Home » Services and Admin » ICT Service » Policy Documents » Strong Password Policy

Strong Password Policy

The European Union advocates certain "data security" measures in all EU organizations. As part of the Institute's compliance with such guidelines, the ICT Service adopts the so-called "strong password" policy.

All newly arriving users in September are forced to change their initial computing account password at first login. You can change your EUI Password at any time following the Password Guidelines. Weak passwords are one of the easiest ways for hackers to break into a computer. Passwords that are used for years at a time, or passwords that are reused frequently, are also much more likely to be discovered by an attacker.

Even though you yourself may not store any confidential data on your own PC, your account could serve as a gateway for attackers to access sensitive data on other machines on our internal network, or even compromise the functioning of the EUI system as a whole.

The login/password combination identifies you as an individual person. You are responsible for all activities carried out under your login name and you must not give out your password to anyone else.

To increase the protection of your account on the EUI network, you will be required to use strong passwords that do not match your previous passwords.

 

Constraints

There are certain restrictions on changing your password:

  • You will not be able to change your password more than once in the space of 2 days.
  • You will not be able to reuse a previous password until it has been changed a total of 10 times.
  • EUI Administrative Staff and Faculty, and collaborators from external firms who are entitled to an EUI computing account, will be forced to change their password every 12 months. This is a compulsory measure which is designed to protect the privacy of individuals and safeguard confidential information.The passwords of researchers, fellows, visitors, and Alumni, on the other hand, will not expire. 

 

Remembering Your Password

You may be tempted to write down your password and stick it to your desk, computer monitor, or some other easily accessible location. However, the moment you do so you are exposing your computer and our entire internal network to serious risk, as an intruder could walk up to your computer and log on using your credentials. Therefore, never write down your passwords. Instead, create passwords that are easy to remember. For some helpful ideas about this, see Password Guidelines.

 

Page last updated on 20 August 2017