diff --git a/src/modules/authentication/authentication.constants.ts b/src/modules/authentication/authentication.constants.ts
new file mode 100644
index 0000000..d9bdd50
--- /dev/null
+++ b/src/modules/authentication/authentication.constants.ts
@@ -0,0 +1,9 @@
+import { IsStrongPasswordOptions } from 'class-validator';
+
+export const STRONG_PASSWORD_OPTIONS: IsStrongPasswordOptions = {
+  minLength: 8,
+  minLowercase: 1,
+  minNumbers: 1,
+  minSymbols: 1,
+  minUppercase: 1,
+};
diff --git a/src/modules/authentication/interface/grpc-controllers/dtos/create-authentication.request.dto.ts b/src/modules/authentication/interface/grpc-controllers/dtos/create-authentication.request.dto.ts
index f4ed5a1..18dd9ad 100644
--- a/src/modules/authentication/interface/grpc-controllers/dtos/create-authentication.request.dto.ts
+++ b/src/modules/authentication/interface/grpc-controllers/dtos/create-authentication.request.dto.ts
@@ -4,9 +4,11 @@ import {
   IsArray,
   IsNotEmpty,
   IsString,
+  IsStrongPassword,
   ValidateNested,
 } from 'class-validator';
 import { UsernameDto } from './username.dto';
+import { STRONG_PASSWORD_OPTIONS } from '@modules/authentication/authentication.constants';
 
 export class CreateAuthenticationRequestDto {
   @IsString()
@@ -19,7 +21,7 @@ export class CreateAuthenticationRequestDto {
   @ValidateNested({ each: true })
   usernames: UsernameDto[];
 
-  @IsString()
+  @IsStrongPassword(STRONG_PASSWORD_OPTIONS)
   @IsNotEmpty()
   password: string;
 }
diff --git a/src/modules/authentication/interface/grpc-controllers/dtos/update-password.request.dto.ts b/src/modules/authentication/interface/grpc-controllers/dtos/update-password.request.dto.ts
index ba76c1f..5bf7fb3 100644
--- a/src/modules/authentication/interface/grpc-controllers/dtos/update-password.request.dto.ts
+++ b/src/modules/authentication/interface/grpc-controllers/dtos/update-password.request.dto.ts
@@ -1,11 +1,12 @@
-import { IsNotEmpty, IsString } from 'class-validator';
+import { STRONG_PASSWORD_OPTIONS } from '@modules/authentication/authentication.constants';
+import { IsNotEmpty, IsString, IsStrongPassword } from 'class-validator';
 
 export class UpdatePasswordRequestDto {
   @IsString()
   @IsNotEmpty()
   userId: string;
 
-  @IsString()
+  @IsStrongPassword(STRONG_PASSWORD_OPTIONS)
   @IsNotEmpty()
   password: string;
 }