Password policy does not require lowercase characters

Authentication

Password policy does not require lowercase characters

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

AWS CIS
Brazilian General Data Protection (LGPD)
CCM-CSA
CCPA
cis_8
CSA CCM
GDPR
HITRUST
ISO/IEC 27001
Mitre ATT&CK v12
New Zealand Information Security Manual
NIST 800-171
NIST 800-53
Orca Best Practices
UK Cyber Essentials

Description

It was found that the password policy does not require lowercase characters, Without lowercase characters, the password is weaker and much easier to crack.

Recommended Mitigation

It is recommended to enforce passwords to contain at least one lowercase character.

Password policy does not require lowercase characters

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS