CredVerify™: Detect. Verify. Prevent.
NIST Password Compliance Check
VeriClouds CredVerify™ helps enforce the NIST password requirement guidelines for IdPs by screening new passwords against lists of commonly used or compromised passwords. The types of lists recommended by the NIST 800-63b, sec 220.127.116.11 Memorized Secret Verifiers guidelines include:
- Passwords obtained from previous breach corpuses
- Dictionary words
- Repetitive or sequential characters (e.g. ‘aaaaaa’, ‘1234abcd’)
- Context-specific words, such as the name of the service, the username, and derivatives thereof