Your browser has JavaScript turned off.
You must turn it on to proceed.










NORS -- CSRIC Best Practices Result

CSRIC Best Practices Result

Detailed Information for the Best Practice: 9-8-8739

Number 9-8-8739
Priority Highly Important
Description Recovery from Password Management System Compromise: When a password management system or other source of passwords has been compromised, the Service Provider should act swiftly to mitigate the weaknesses that allowed the compromise, restore the compromised system to a secure state, and require all users to change their passwords immediately. Procedures should be in place to notify all affected users that their passwords have been reset or need to be changed immediately.
Network Type(s) Cable; Internet/Data; Satellite; Wireless; Wireline
Industry Role(s) Service Provider
Keyword(s) Cyber Security;Encryption;Information Protection;Intrusion Detection;
Reference/Comments NIST SP800-118 Guide to Enterprise Password Management
http://csrc.nist.gov/publications/drafts/800-118/draft-sp800-118.pdf