Clicky

Blog article /4 MIN READ

Tips for keeping your Social Media Archive safe and secure

We all know data security and data privacy are important. To help you keep your social media archived data safe and secure, here are some recommendations.

We all know data security and data privacy are important. To help you keep your social media archived data safe and secure, here are some recommendations from NIST (US National Institute of Standards and Technology) and tips from the Australian Signals Directorate.

To help you keep your Brolly social media archive and your other important information safely protected from unauthorised access we have complied for you a number of recommendations from the latest US National Institute of Standards and Technology Password Guidelines (https://securityboulevard.com/2021/12/nist-password-guidelines-2021-challenging-traditional-password-management/) and password tips from Australian Signals Directorate (https://www.cyber.gov.au/).

NIST recommendations:

Recommendation 1 – Remove periodic password change requirements
It was found that a security policy of making users frequently change their passwords actually makes security worse. With so many passwords to try to remember and change, users will resort to changing their passwords in predictable ways.

Recommendation 2 – Require length, but remove password complexity
Password length, not complexity, is what makes a password harder to hack. This is why NIST recommended a minimum password length of 8 characters but has removed the recommendation of password complexity as users generally add complexity by simple, predictable means (adding a “1” or “!” at the end) and then reuse this password from account to account.

Recommendation 3 – Implement screening of new passwords
New passwords should be checked against a list of commonly used, expected or compromised passwords such as dictionary words, repetitive strings, variations on the site or platform name or commonly used passphrases. This will make it harder for cybercriminals to guess the password.

Strong Password Tips

In addition to the NIST recommendations, the Australian Signals Directorate and the Australian Cyber Security Centre provide a wealth of good information on cyber security. Brolly has distilled 4 tips to help you set strong passwords or catchphrases:

Tip 1 – create a catchphrase, rather than a password
This should be by combining at least 4 unrelated words to a catchphrase

Tip 2 – use a combination that is easy for you to remember
Don’t choose a catchphrase that is common (“The quick brown fox jumps…”) or easy for others to guess

Tip 3 – use a separate password for each account and device
Sharing your password across multiple accounts and devices means that if one is compromised, there is a significant risk the others could be as well

Tip 4 – enable Multi-factor Authentication (MFA) if it is available
MFA offers significantly better security against cyber attacks as more than one proof of identity is required to access your account.

Brolly adds the option of MFA for your account 

Following the latest NIST Policy update (NIST Policy 800-63B updated on Mon, 02 May 2022), Brolly has implemented changes to our security features in line with the recommendations to help you keep the important information in your Brolly social media archive safe and secure These include:

Our new Multi-factor Authentication (MFA) feature is now available for your Brolly account. We are confident this improvement and the password requirement changes will ensure your Brolly account is protected against unwanted cyber-attacks and your data is safe and secure.

References

  1. Australian Cyber Security Centre, Get smarter with passwords. Available from: https://www.cyber.gov.au/acsc/ view-all-content/news/get-smarter-passwords
  2. NIST Special Publication 800-63B, Digital Identity Guidelines. Available from: https://pages.nist.gov/800-63-3/sp800-63b.html
  3. Australian Cyber Security Centre, Multi-factor authentication. Available from: https://www.cyber.gov.au/mfa

[contact-form-7 id="688" title="Newsletter join form"]
<div role="form" class="wpcf7" id="wpcf7-f688-o1" lang="en-AU" dir="ltr"> <div class="screen-reader-response"><p role="status" aria-live="polite" aria-atomic="true"></p> <ul></ul></div> <form action="/blog/tips-for-keeping-your-social-media-archive-safe-and-secure/#wpcf7-f688-o1" method="post" class="wpcf7-form init" novalidate="novalidate" data-status="init"> <div style="display: none;"> <input type="hidden" name="_wpcf7" value="688" /> <input type="hidden" name="_wpcf7_version" value="5.6.1" /> <input type="hidden" name="_wpcf7_locale" value="en_AU" /> <input type="hidden" name="_wpcf7_unit_tag" value="wpcf7-f688-o1" /> <input type="hidden" name="_wpcf7_container_post" value="0" /> <input type="hidden" name="_wpcf7_posted_data_hash" value="" /> <input type="hidden" name="_wpcf7_recaptcha_response" value="" /> </div> <div class="row form-t step"> <div class="form-list form-next"><span class="wpcf7-form-control-wrap" data-name="First_name"><input type="text" name="First_name" value="" size="40" class="wpcf7-form-control wpcf7-text wpcf7-validates-as-required" aria-required="true" aria-invalid="false" placeholder="First name" /></span> </div> <div class="form-list form-next"><span class="wpcf7-form-control-wrap" data-name="Last_name"><input type="text" name="Last_name" value="" size="40" class="wpcf7-form-control wpcf7-text wpcf7-validates-as-required" aria-required="true" aria-invalid="false" placeholder="Last name" /></span> </div> <div class="form-list"><span class="wpcf7-form-control-wrap" data-name="email"><input type="email" name="email" value="" size="40" class="wpcf7-form-control wpcf7-text wpcf7-email wpcf7-validates-as-required wpcf7-validates-as-email" aria-required="true" aria-invalid="false" placeholder="Email" /></span> </div> <div class="form-submit"><input type="submit" value="Join the list" class="wpcf7-form-control has-spinner wpcf7-submit" /> </div> </div> <input type="hidden" name="text" value="Web" class="wpcf7-form-control wpcf7-hidden" /> <input type="hidden" name="text" value="Newsletter" class="wpcf7-form-control wpcf7-hidden" /> <div class="wpcf7-response-output" aria-hidden="true"></div></form></div>