User – Page 3 – MIT Information Protection

Password at startup

Apr 28, 2024

—

by

campus

Enable password protection at startup.

Encrypt passwords

Apr 28, 2024

—

by

campus

Store and transmit only encrypted passwords.

Compromised passwords

Apr 28, 2024

—

by

campus

Change passwords immediately if a compromise is suspected.

Don’t reuse passwords

Apr 28, 2024

—

by

campus

Do not reuse passwords for multiple services. Do not use your Kerberos password for non-Kerberos enabled systems.

Use strong passwords

Apr 28, 2024

—

by

campus

Use strong passwords. Change authentication keys e.g., password, certificate, regularly – at least annually.

Unique user accounts

Apr 28, 2024

—

by

campus

Create a unique, non-privileged, account for each user. Assign a different password for user and administrative accounts.

Data loss prevention

Apr 28, 2024

—

by

campus

Install data loss prevention software.

File encryption

Apr 28, 2024

—

by

campus

Use file level encryption when sharing files on platforms like email, Dropbox, Slack. Encryption keys must be shared via another method.

Encrypted backups

Apr 28, 2024

—

by

campus

Backup solution encrypts information in transit and at rest.

Limit access

Apr 28, 2024

—

by

campus

Information is accessible only for authorized purposes and shared only with those authorized to receive it.

Role: User