Password Usage
Author
US Department of Commerce
Abstract
The document specifies basic security criteria for two different uses of passwords in an ADP system, (1) personal identity authentication and (2) data access authorization. It establishes the basic criteria for the design, implementation and use of a password system in those systems where passwords are used. It identifies fundamental ADP management functions pertaining to passwords and specifies some user actions required to satisfy these functions. Inaddition, it specifies several technical features which may be implemented in an ADP system in order to support a password system. An implementation schedule is established for compliance with the Standard. Numerous guidelines are provided in the Appendices for managers and users seeking to comply with the Standard.
Institution
US Department of Commerce / National Bureau of Standards
Publication Date
0000-00-00
Keywords
computer security, data security, passphrase, password, personal identification, systems security
Location
A hard-copy of this is in Haas