Extensive research showed that old-school password rules made them harder for users to remember but easier for hackers to guess.
As a result, standards like NIST 800-63B now require checking against commonly used, easy to guess, or compromised passwords. They also recommend eliminating periodic password expiration, requiring reset only when compromise is suspected.
See how Enzoic:
- improves the security of passwords - the authentication layer already in use
- prevents reusing compromised credentials and detects when existing credentials become vulnerable
