What makes a password strong?
Keeping a unique password for each of your accounts ensures all your accounts remain secure in the event of a security breach. Here are a few tips for making and keeping good passwords.
A password is strong when it is something only you know. If you are not the only one who knows it, your account could be compromised. Here are some tips that will help keep your passwords to yourself:
- Make it long.
Passwords are often subject to brute force cracking, and any password with fewer than eight or nine characters is at risk for being compromised. Nowadays, passwords should be between 10 and 14 characters.
- Make it memorable.
A password is no good if you forget it after not using it for a time. Utilize word associations to get around this common issue without having to resort to writing it down somewhere.
Passphrases is a concept in which you create your password using a string of words. When creating your passwords, select words that have meaning to you but are not commonly known about you. This means that you should not be using your birthday, pet’s name or anything someone else already knows about you. Additionally, the passphrase should not be overly simplistic or indicate the purpose of the account or its function. “Password” is not a password.
- Make it complex.
Adding non-alphabetical characters such as numbers, capitals and symbols increases the complexity of the password. Therefore, the password becomes more secure the more of these you use. When creating your password, select one to three numbers, symbols and letters to capitalize. Substituting letters with numbers or symbols is a great way to incorporate complexity into a password.
- Make it easy to type.
Passwords are no good if you stumble every time you type it. When creating your password, consider how difficult it would be to hit the next character in the password. Beware of shoulder-surfers who may be watching you type your password. If you are having to slow down to type it, you are increasing the risk of it being compromised.
- Make it unique
Passwords are at risk when used for multiple accounts. If one is compromised, it only takes your username to compromise another. Managing one password for each account is difficult even with memorable and easy-to-type passwords.
- Give it layers
Multi-factor authentication is a great way to increase the security of your account in the event of a compromised password. Passwords are something you know. Multi-factor authentication uses something you have or something you are, such as a phone or fingerprint. Many accounts allow you to set up two-factor authentication – for example, sending a code to your phone. An attacker would likely not have access to your phone and your password; therefore, additional layers of authentication will increase the level of security on your accounts.
