💼 8.2.3 Passwords/passphrases must have complexity and strength.
- Contextual name: 💼 8.2.3 Passwords/passphrases must have complexity and strength.
- ID:
/frameworks/pci-dss-v3.2.1/08/02/03 - Located in: 💼 8.2 In addition to assigning a unique ID, ensure proper user-authentication management for non-consumer users and administrators on all system components.
Description
Meet the following:
- Require a minimum length of at least seven characters.
- Contain both numeric and alphabetic characters.
Alternatively, the passwords/ passphrases must have complexity and strength at least equivalent to the parameters specified above.
Similar
- Sections
/frameworks/pci-dss-v4.0/08/03/06
- Internal
- ID:
dec-c-e5201b91
- ID:
Similar Sections (Take Policies From)
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 PCI DSS v4.0 → 💼 8.3.6 If passwords/passphrases are used as authentication factors to meet Requirement 8.3.1, they meet the minimum level of complexity. | 1 | 2 |
Similar Sections (Give Policies To)
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 PCI DSS v4.0 → 💼 8.3.6 If passwords/passphrases are used as authentication factors to meet Requirement 8.3.1, they meet the minimum level of complexity. | 1 | 2 |
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (2)
| Policy | Logic Count | Flags |
|---|---|---|
| 📝 AWS Account IAM Password Policy minimum password length is 14 characters or less 🟢 | 1 | 🟢 x6 |
| 📝 AWS Account IAM Password Policy Number of passwords to remember is not set to 24 🟢 | 1 | 🟢 x6 |
Internal Rules
| Rule | Policies | Flags |
|---|---|---|
| ✉️ dec-x-f7c2faac | 1 |