Key characteristics of this type of password policy include:
A: Every 3–6 months is a good practice, or immediately if you suspect any suspicious activity. 69collegerules password