What has actually changed in the updated 2024 NIST framework ref to passwords

old.reddit.com / @/u/ITProCentral, https://old.reddit.com/user/ITProCentral

Since 2017 NIST have been against expiring passwords automatically and only doing so when you suspect there is a breach.

I’ve seen a tonne of LinkedIn posts recently boasting the above as if it’s something new that we should all be aware of?

So what has changed specifically in relation to this?

submitted by /u/ITProCentral
[link] [comments]

published about 2 months ago


Previous

Question on 3rd Party ATOs.
published about 2 months ago

Next

800-53 AC-2(5) Logout Versus Lock
published about 2 months ago
See all items from the same source