Strong Authentication Practices

Strong Authentication Practices

The RIT Information Security Office recommends that all systems requiring strong authentication:

  • comply with RIT's password and authentication standard (REQUIRED).
  • use a complex password of 12 or more characters. Fifteen or more characters are preferred.
  • use multi-factor authentication such as tokens, smart cards, soft tokens, certificate-based authentication (PKI), one-time passwords (OTP), challenge / response systems, and biometrics.