BSI Security Measures

By Miriam Goldfarb posted 01-03-2020 13:58


Data security and account breaches are concerns for anyone who accesses accounts electronically. As software that may store potentially sensitive data, BSI has measures in place that meet today’s most stringent security standards. One such measure is the need for BSI account holders to have strong passwords. Another measure is the availability of single sign-on authentication to access BSI. Lastly, BSI has one database preference that can manage how long passwords remain valid and another preference that can lock inactive accounts.

A strong password has a high degree of complexity and is important because it is the first line of defense against hackers who can guess simple password combinations. BSI has adopted stronger password complexity standards by requiring that passwords be 8 characters or longer, contain at least one number, an upper case letter, a lower case letter, and a special character. Passwords longer than 8 characters are typically stronger than shorter passwords and passwords with several numbers and special characters are stronger still. Security experts recommend using a password phrase such as “#WeThnkBSIsGr8! “. BSI users who do not yet have strong passwords are temporarily grandfathered in so that their accounts are still accessible. When it is time to update their password though, users will need a password with the new complexity requirements. Users should also note that they cannot repeat any of their previous 20 passwords.

Single sign-on (SSO) functionality has gained popularity so that users can access multiple applications using only one set of login credentials. The credentials are typically those that a user enters to access their organization’s electronic applications but many users wonder how SSO can be safer than separate passwords for each application. One reason is that it is safer to store credentials in one location as opposed to several different sites. Another reason is that most organizations that offer SSO also require two-factor authorization. Two-factor authorization means that in addition to a user entering their credentials, they must also enter a personal identification number or accept a message sent to their smartphone. This combination is not only secure but also means that users are spending less time remembering passwords and more time with their work.   

The last topic of BSI security involves automatic account lockout features. Repository managers have a busy schedule and sometimes it can be difficult to keep up with employee accounts. BSI has a preference that makes an account inactive after a specified number of days of inactivity. By default, a user’s account will become inactive after 90 days of disuse. Should a database owner want a shorter lockout time, they can ask a BSI support representative to change the value. Also, a database owner can ask a BSI support representative to have accounts become inactive after a specified number of failed login attempts.  

Utilizing BSI’s protective measures, database owners can feel confident that only designated users will have access to their data. With increased password complexity requirements, SSO login availability, and lock-out features, BSI not only offers data security, but peace of mind.