•
NIST is updating its password policies to enhance security and user experience. The changes suggest increasing password length to at least 15 characters, removing complexity rules, screening for compromised passwords, eliminating expirations, and advocating for multi-factor authentication. These adjustments aim to reduce IT workload and improve productivity. Final guidelines are pending.