Discuss why many practices require users to change their
passwords after a specified period, and why they do not allow users
to reuse the same passwords over and over again.
For data integrity and security; makes sure that passwords remain secure; using the same password over and over makes it easier for an unauthorized user to access one's account. So the regular change also reduces the ability of unauthorized users to beat the password and get access.
Implementations: It varies with amount of security the password should provide, so if security is highly important than the period after which you should change the password will should shorter and if it is not that important than a larger period can be there.
In general practice maximum password age is kept 30/60/90 days depending on the security requirement.
Get Answers For Free
Most questions answered within 1 hours.