Fast, reliable and secure solutions purpose built for research and education
Solutions for managing data and enabling collaboration virtually anywhere
Solutions for protecting campus networks and assets from cyber threats
Empower collaboration, discovery and innovation
Accelerate digital transformation
Inspire great teaching and learning
Transform the classroom experience
Discover, share and preserve collections
About our company and what we do
From pioneering the internet in Australia in 1989 to today
Our Board, Executive Team and Advisory Committee
Our company policies, statements and public reports
Explore opportunities and benefits of working with AARNet
Log in to view details about your AARNet services, including usage reports
Log in to send files of any size, quickly and securely
CloudStor is being decommissioned on 15 December, 2023.
Browse answers to frequently asked questions about our products and services
Check the current performance status for our services
Fast local access to popular international open-source content
Check to see if a web address is on-net
This post is all about authentication, how to create a strong passphrase, use a password manager and enable multi-factor authentication.
Authentication is the act of proving one’s user identity for accessing systems, this is usually a password / passphrase.
A password is a secret word or series of letters that is used to access an account.
A passphrase is a series of words at random (a minimum of four) put together to create your password.
It is highly recommended that your accounts have unique passwords assigned to them, this will prevent cyber criminals from compromising multiple accounts if they are able to gain access to your userID and password from one account.
At AARNet, the minimum password length is 14 characters long with a mix of uppercase, lower case, number and special characters. Guidance from the ACSC recommends the same.
How to create a strong password/passphrase?
To create your own strong password/passphrase, think of four random words and put them together or alternatively you could think of a long phrase and use the first letter (or few letters). Be creative when adding numbers and special characters to your password.
Or alternatively, use a password generator and set the number of characters and complexity requirements and watch it generate a random password for you, these can be stored in a password manager.
It is recognised that remembering multiple passwords across different accounts is difficult, and people tend to write down their passwords in a book or a sticky note near their devices or in their mobile devices.
A password manager is a tool that helps you securely store your passwords, and may also have the ability to generate random passwords for you to assign to accounts. It requires you to remember one password to access the account.
When selecting a password manager to use, ensure that you use one that is reputable and from a trusted source.
Some password managers applications available include (but not limited to) : 1Password, LastPass, BitWarden and Dashlane.
How to secure your password manager:
· Use a long password to access your password manager
· Enable multi factor authentication
Multi-factor authentication (MFA) is one of the most effective ways to protect against unauthorised access to your valuable information and accounts. MFA requires a combination of something you know (pin, password), you possess (token, card) or something you inherit (finger print, retina). Multi-factor authentication
Where possible, enable multi factor authentication for your online accounts, and use authenticator applications and physical tokens where possible. While email and SMS can be used to receive pins, use these as a last resort, they are the least secure methods of multi-factor authentication as they can be more easily compromised (e.g. email account is hacked, contact details changed or sim swapped).
ACSC guidance on enabling MFA for select accounts (e.g. Facebook, LinkedIn, Twitter, Microsoft)