CalNet IS-3 Passphrase Reset Project

Overview

CalNet IS-3 Passphrase Change Project is an initiative intended to align CalNet with new passphrase requirements laid out in the latest update of the University of California’s systemwide Information Security Policy, IS-3.

On September 1, 2020, these new passphrase requirements were activated at UC Berkeley. All passphrases created or changed on or after September 1, 2020 meet these new IS-3 requirements. All other users will be required to update their passphrase. This requirement does not apply to Alumni or Sponsored Guests.

Why the change?

The new version of IS-3 requires that we follow different passphrase standards. These requirements were added to CalNet passphrase tools and as of Sept. 1, 2020, any new passphrases created or changed meet the new standards. We will roll out these requirements to cohorts per the below schedule. 

What changed?

The regular passphrase increased in length from 9 to 12 characters and people can now select to use a long passphrase (more than 20 characters) with no complexity requirements. 

How to Get Started

Follow these simple steps to update your CalNet passphrase:

  1. Review and update or add a Recovery Email Address

  2. Change your Passphrase to meet the CalNet Passphrase Requirements - Do not reuse this passphrase for any other account!

  3. Sign up for a free LastPass Premium account to keep your passphrase safe.

FAQs

  1. What if my old passphrase already meets the new requirements? The system only knows that you meet the new requirements if you changed your passphrase after September 1, when the technical requirements were in place.

  2. Can I reuse a previous passphrase? No, the system will not accept reused CalNet passphrases

  3. I can't remember a bunch of passwords, can't I just reuse a passphrase that I use for my other site? No! Sites can get breached and attackers can stuff your credentials into other accounts to see if you’ve reused your passphrase. Also, this is why you should sign up for a free LastPass Premium account and leverage LastPass to create and manage unique passphrases for all your accounts.

Project Milestones

Important Dates

Changes to passphrase requirements in production

Sept. 1, 2020

LastPass available to campus employees, students, affiliates

Oct. 1, 2020

Begin Pilot

November 15, 2020

Cohort 1 Deadline

December 15, 2020

Cohort 2 Deadline

February 28, 2021

Cohort 3 Deadline

April 30, 2021

 

Details and Additional Information

CalNet's Manage My CalNet Account Page

For specific questions contact calnet-admin@berkeley.edu

Related Links: