Main menu (IT)

Week 2 - Passwords & Data Protection

Strong Passwords

No one likes remembering passwords, especially long ones, but they are essential to our online world. Using long and unique passwords across all accounts is the best way to prevent a third party from accessing your accounts. No one is immune to cyber risk, but #BeCyberSmart and you can minimize your chances of being at risk.

Password Policy

  • Can contain any number of alphabetic characters, numbers, capital letters or special characters.
  • Can contain a combination of words from the dictionary.
  • Must be a minimum of 12 characters – we suggest as long as possible.
  • Cannot contain your first or last name, or CSUN userID.
  • Must not be one of the last  12 CSUN passwords you have used.

Password Security Tips

  • Don’t use your CSUN userid or email in any personal accounts, make userids unique where possible, make sure you never use a CSUN password or a variation in any external system, use unique passwords for all systems.
  • Utilize a password manager to remember all your long passwords. A password manager is the most secure way to store your unique passwords. With just one master password, a computer can generate and retrieve passwords for every account you have –protecting your online information.
  • Use a long passphrase. According to NIST guidance, you should consider using the longest password or passphrase permissible. For example, you can use a passphrase such as a news headline or even the title of the last book you read. Then add in some punctuation and capitalization.
  • Unique account, unique password. Having different passwords for various accounts helps prevent cybercriminals from gaining access to these accounts and protects you in case of a breach. Mixing things up is essential—find easy-to-remember ways to customize your standard password for different sites.

Data Protection

Now that you are more aware of malicious attacks such as phishing, this week, we will focus on how to keep the data you already have better protected. CSUN has implemented processes to prevent this issue from happening to our users, but it all starts with you. Actively practicing data protection in your day-to-day online life is crucial in ensuring that your information does not fall into the wrong hands.

Confidential Box

Confidential Box is a resource offered by CSUN that integrates DUO multi-factor authentication to more securely store your data. Confidential Box is offered to users who intend to store Confidential Level 1 data in the cloud. It works similarly to myCSUNbox but with the added security of DUO multi-factor authentication and encryption. To signup for Confidential Box with your CSUN account, click here.

What is Level 1 Data?

Level 1 data is sensitive and personal data that can be used to identify a person. If this data falls into the wrong hands, it can be used to impersonate the data owner and grant access to government or bank entities. Some examples of Level 1 data are:

  • Passwords or credentials
  • PINs (Personal Identification Numbers)
  • Birthdate combined with last four digits of SSN and name
  • Credit card numbers with cardholder name
  • Tax ID with name

Learn more about Level 1 data here.

Return to October National Cyber-Security Awareness Month 

Follow along each week of October as we give tips to help keep your online life safe and secure. Share your appreciation for NCSAM with #BeCyberSmart and #CyberAware.

Visit: Week 1           Week 2            Week 3            Week 4