NIST logo

Other Operating Procedures: Passwords and Security

Topic List (click to go to topic):


Passwords and Security

Account set-up and password requirements

All accounts requests are initiated by the NanoFab Facility User Coordinator.   All users get access to the NanoFab Domain computers, the NanoFab file server and Sunray Thin clients.  These resources do not require separate user accounts.  Accounts on the CNST NanoFab Domain provide access for external users.  NIST internal users can use their NIST Gaithersburg Domain accounts to access these resources.  

The CNST NanoFab Facility follows the password requirement set by the NIST:  
  • Passwords cannot be shared.  This means that there must be just one user per user ID.
  • Do not allow anyone else to know your password.
  • Passwords must be at least twelve (12) characters in length.
  • Passwords must contain at least one digit, at least two alphabetic characters (uppercase and lowercase), and at least one special character.
  • Passwords must not be in a dictionary.  This means no names, places, etc. from any language.
  • Passwords cannot be a person’s username forward or backwards.
  • No character may be repeated more than five (5) times.
  • Passwords must not be trivial, e.g. asdf, qwerty, etc.
  • Good passwords contain case changes and multiple words.
  • Passwords must be changed once every 90 days.
  • Passwords cannot be reused.
  • Passwords used for our computer systems should not be used elsewhere.  Outside systems have varying levels of security and those passwords may be compromised.
  • Users must immediately notify the NOG Staff or CNST system administrators if they suspect their password has been compromised and must immediately change it.
Security Policies – general do’s and don’tsGeneral do’s and don’ts are summarized below and are also included within the CNST NanoFab Facility User Computer Security and Usage Policy document.

Do’s
  • Do remember that these machines are property of the United States Government.  Usage of NIST machines is a privilege, not a right.
  • Do log off systems when done so that others may use them.  If an account is left logged on and unattended for more than 30 minutes on one of these computers, the user may be logged off by the system administrators.
  • Do report any damage or loss of hardware, software, or data immediately to NanoFab staff members.
  • Do report any suspicious behavior to NanoFab Staff or the NanoFab User Office.
  • Do scan USB drives for viruses/malware when used on file retrieval computers.
  • Do save your data to the NanoFab file server and retrieve it promptly.
Don’ts
  • Do not attempt to alter computer settings.
  • Do not allow anyone else to know your password.
  • Do not use USB drives on tool computers. This functionality has been disabled
  • Do not save your data locally to tool computers. 
  • Do not attempt to access systems for which you have not been authorized.
  • Do not use of CNST NanoFab information technology resources to engage in illegal or unethical activities.


  Previous Topics

  Next Topics  →