Y
Hacker News
new
|
ask
|
show
|
jobs
by
rjgray
370 days ago
ISO 27001 doesn't say this. The control implementation guidance (ISO 27002) specifically cautions against requiring frequent password changes.