|
|
 |
|
|
|
|
NPS computer users are the front line of defense for custody, control, and confidentiality of all systems they use. The use of safe passwords, up-to-date anti-virus software, familiarization with appropriate use guidelines and lab rules, and the development and practice of sound user procedures, are all essential in protecting NPS IT systems from breach by non-authorized users. Internet connection enhances education at NPS, but exposes the user and NPS to greater security risks. Password cracking is the primary method used to penetrate systems connected to the Internet. Weak passwords, unsound practices, and carelessness cause security failures that defeat ADP Security protection programs.
Passwords suitable for stand alone office or home computers are usually not suitable for
machines connected to the Internet. Passwords sent through the Internet SHOULD BE
CHANGED VERY FREQUENTLY. Non-encryption processes are used on some IT
systems at NPS, for remote login access and Internet traffic. From source to destination,
passwords are subject to multiple intercepts and observations. Passwords used for dial-in
connection to NPS are considered reasonably secure, and thus need to be changed only
periodically. However, if the same password is used for remote Internet access, (normally
the case) the password should be changed more frequently.
Complete guidance on password policies and procedures at NPS may be found at:
http://intranet.nps.edu/ITACS/Email/passguide.htm (internal only).
More information regarding Information Security may be found on the NPS Intranet at http://adpsec.nps.navy.mil.
|
|
|
|
|
|
|
|
|
