Password Authentication

PS-08-006 Password Authentication

Issue Date: 3/20/2008

Effective Date: 3/20/2008

Review Date: 7/1/2018

 

PURPOSE

Passwords are an important aspect of computer security. They are often the only means for authenticating users and the front line of protection for user accounts.  Failure to use a password or using a poorly chosen password when accessing state of Georgia information assets may result in the compromise of those assets.  It is the responsibility of every agency to implement authentication mechanisms such as passwords to access sensitive data and the responsibility of the user to appropriately select and protect their passwords.

POLICY

Passwords shall be the minimum acceptable mechanism for authenticating users and controlling access to state information systems and applications unless specifically designated as a public access resource.

All users (employees, contractors, and vendors) with access to state information systems shall take the appropriate steps to select and secure their passwords.

RELATED ENTERPRISE POLICIES, STANDARDS, GUIDELINES

Password Security (SS-08-007)

Strong Password Use (SS-08-008)

TERMS and DEFINITIONS

Authentication is a process of attempting to verify the digital identity of system users or processes.