Updated NIST password guidelines — what do you think of the recommendation to include emojis as acceptable characters?

Identity & Access Management (IAM)Security Frameworks (NIST, CIS, CSF)

Very positive – Offers more flexibility & personalization19%

Somewhat positive – Could enhance security if used correctly47%

Neutral – I doubt it will significantly impact security25%

Somewhat negative – May lead to predictable patterns9%

Very negative – Complicates password creation without much benefit

68 PARTICIPANTS

328 views1 Comment

Sort by:

VP & CISO in Healthcare and Biotech2 months ago

Most users want to logon quickly. Finding emojis when having to enter passwords is going to take longer to logon, especially when you logon from a platform that doesn't make it easy to find them.

Content you might like

What key learnings has your organization gained from the cloud outages that we’ve seen this year with Azure, AWS or Cloudflare? Have any of these outage events led you to implement additional resilience measures, or make other changes?

What integration challenges have you encountered when implementing external AI solutions, and how has that changed your approach to vendor selection to minimize these risks?

TPRM — do you currently have unassessed third parties?

None – we’ve got all our bases covered18%

Just a handful – a few may have slipped through the cracks53%

Quite a few – still some on our to-do list28%

A lot – we’re playing catch-up1%

Don’t know/other

View Results

Which of these tools are you using to monitor/identify shadow AI use in your organization? (Choose all applicable to you)

SaaS discovery solution (like Netskope or Cisco Umbrella) 25%

CASB tool 38%

Packet sniffing (deep packet inspection) tool 29%

EDR tool/platform 21%

Something else (please share in a comment) 17%

N/A — we’re not currently using any tools to track shadow AI6%