当前位置:网站首页>What does password security mean? What are the password security standard clauses in the ISO 2.0 policy?

What does password security mean? What are the password security standard clauses in the ISO 2.0 policy?

2022-06-22 15:04:00 InfoQ

With the rapid development of Internet , Password setting directly affects the security of the network . So it is very important to ensure password security . What does password security mean ?
Equal insurance 2.0
What are the password security standard clauses in the policy ? How does an enterprise ensure password security ?

What does password security mean ?
Password is also called password , Password security is simply to ensure the security of passwords . The boot that people use everyday in real life “ password ”、 WeChat “ password ”、 Bank card payment “ password ” etc. , these “ password ” It's actually a password . The password is just to enter the personal computer 、 mobile phone 、 Email address or personal bank account “ pass ”, It's a simple 、 Primary means of identity authentication .

Equal insurance 2.0 What are the password security standard clauses in the policy ?
1、GB/T 22239—2019
《 Information security   Basic requirements for network security level protection 》(GB/T 22239—2019) In the second level of safety requirements , Identity authentication control point requirements for secure computing environments :“ The login user shall be identified and authenticated , Identity is unique , Identification information is complex and needs to be changed regularly .”
2、GB/T 28448—2019
《 Information security   Network security level protection evaluation requirements 》(GB/T 28448—2019) The following requirements are put forward for the evaluation and implementation of identity authentication control points :
1) It should be checked whether the user has taken identity authentication measures when logging in ;
2) The user list shall be checked to confirm whether the user ID is unique ;
3) It shall be checked whether there is no air interface command in the user configuration information ;
4) The user authentication information shall be checked for complexity requirements and replaced regularly .
Unit decision : If 1-4) All are affirmative , It meets the index requirements of this evaluation unit , Otherwise, it does not meet or partially meet the index requirements of this evaluation unit .

How does an enterprise ensure password security ?
When an enterprise has a large number of hardware devices ( Such as network interconnection equipment 、 Security devices and servers, etc ), In general, you can use
Fortress machine
Carry out unified operation and maintenance management for these equipment . Most of the time , By hosting the account password management of the device to
Fortress machine
, Administrators no longer need to log in to each device manually , And check the password length one by one 、 Complexity 、 Change the cycle policy and other security parameters for configuration . This ensures password security to a certain extent .

What does password security mean ? Equal insurance 2.0 What are the password security standard clauses in the policy ? Operation and maintenance dry goods The first 1 Zhang - Manager Xingyun - Product community

【 Related links 】:
1、
Equal insurance 2.0 What are the security extension requirements of cloud computing ?
2、
Equal insurance 2.0 What are the four requirements for the security expansion of the Internet of things in the policy ?
3、
Equal insurance 2.0 What are the basic requirements ? Follow and wait for insurance 1.0 Are they exactly alike? ?
原网站

版权声明
本文为[InfoQ]所创,转载请带上原文链接,感谢
https://yzsam.com/2022/173/202206221340188248.html

边栏推荐

猜你喜欢

随机推荐