. Seems like a great idea, right? Wrong. A passwordless login with a USB key sounds like an easy, secure way to eliminate the use of passwords. […]

Read more

Stanford Password Policy Explained

Back in April 2014, Stanford University created a password policy which let end-users determine the level of complexity for their own password. Shorter passwords will result in an end-user using more character types and longer passwords will result in an end-user using fewer character types. Here is the breakdown of the Stanford Password Policy: 8-11 […]

Read more

How does the nFront Password Filter Client work?

A common question from prospective customers who are interested in the nFront Password Filter is that they want to see how the Client works. The nFront Client provides a user-friendly interface for end-users when they need to change their password. When the nFront Client appears, the end-user’s password policy will display on the screen with a custom strength meter. […]

Read more

How To Smoothly Implement A Strong Password Policy

Changing your company’s password policy can create a high level of apprehension for the IT department as well as management, especially when the password policy will become more restrictive for end-users. Your company’s management team will have the primary concern of how to deploy a new software tool effectively to the entire network. While your […]

Read more

NCSC Password Guidance and Recommendations

The NCSC (National Cyber Security Centre) provided guidance for Systems Administrators to simplify their approach to passwords. This guidance is not mandatory, but rather recommendations to eliminate the risk of breaches due to weak passwords on a company network. Furthermore, NCSC’s guidance is intended to reduce the daunting task of users having to recall complex […]

Read more

NIST Password Compliance and New Password Rules

First of all, who or what is NIST? NIST stands for the National Institute of Standards and Technology. This organization is a non-regulatory agency of the United States Department of Commerce who provides security standards and guidelines for companies to meet the requirements of the Federal Information Security Management Act (FISMA) through cost effective programs. […]

Read more

The NEW GDPR Compliance Overview

First, what is GDPR and am I affected by the new compliance regulations? GDPR is the new General Data Protection Regulation that was adopted by the European Union (EU) in April 2016 and will be enforceable starting May 2018. The new GDPR compliance applies to everyone who provides goods and/or services to citizens in the […]

Read more