Western Password Policy

The Western password policy is intended to enforce passwords which are more difficult for the hacker community to crack or decode.  Although you can change your password yourself, it must adhere to a number of conditions.  Currently these conditions include:

  • Must be at least 8 characters long.
    • Vaild: P@ssw0rd
    • Invalid: uwo
  • Must contain at least one upper case alpha and at least one lower case alpha.
    • Vaild: Good9$$
    • Invalid: uworocks
  • Must contain at least one numeric value.
    • Vaild: West3rn!
    • Invalid: UWOrocks
  • Must contain at least one special character.
    • Vaild: Mu$t4ngs
    • Invalid: UWOr0cks
  • Must NOT reuse any of your last 5 previous passwords
  • Must NOT be longer than 32 characters

NOTE: the former passwords are examples only and should not be used as your password.

Passwords Must Not Contain

User ID

spaces

< (less than symbol)

> (greater than symbol)

 

The policy implements passwords which are difficult, but not impossible, to crack.  They are also difficult to construct as they essentially random character sequences.  The more complex the password, the more difficult it is to guess and this will normally deter any attempts to crack the password because it is too difficult or time-consuming.

There are a number programs, freely available on the Internet, that can be used to systematically guess passwords.  Statistically, by using longer passwords (e.g. 8 characters instead of 6) and a greater variety of characters (e.g. upper AND lowercase characters, numeric values, special characters, etc.), you can extend the likely time it would take for the computer-generated "guessing" attempts to "crack" your password from a small number of days to a large number of years.


Published on  and maintained in Cascade.