• Home
• Basic Computer Safety
• • Password & Personal Information
  • Viruses & Worms
  • Protect Your Computer or Device
  • Data Encryption
  • Resources
  Internet Crime
• Policies & Regulations
• University Security Control Standards
• Training & Education
• IT Security News & Alerts
• Report a Security Incident

Related Offices

• ISO
• Information Security & Privacy Office
• University Information Technology
• Campus Help Desk
• Hospital Help Desk
• Code of Conduct
• U Home Page

Password and Personal Information

Your Password

Your University Network ID (uNID) and its password give you access to many IT resources at the University of Utah. You choose your secure uNID password when you use the Campus Information System for the first time. The University has some guidelines about the uNID password you choose.

A minimum of 8 characters are required. Three of the following four items are required in the first 8 characters:

• Lower case letters
• Upper case letters
• Numbers
• Special characters (!, @, #, $, %, ^, &, *, (, ), ~, +)

For security reasons, do not use your uNID, or any part of your name, date of birth, social security number or any personal information that could identify you or those close to you. These guidelines are appropriate for all electronic passwords, not just your University Network password.

Easy-to-guess, "weak" passwords are the main way hackers gain access to system information. Keeping your passwords safe and hard to guess is critical to ensure information on your computer is not compromised. Choose a password that is easy for you to remember but hard for someone else to figure out. For example, you might say, "I have 2 dogs named Shep and Lassie." Create a password from that statement:

(I) (h)ave (2) (d)ogs (n)amed (S)hep (&) (L)assie. >> Ih2dnS&L

This password example incorporates all of the password guidelines.

Note: NEVER share your password with anyone.

Protect Your Personal Information

Don't send personal or financial information via email

Typically, email systems are not encrypted, meaning they aren't secure. It's a good habit to avoid sending any private information, such as SS#s or credit card numbers, via email.

Don't send personal or financial information over unsecure websites

A website is (reasonably) secure if the url begins with https:// and if there is a locked padlock in the bottom right corner of the browser window. This means the data is encrypted after you send it until it reaches its destination.

Stay Safe on Public Computers

Close out of browsers

Clear your cache and close out of your browser before you leave a public computer. Browsers keep a history of sites they have visited. Browsers that are left open can allow others access to your personal information.

Beware of the "remember me" option

This option allows internet browsers to remember your login and password to secure sites. Do not use this feature when accessing sites containing restricted or high risk information. In particular, do not use this feature when on a public access computer. See the Browser’s “Remember Me” Feature at Login Guidance for more information.

Your Personal Belongings

You need to be aware of your more tangible assets, as well. Don't leave your personal belongings unattended. Your purse, wallet, PDA, phone, laptop, etc., all contain personal information that can be exploited at your expense. Keep these items on your person at all times while you are in public. Shred documents that could be used to steal your identity, such as credit card offers. Don't leave mail in an unsecure mailbox - post bills and other financial or sensitive documents in a secure US Post Office box. Find out more about protecting yourself from Identity Theft.