4.4: Use Unique Passwords

CSF v1.1 References:

Threats Addressed:


Next Version:

Control Statement

Where multi-factor authentication is not supported (such as local administrator, root, or service accounts), accounts will use passwords that are unique to that system.

[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]