Академический Документы
Профессиональный Документы
Культура Документы
QUESTIONNAIRE
1 Source: www.knowledgeleader.com
Platform 1 Platform 2 Platform 3 Platform 4
18. Are users advised to choose passwords that
are not common words or easily determined
personal information like birthdays, names of
family members, initials, etc?
19. Are users restricted from re-using the same
password?
20. If yes, how many new passwords must be
used before allowing a repeat?
21. Are users restricted from changing their
passwords more than once a day?
22. Are additional passwords required for access
to sensitive or confidential data?
23. Are passwords ever written, printed,
displayed, or stored in a data file in
unencrypted form?
24. Is the user ID suspended after a specific
number of unsuccessful attempts to gain
access?
25. If yes, indicate the number.
26. Is the workstation deactivated after a specific
number of unsuccessful attempts to gain
access?
27. If yes, indicate the number.
28. Does the user ID lock, go to a screen saver
password, or deactivate after a specified
period of inactivity?
29. If yes, indicate number of minutes before
locking, screen saver, or deactivation.
30. Does the reactivation of a disabled user ID or
workstation require human involvement (help
desk or information systems personnel)?
31. Can specific functions within software
systems be restricted to specific workstations?
32. Are user ID and password standards for this
platform formally documented by the
organization?
33. Do users (including information systems
personnel) sign agreements that address
security and confidentiality covering this
platform?
2 Source: www.knowledgeleader.com