Password Frequently Asked Questions


Why should I use difficult-to-guess passwords?

What makes a good (complex) password?  

What are some alternate methods for changing my passwords?

Why do I have to follow the new password policy if I do not handle patient information?

What are the HIPAA Regulations concerning passwords?

Where in HIPAA does it say that we have to use complex passwords and change them every 90-days?

The HIPAA Privacy Rule does not specifically say that passwords must be complex and changed every 90 days.  Who made the decision about this new policy for UCD?

Who can I contact about HIPAA security and other HIPAA questions?

Is there an FAQ that addresses other HIPAA password questions?

Will I lose my work if I change my password while I have applications open?

How am I supposed to remember a complex password, especially if I have to change it every three months.

I have trouble remembering my password.  Are there any approved methods for storing my password?

I have a lot of passwords. How do I keep them all straight?

Once the expiration date has past, can I still change my password?

Will I be notified that my password is about to expire?

What if the computer I used is shared with other people?

Anatomy of a User Name (or:  User ID, Login ID, Login Name, Account Name)

What is the difference between my user name and my email name?

How do I find out what my user name is?