Skip to content
BOL Conferences
Forums · Active Threads · Forum Rules · Mark All Read · Log In
BankersOnline.com Forums Banker Forums eBanking / Technology any guidance out there?
Thread Options
#786969 - 08/01/07 03:09 PM any guidance out there?
A_G Offline
10K Club
Joined: Jul 2004
Posts: 18,989
Does anyone know of any regulatory guidance out there (I found some from Microsoft) which dictates account policy settings. For example, max ages of passwords before they are changed, password lengths, account lockout settings?

I'm off to seach the FFIECs Info. Security booklets now...but figured I would ask because maybe someone has something handy.

Thanks.
_________________________
With the lights out, it's less dangerous.

Return to Top
eBanking / Technology
#905824 - 02/15/08 06:19 PM Re: any guidance out there? A_G
Tesla Offline
Power Poster
Joined: Nov 2003
Posts: 3,726
Did you ever find anything on this? I am looking too and so far I have not found anything.

Return to Top
#906182 - 02/17/08 12:44 AM Re: any guidance out there? Tesla
Andy_Z Offline
10K Club
Andy_Z
Joined: Oct 2000
Posts: 27,754
On the Net
As I recall the FFIEC has guidance for the banks (your staff) but not customers. You have guidance on multifactor authentication for them, but that is all I am aware of. Prudent guidelines on your part would address this as to passwords, length, words, frequency of change, etc. I don't think they have found enough problems to require banks to do more than multifactor.
_________________________
AndyZ CRCM
My opinions are not necessarily my employers.
R+R-R=R+R
Rules and Regs minus Relationships equals Resentment and Rebellion. John Maxwell

Return to Top
#906534 - 02/19/08 04:25 PM Re: any guidance out there? Andy_Z
Tesla Offline
Power Poster
Joined: Nov 2003
Posts: 3,726
Thanks!
_________________________
It's not that I take life for granted. It's only that the good won't make it. Innocence dies, while Villany Thrives.

Return to Top

Moderator:  Andy_Z