Information Security Guide for Students

Password Security

Unisa is continuously enhancing the security of its digital services to ensure that you, our student, are protected.

You have a part to play too. One of the ways is to ensure that you adopt good practice with regard to managing your password.

Password Complexity and Password Strength

Password Complexity and Password Strength are crucial concepts in cybersecurity aimed at protecting user accounts and sensitive information from unauthorized access. Here’s a detailed explanation of each:

Password Complexity

Password complexity refers to the requirements set to ensure a password is difficult to guess or crack. This typically involves:

Length: The number of characters in a password. Longer passwords are generally more secure.

Character Variety: Using a mix of different types of characters, such as:

Uppercase letters (A-Z)
Lowercase letters (a-z)
Numbers (0-9)
Special symbols (!,#,@,$,%,^ etc.)

For example, a complex password might look like “G4$yP#7kL!jh”.

Password Strength

Password strength measures how resistant a password is to various types of attacks, such as brute force attacks, dictionary attacks, and others. Strength is influenced by:

Length: Longer passwords exponentially increase the number of possible combinations.

Entropy: A measure of randomness or unpredictability in a password. Higher entropy means higher strength.

Avoiding Common Patterns: Avoiding easily guessable patterns or words (like “password123” or “qwerty”).

For example, “PartialTableObsidianScan” is a strong password because it combines length and unpredictability despite not having special characters.

Importance of Password Complexity and Strength

Protection Against Attacks: Complex and strong passwords are more resistant to brute force and dictionary attacks, where attackers use automated tools to try numerous combinations until the correct one is found.

Data Security: Ensuring passwords are robust helps protect sensitive personal information, financial data, and confidential communications.

Compliance: Many regulations and standards (e.g., GDPR, HIPAA) require the use of strong passwords to protect user data.

Preventing Unauthorized Access: Complex and strong passwords help prevent unauthorized users from gaining access to systems and networks, thereby safeguarding against data breaches and other cyber threats.

Guidelines for Creating Strong Passwords

Minimum Length: Aim for at least 12 characters.

Mixed Character Types: Use a combination of uppercase, lowercase, numbers, and special characters.

Unpredictability: Avoid common words, phrases, and patterns. Instead, use a passphrase or a random string of characters.

Unique Passwords: Use different passwords for different accounts to limit the damage if one password is compromised.

Password Managers: Use password managers to generate and store complex passwords securely, making it easier to handle multiple strong passwords without the need to memorize them.

By adhering to these principles of password complexity and strength, students and staff can significantly enhance their cybersecurity posture and protect against unauthorized access to their digital assets.

Current minimum requirements for your Unisa passwords:

Must contain at least 12 characters
Must contain at least one uppercase letter
Must contain at least one lowercase letter
Must contain at least one number
Must contain at least one special character(!,#,@,$,%,^,etc.)

Also refer to information on Multi-factor Authentication which you need to have set up adequately for additional security and to use self-service features.

If you have forgotten your password, use the following self-service feature (requiring you to have set up MFA) Multi-factor Authentication

Manage your myLife account settings here