/
PreVeil Express Password Change Requirements

PreVeil Express Password Change Requirements

Platform: PreVeil Express

Applicable Date: 11/4/25

PreVeil is introducing new password requirements for remote password validation against at least 2 different databases, to meet the FedRAMP IA-5(1) requirements for password management for our PreVeil Express users.

Security requirements state that for compliance, a password must be checked for:

  • “commonly used, compromised, or expected passwords, including those from breach corpuses, dictionary words, and repetitive or sequential characters.”

  • “context-specific words, such as the service name, username, and their derivatives.”

In the following four scenarios, we will check the password against a database of commonly used, breached, or compromised passwords, and will not allow the user to pick from those passwords. Moreover, we will also do this check on existing user accounts when logging in and force users to change their passwords if found to be on the aforementioned database.

Note: We understand that finding a secure and compliant password can be difficult, and if you're struggling to do so, we recommend using a password manager to assist you. A good password manager will not only provide you with a place to store your passwords, but will also have functionality that can generate strong and secure passwords for you.

 

New Account Creation

During the process of creating a PreVeil Express account, you will be asked to set a password for that account. If the password you select is found to be commonly used, breached, or compromised, you will see this error and will need to select another option for your PreVeil Express account password.

image-20251104-190038.png



Logging Into Existing PreVeil Account

For our existing PreVeil users, if you go to log in to your PreVeil account with a password that is commonly used, breached, or compromised, you will be prompted upon your next login to change that password to a new one.

image-20251104-195326.png

 

Password Change

If you attempt to change your password to one that is commonly used, breached, or compromised, you will see this error and will need to select another option for your PreVeil Express account password.

image-20251104-190158.png


Forgot Password

If you forget your password and are going through the steps to recover it, and you change it to one that is commonly used, breached, or compromised, you will see this error and will need to select another option for your PreVeil Express account password.

image-20251104-190822.png