top | item 44264444 (no title) clwg | 8 months ago This requirement is in section 8.3.9 of the PCI DSS[0], and only applies to single-factor authentication implementations, two-factor auth removes this requirement.[0] https://docs-prv.pcisecuritystandards.org/PCI%20DSS/Standard... discuss order hn newest throwaway72046|8 months ago Your broker/bank still needs to do it, unfortunately... someone please fix this :([0] https://www.finra.org/filing-reporting/entitlement/password-... Mtinie|8 months ago > If the password length is 12 to 15 characters, it will be valid for 180 days> If the password length is 16 to 32 characters, it will be valid for 365 daysMadness. load replies (1) dmoy|8 months ago What's the scope of that? Not consumer accounts I imagine? I haven't had to change my bank account passwords in over a decade.
throwaway72046|8 months ago Your broker/bank still needs to do it, unfortunately... someone please fix this :([0] https://www.finra.org/filing-reporting/entitlement/password-... Mtinie|8 months ago > If the password length is 12 to 15 characters, it will be valid for 180 days> If the password length is 16 to 32 characters, it will be valid for 365 daysMadness. load replies (1) dmoy|8 months ago What's the scope of that? Not consumer accounts I imagine? I haven't had to change my bank account passwords in over a decade.
Mtinie|8 months ago > If the password length is 12 to 15 characters, it will be valid for 180 days> If the password length is 16 to 32 characters, it will be valid for 365 daysMadness. load replies (1)
dmoy|8 months ago What's the scope of that? Not consumer accounts I imagine? I haven't had to change my bank account passwords in over a decade.
throwaway72046|8 months ago
[0] https://www.finra.org/filing-reporting/entitlement/password-...
Mtinie|8 months ago
> If the password length is 16 to 32 characters, it will be valid for 365 days
Madness.
dmoy|8 months ago