Strong Authentication Practices
The RIT Information Security Office recommends that all systems requiring strong authentication:
- comply with RIT's password and authentication standard (REQUIRED).
- use a complex password of 12 or more characters. Fifteen or more characters are preferred.
- use multi-factor authentication such as tokens, smart cards, soft tokens, certificate-based authentication (PKI), one-time passwords (OTP), challenge / response systems, and biometrics.