CompromisedPasswordFiltering

From UMIACS
Revision as of 21:45, 9 January 2025 by Mbaney (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

UMIACS passwords, in accordance with best practices recommended by NIST, does not allow passwords to be used that have been included in a known data breach. UMIACS systems check that a new password you wish to set is not among hundreds of millions of compromised passwords.

We use the Have I Been Pwned (HIBP) corpus of passwords as the data source of passwords that are checked against.

Retrieved from "https://wiki.umiacs.umd.edu/umiacs/index.php?title=CompromisedPasswordFiltering&oldid=12384"