Increasing the Security of Accounts and Passwords
February 24, 2016
In the increasingly complex and connected digital environment, a strong password is vital. To better safeguard the sensitive records and information held at the University, on February 25, 2016, Drexel will implement three changes to how passwords for computer accounts can be set:
- Rules for creating passwords will become much simpler. Passwords must contain characters from at least 3 of these 4 character sets: lowercase (e.g. a, b, c), uppercase (e.g. A, B, C), numbers (e.g. 1, 2, 3), or other characters (e.g., punctuation, math, other symbols).
- The minimum length for passwords will increase to 10 characters. Since the passwords can be up to 32 characters long, we recommend using an easy-to-remember pass phrase (i.e., simply several words, a phrase, or even a short sentence, when combined with numbers and/or symbols) rather than a cryptic password. For example, the sentence "I drove 12 miles to an Apple store." becomes the 28-character pass phrase "Idrove12milestoanApplestore."
- Old passwords cannot be reused. The reason that we like reusing old ones is the reason that doing so is dangerous--it makes it easier for someone to get in to your accounts.
If your current password doesn't meet the new requirements, don't panic--the new rules affect passwords set after February 25. IRT recommends that you consider changing old passwords soon to prepare you for further changes coming in the summer. You can manage your accounts by signing in to the Computer Accounts Management System at https://accounts.drexel.edu with your Drexel credentials.