Discussion

Conference Questions – Please do separate top level posts for each question.

1. Assume you are an IT professional at your place of employment. Your account has very high level access, and should it be compromised, the damages could be catastrophic. What safeguards would you take to protect your login information, and what policies would you follow. Justify your choices.
2. You have been tasked with writing the password policies for your organization. Your organization is made up of a diverse workforce with varying levels of technical skill. Such policies could include minimum length, time until the password has to be changed, whether you want to require special characters, etc. There may be multiple policies depending on access level. What formal password policies would you implement, and how would you apply them?