Password Management Strategies for Safe Systems: Offense and Defense

BY JAMES F. LEON

Editor's note: This is a Web-exclusive exhibit for "Password Management Strategies for Safer Systems."

Primary Security Risks Effective Countermeasures
Failing to enhance password security in order to focus on searching for a “perfect” security system and obtaining more funding.
  • Immediately improve password security procedures.
Implementing new system security procedures or a new security system without adequate planning and full knowledge of current system’s capabilities.
  • Learn how current system stores and protects passwords.
  • Observe employees' password-related practices (for example, check for notes near monitors).
  • Identify security system capabilities necessary to ensure employees' adherence to password security requirements.
  • Perform a thorough needs analysis before buying new security software.
Inconsistently enforcing safe password practices.
  • Obtain high-visibility, senior management support of safe password practices, and publicize them to all employees.
  • Enforce all safe password practices without exception.
  • Make adherence to safe password practices a condition of employment.

Also read these other Web-exclusive exhibits:
Safe Password Practices
Glossary of Key Terms

SPONSORED REPORT

8 accounting and auditing issues you can’t afford to ignore

Download this sponsored report for an overview of some of the most important developments accountants and auditors are facing today.

DOWNLOAD

Filing season quick guide — Tax year 2014

Tax season started Jan. 20. Download our “quick guide,” a printable card that contains dollar thresholds, tax tables, standard amounts, credits, and deductions to keep at your fingertips during tax season.

TAX NEWS

Expired tax provisions extended for 2014

President Barack Obama signed legislation that retroactively extended more than 50 expired tax provisions for 2014, allowing taxpayers to take advantage of a host of tax incentives during this filing season.