Password and Account Security

Strong passwords are a vital component to securing your information. Make your password complex and keep it private.

When selecting a password, choose something you will remember. Suggestions include:
  • The initial letters from an easily remembered phrase, interspersed with numbers. For example: Ip@15ttf ("I Pledge Allegiance To The Flag", with a graduation date in the middle);

  • Combining the initials of parents or a sibling with a wedding or other anniversary. For example: EB920tb

 

Password Security Tips

When choosing a password it is important that it is complex and well-guarded. Your password should contain upper and lower-case letters, numbers and special characters. To check the strength of you passwords you may use Microsoft's Password Checker.
 
NOTE: Stevens will NEVER request passwords or other personal information via email or over the phone. Messages requesting such information are fraudulent and should be deleted. Phone call attempts to obtain your Stevens password, should be followed up with a call to Stevens Help Desk at 201-216-5500. These are examples of social engineering and phishing attacks.
 
You should never use your Stevens passwords for other accounts. Your Stevens passwords should be unique and not be similar to those you may have used elsewhere. If someone compromises another account that you use, there is a greater risk of your Stevens accounts becoming compromised if your password is the same or similar to your compromised account.
 
Passwords should never be written down for others to see, or stored in plain text. Information Technology recommends using an encrypted password manager to store passwords. Examples of such managers include KeePass for Windows/Mac and Mobile Devices.  
 
You should change your passwords often. This shortens the window an attacker has to compromise your account. Some Stevens accounts require regular password changes. Please change these passwords to ensure continuous access to your accounts.
 

Compromised Accounts

Accounts can be compromised in a number of ways. Hackers use programs that guess passwords - often called "cracking". Users may also reveal their passwords, either as victims of social engineering or even knowingly to colleagues. Never give out your password, even to your best friend. Before entering any account information be sure to verify that you are logging into a Stevens system. If you have any questions or concerns do not hesitate to contact the IT Help Desk.
 
If you believe one of your accounts has been compromised, change your password immediately. If you think any of your Stevens accounts have been compromised, please contact the Information Technology Help Desk at www.stevens.edu/helpdesk or 201-216-5500 immediately after changing your password.