Shared Network Resource Password Policy

Executive Memorandum 01-004

February 23, 2001

From: Manuel A. Esteban, President

Subject: Shared Network Resource Password Policy

SHARED NETWORK RESOURCE PASSWORD POLICY

Background

The Office of the University Auditor of the California State University is responsible for reviewing and reporting on campus compliance with the Financial Integrity and State Manager's Accountability Act (FISMA) passed by the California Legislature in 1983. One of the recommendations from the FISMA review performed at CSU, Chico in early 2000 was that current password policies be strengthened to reduce the risk of unauthorized access to campus systems. CSU, Chico has developed a policy to address this recommendation and to implement procedures to enhance the password security on these shared resources.

Policy

On the recommendation of the Office of the Vice Provost for Information Resources, and after discussion with Cabinet, I accept the specific recommendations shown in Attachment A. Information Resources has developed procedures to ensure that password security is maintained at an acceptable level, and the procedures shall serve as official university policy. Information Resources is responsible for implementing new procedures, which will be reviewed annually and updated when appropriate.

Attachment A