"How to Run a Password Update Campaign Efficiently and With Minimal IT Costs"

There has been little research on how to run a password update campaign efficiently and with minimal Information Technology (IT) costs. Therefore, a team of computer scientists at the University of California, San Diego, collaborated with the campus' IT Services to analyze the messaging for a campuswide mandatory password change that affected nearly 10,000 faculty and staff members. Email notifications to update passwords yielded diminishing returns after three messages. Prompting users to update their passwords while they are trying to log in was found to be effective for those who had ignored email notifications. According to the team, this is the first time an empirical analysis of a mandatory password update has been done on such a large scale and in the wild. This article continues to discuss the empirical analysis of enterprise-wide mandatory password updates.

The University of California, San Diego reports "How to Run a Password Update Campaign Efficiently and With Minimal IT Costs"

Submitted by grigby1