Control PasswordQualityCheck

URI: PasswordQualityCheck

Package: Network

< prev | next >

Description: The host or process has a way to check the quality of a password when set or changed by a user. For example, it may use checks as specified in NIST-800-63.

ConsoleHost	A (physical) host with a user interface that also supports shell access, making it possible for users to log in. Attackers who can gain physical access could also exploit vulnerabilities and gain control over the device.
Process	Represents a process (usually implemented by software running on a Host) that can read, update or create data, or exchange data with other processes.

CSG-ClientStrongPasswordAuthentication	The quality of passwords to authenticate users of service *Service* is checked whenever the password is set or changed, e.g. using standards like NIST-800-63.
CSG-ClientUserStrongPasswordAccess	Access to service *Service* is controlled, by authenticating authorised users using a strong password, which is supplied each time by the user *Human*. This is a trigger condition for the potential risk that the user may forget the strong password.