Department of Defense Password Management Guideline

Abstract

The DoD Password Management Guideline provides a set of good practices directed toward preventing password compromise. Large numbers of ADP systems require identification and authentication of a system user. Of ten, the authentication mechanism implemented is a password--a "symbol" that should be known only by its owner. Since a user's identification is often a compaction of the individual's name and thus easily guessed, the password must provide the requisite protection. Measures suggested for password protection include: a. Use of machine-generated pronounceable passwords (pass-phrases). b. Maximum length of time for password retention. c. Capability to change a password. d. Personal password protection (e.g., not written down).

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Apr 12, 1985
Accession Number
ADA425705

Entities

Organizations

  • United States Department of Defense

Tags

Communities of Interest

  • Human Systems

DTIC Thesaurus Topics

  • Accountability
  • Algorithms
  • Alphabets
  • Authentication
  • Command And Control Systems
  • Computer Access Control
  • Computers
  • Control Systems
  • Cryptography
  • Cybersecurity
  • Databases
  • Department Of Defense
  • Identification
  • Numbers
  • Random Number Generators
  • Security
  • Security Protocols

Readers

  • Economics
  • Instructional Design and Training Evaluation.
  • Parasitology and Pharmacology of Malaria.