[CORE-283] Security enhancements Created: 21/Dec/17  Updated: 25/Apr/18  Resolved: 17/Apr/18

Status: Resolved
Project: i2b2 Core Software
Component/s: None
Affects Version/s: None
Fix Version/s: 1.7.10

Type: Story Priority: Major
Reporter: Mike Mendis Assignee: Janice Donahoe
Resolution: Done Votes: 0
Labels: wikirelease
Σ Remaining Estimate: Not Specified Remaining Estimate: Not Specified
Σ Time Spent: Not Specified Time Spent: Not Specified
Σ Original Estimate: Not Specified Original Estimate: Not Specified

Sub-Tasks:
Key
Summary
Type
Status
Assignee
CORE-285 Log number of attempted logins Sub-Task Resolved Janice Donahoe  
CORE-286 Log admin functions Sub-Task Resolved Janice Donahoe  
CORE-287 Lockout after failed logins Sub-Task Resolved Janice Donahoe  
CORE-288 Enforce complex passwords Sub-Task Resolved Janice Donahoe  
CORE-289 Mandatory password change Sub-Task Resolved Janice Donahoe  
CORE-300 Do not allow current password to be u... Sub-Task Resolved Janice Donahoe  
Rank: 0|hzzzyn:
Sprint: v1710.1
Participant/s:

 Description   
*** Part of the security enhancements update ***

The security enhancements are a group of new features that can be further sorted into two categories of improvements:

Auditing improvements
    CORE-285 Log number of attempted logins
    CORE-286 Log admin functions

Password Management improvements
    CORE-287 Lockout after failed logins
    CORE-288 Enforce complex passwords
    CORE-289 Mandatory password change
    CORE-300 Prevent repeat password

Each of the above features is listed as a sub-task of this story.


 Comments   
Comment by Janice Donahoe [ 17/Apr/18 ]
Tested and verified all the security features are working as designed. All of them will be included in the 1.7.10 release.
Generated at Mon Mar 30 06:25:19 UTC 2020 using JIRA 7.6.3#76005-sha1:8a4e38d34af948780dbf52044e7aafb13a7cae58.