The Security Swarm Podcast: New Password Guidelines from NIST

The latest edition of The Security Swarm podcast covers the recently updated password recommendations from NIST!

The Security Swarm Podcast

As this is the first time I’m posting an episode of the Podcast here, an introduction is in order!

The Security Swarm Podcast is the podcast I host during my day job at Hornetsecurity. The podcast focuses on security topics and features various experts in that field offering tips, tricks, and guidance for tackling the issues facing the cybersecurity industry.

In this episode

In this episode, I sit down with good friend Michael Posey and we discuss the updated Password guidelines from NIST publication 800-63B.

There are a number of notable changes:

• New minimum password length guidance - 8 characters at an ABSOLUTE minimum, but 15 characters or more is recommended.
• NIST recommends that password composition rules be removed. Ex: the requirement that your password contain a number and a special character.
• A change from “recommendation” to “shall not” require periodic password rotations UNLESS there is evidence of breach.
• Allow the use of ASCII and Unicode characters in passwords
• And others mentioned in the episode.

Watch the full episode

Where can I find the show?

The Security Swarm Podcast can be found at the various links below:

• The Hornetsecurity Website
• Youtube
• Spotify
• Apple Podcasts