• Authorize transactions without your knowledge.
• Access programs, files and applications that only you and/or a selected group of others should have access to.

InCHIP IT will disable accounts with passwords that are suspected of being compromised and report the incident to UConn Security Office.

NOTE: InCHIP’s Active Directory domain requires a password contain the following characteristics:

• At least one number.
• At least one special character.
• At least one capital letter.
• At least 8 characters long.

Additionally the following characteristics are also true:

• You will be forced to change your password every 180 days.
• You will not be allowed to reuse a password.

• Passwords should be at least eight (8) characters long with a mixture of upper- and lower-case letters, numbers, and symbols. Passwords that can’t be this complex should be at least 10 characters long. This feature is enforced by computers connected to InCHIP’s active directory.
• Passwords shouldn’t use complete dictionary words in any language spelled forwards or backwards, or a word preceded or followed by a digit (e.g., password1, 1password), your username or login, child’s name, pet’s name, birthdays, abc123, qwerty123, password1, or anything else easily guessable.
• A longer password consisting of several words separated by spaces can actually be more secure and easier to remember than a more complicated, obscure one. For example, “The hills are alive with the sound of music!” is actually a pretty good password, except for the fact that that it is inconveniently long and published here. A shorter version could be, “Hills! alive! Music!” A shorter version using a variant on the first letter of each word could be, “ThRawts0m!” A few memorable, unrelated words can also be a good password.
• Be aware that “password cracker” programs check for common symbol substitutions in words, such as “0” for “o” and “$” for “s”. Simply substituting common symbols for letters in a dictionary word, e.g. “Pa$\$w0rd” instead of “Password,” might result in a guessable password even though it technically meets the above requirements.
• Password cracker programs now also check for complete dictionary words in a row, separated by spaces or not, so it’s always best to modify dictionary words. “The hills are alyve w/the sound of musyc!” is much harder to guess than “The hills are alive with the sound of music!” It’s also harder to remember, so it’s a trade-off.
• Use different passwords for different accounts. At a minimum, use a different password for less sensitive accounts than for more sensitive accounts. Also use different passwords for work and non-work.
• Passwords should not be examples you have seen in print, such as the ones on this page.

• Don’t reveal your passwords to anyone, even if they say there’s a good reason.
• This includes co-workers and supervisors.
• If you need to write your password down on paper, safeguard the paper in a locked drawer or cabinet rather than posted on your monitor, under your keyboard, or in a drawer near your computer!
• Passwords can also be stored securely in free and low-cost “password vault-type” encryption tools, including your computer’s keychain.
• We recommend that you consider making use of KeePass professional edition. It provides a random password generator along with the ability to encrypt the database with a separatly stored key and password combination.