Difference between revisions of "Passwords"

From IT-help UiB
 
(8 intermediate revisions by 2 users not shown)
Line 1: Line 1:
{{IDA}}
+
 
 
[[no:Passord]]
 
[[no:Passord]]
  
 +
==Protect you password!==
 
[[image:ENG-yours-alone_small.jpg]]
 
[[image:ENG-yours-alone_small.jpg]]
  
 
[[media:Campaign_password_2009.pdf|Download folder (pdf)]]
 
[[media:Campaign_password_2009.pdf|Download folder (pdf)]]
  
Your password protects your personal information and identity against misuse. Therefore it should never be given to others. The IT department will never ask for your password. We have the necessary tools to enable us to do most of the tasks that we need to do without your password.
+
===Safeguard your password===
 +
Your password protects your personal information and identity against misuse. Therefore it should never be given to others, by e-mail, phone or in any other way. The IT department will never ask for your password. We have the necessary tools to enable us to do most of the tasks that we need to do without your password.
  
 +
===Do not use your password elsewhere===
 +
Your UiB password should only be used with you UiB user account for access to services and systems at UiB, or for logon to [[Eduroam]] networks at other research- and educational institutions.
 +
 +
===Change your password===
 +
Password change for your UiB user account can only be done in UiBtilgang, at [https://minkonto.iam.uninett.no/uib/].
  
 
== Create a strong password ==
 
== Create a strong password ==
Line 15: Line 22:
 
'''The most important aspects of a password is its length and complexity:'''
 
'''The most important aspects of a password is its length and complexity:'''
  
* The password must be at least 10 characters long. The maximum length is 128.
+
'''Length''': use at least 10 characters in your password. Longer passwords will increase security.
* At least 5 different characters must be included.
+
'''Complexity''': ”Rub6berBoot!” is more complex than ”Rubberboot”
* It must contain characters from at least three of these groups;
 
** small letters
 
** capital letters
 
** digits
 
** special characters like '' space'' and the following:
 
! # $ % & / ( ) = ? + * - _ , . < > { } [ ]
 
* However, the following special characters can ''' not ''' be used in the password:
 
'  "  :  ; | \
 
* Some special Norwegian or other language specific letters can ''' not ''' be used in the password, e.g.:
 
æ , ø, å, Æ, Ø, Å , ä, ó
 
 
 
 
 
'''Please note:'''
 
 
 
* Your user id can not be a part of the password.
 
* Your user id spelled backwards can not be a part of the password.
 
* Your name can not be a part of the password.
 
* Your name spelled backwards can not be a part of the password.
 
* A word from a dictionary or wordlist is not allowed.
 
* You can not use your current password.
 
 
 
A password maximum lifespan is 13 months.
 
  
 +
'''As of January 30, 2015, the following rule applies for your UoB passeword:'''
  
== Checklist for a well designed password ==
+
The password must consist of at least 10 characters, consisting of borth small and capital letters and numbers or special character, except ' " : ;
  
* Construct a password that is easy to remember
 
* Mix uppercase and lowercase characters (“SnoWBoArD”)
 
* Use numbers or special characters in the password (“$now37Board”)
 
* Don’t use well-known words, names of persons, cities, objects, user accounts etc.
 
  
'''Note: The passwords above, or passwords similar to those should not be used in real life.'''
+
'''Also keep in mind when making your password:'''
  
 +
* Make the password easy to remember for yourself.
 +
* Use capitals and small letters mixed ("RuBbErBoot"), combined with numbers and/or space or other characters ("RuB63rboot_").
 +
* Avoid language specific characters which may not be available on all keyboards you need to use to log in.
 +
* Your password should not be possible to guess. Don't use only a common word, name or user name, forwards or backwards, in your password.
 +
* If you combine several words to a special sentence that only tou know, the password may be easier to remember.
  
== Changing your password ==
+
'''Note: The example passwords above, or passwords similar to those should not be used in real life.'''
  
If you need to change your password:
 
  
* Start a web browser and go to: [https://sebra.uib.no/  https://sebra.uib.no]
+
== How to handle your password==
* On the top left, click “English” to get English version of SEBRA.
 
* On the left side menu, locate “Login to my account’ and select your category
 
 
 
* Log on with your username and password
 
* On the left hand side menu, select “Password”
 
* Write the new password in the boxes “Password” and “Confirm password”, and press “Confirm”
 
* Leave the next page untouched and press “Confirm”.
 
 
 
* In general your password should now be available within half an hour.
 
 
 
If you forget your password, you will need to go to the IT department. Remember to bring identification.
 
 
 
== Password security ==
 
  
 
* ''' Never give your password to anyone'''. Your password is yours alone and protects your personal information and identity against misuse.
 
* ''' Never give your password to anyone'''. Your password is yours alone and protects your personal information and identity against misuse.
Line 76: Line 49:
 
* ''' Do not type your passwords on computers that you do not control'''. Computers such as those in Internet cafés, shared systems, kiosk systems, airports etc. should be considered unsafe for any personal use other than anonymous Internet browsing.
 
* ''' Do not type your passwords on computers that you do not control'''. Computers such as those in Internet cafés, shared systems, kiosk systems, airports etc. should be considered unsafe for any personal use other than anonymous Internet browsing.
  
The IT Department does not send passwords out by mail.
 
 
The Department needs to know that you really are who you claim to be, therefore you are required to turn to the IT Department in person, and to produce proof of identity.
 
 
We have to take a strict line on this to ensure maximums security of the users' data.
 
 
 
==Forgotten password?==
 
 
Note that the IT Department will not send passwords by mail or email.
 
 
===Students===
 
If you are a student, you can obtain a new password in the following way:
 
 
* Go to [https://sebra.uib.no/sebra/?lang=english https://sebra.uib.no/sebra/?lang=english], and select the "student" link under '''"Forgotten password"''' in the left margin menu.
 
* You have to fill in your Studentweb-'''PIN code''', as well as your '''student number''' and Norwegian '''personal ID''' (fødselsnummer).
 
* If you have forgotten your '''PIN code''', please contact the Centre for Information and Student Services in Langes gate 1-3. Remember to bring valid ID!
 
 
If you have forgotten the name of your UiB user account, you may follow the same procedure.
 
 
===Employees and others===
 
If you have forgotten your password an are not a student, you must show up in person at the IT Department's service desk [[BRITA]] in Nygårdsgaten 5. This goes for employees and others with a UiB user account (except for students).
 
  
Please remember to bring valid personal identification! - We need to know for sure that you actually are the person you claim to be.
 
  
 
== Contact us at BRITA if you have any questions ==
 
== Contact us at BRITA if you have any questions ==
  
If you feel the least bit unsure or have any questions, contact us at BRITA (555 84700) so we can help you. And remember: there is no such thing as a stupid question when it comes to IT security!
+
If you feel the least bit unsure or have any questions, contact us through [https://hjelp.uib.no/ UiBhjelp], or on phone 55584700 so we can help you. And remember: there is no such thing as a stupid question when it comes to IT security!
  
 
[[Category:IT security]]
 
[[Category:IT security]]

Latest revision as of 12:39, 28 March 2022


Protect you password!

ENG-yours-alone small.jpg

Download folder (pdf)

Safeguard your password

Your password protects your personal information and identity against misuse. Therefore it should never be given to others, by e-mail, phone or in any other way. The IT department will never ask for your password. We have the necessary tools to enable us to do most of the tasks that we need to do without your password.

Do not use your password elsewhere

Your UiB password should only be used with you UiB user account for access to services and systems at UiB, or for logon to Eduroam networks at other research- and educational institutions.

Change your password

Password change for your UiB user account can only be done in UiBtilgang, at [1].

Create a strong password

A good password should be easy to remember but hard to guess. Attackers are a devious bunch and will stop at nothing to get into our systems. Therefore we have to look into what makes a good password.

The most important aspects of a password is its length and complexity:

Length: use at least 10 characters in your password. Longer passwords will increase security. Complexity: ”Rub6berBoot!” is more complex than ”Rubberboot”

As of January 30, 2015, the following rule applies for your UoB passeword:

The password must consist of at least 10 characters, consisting of borth small and capital letters and numbers or special character, except ' " : ;


Also keep in mind when making your password:

  • Make the password easy to remember for yourself.
  • Use capitals and small letters mixed ("RuBbErBoot"), combined with numbers and/or space or other characters ("RuB63rboot_").
  • Avoid language specific characters which may not be available on all keyboards you need to use to log in.
  • Your password should not be possible to guess. Don't use only a common word, name or user name, forwards or backwards, in your password.
  • If you combine several words to a special sentence that only tou know, the password may be easier to remember.

Note: The example passwords above, or passwords similar to those should not be used in real life.


How to handle your password

  • Never give your password to anyone. Your password is yours alone and protects your personal information and identity against misuse.
  • Don’t write down your password. Keep your password hidden from friends, colleagues, children etc.
  • Never provide your password via e-mail or phone. Don’t provide your password in any circumstances. If you are asked to provide your password then there is a high probability that someone is trying to trick you.
  • Keep your UiB password just for UiB. Do not use it as your password on other systems outside of UiB.
  • Do not type your passwords on computers that you do not control. Computers such as those in Internet cafés, shared systems, kiosk systems, airports etc. should be considered unsafe for any personal use other than anonymous Internet browsing.


Contact us at BRITA if you have any questions

If you feel the least bit unsure or have any questions, contact us through UiBhjelp, or on phone 55584700 so we can help you. And remember: there is no such thing as a stupid question when it comes to IT security!