, , ,

How to Create Strong Passwords & General Password Guidelines

Secure PasswordsAs we use the internet for just about everything, including financial services, online banking, shopping, social media and more, one thing is clear. Strong password protection is critical! It’s important to understand that humans are not the main concern when it comes to guessing passwords. Instead, we are at the mercy of password cracking software that runs billions of different password combinations against ours to enter the sites we are trying to protect ourselves on.

In addition to tips for creating sturdy passwords that are likely to stump hacking software, here are general guidelines to help protect your online accounts and passwords.

  1. Create strong passwords:

    • Use combinations of uppercase and lowercase letters, numbers, punctuation and special characters.
    • Strong passwords are 8 to 20 characters long – passwords over 9 characters are difficult for hacking software to crack.
    • If you must memorize passwords, use the first letter of each word in a phrase and intersperse special characters.  ie Humpty Dumpty – H&D&s&o&a&w&H&D&h&a&g&f. But on most sites you should include numbers too.
    • Avoid including usernames in your passwords in any form (backwards, doubled etc).
    • Don’t use obvious passwords such as names and numbers pertaining to you or your family. “Password1”, is one of the most commonly used passwords. “Monkey” and “0123456” are popular too. Stay far away from these.

  2. Check the strength of your passwords:

  3. Keep your passwords private:

    • Don’t store password lists in unencrypted computer documents. These lists can be accessed if computers are hacked.
    • Avoid storing written passwords close to your computer.
    • Pairing passwords with account names and numbers on paper or technology is risky but it’s worse if you carry that information with you.  Purses, wallets, cell phones, tablets and computers are easily stolen and why be an easy victim?
    • Refrain from storing passwords in cell phones.  
    • Do not share your passwords with others.
    • Be cautious when an app asks you to enter a password to another site in order to use that app. 

  4. Do not use the same logons and passwords for multiple accounts. 

    • Hackers will obtain passwords from sites that are easier to break into and will try those same passwords on more secure sites.

  5. Do not have your browser remember passwords for you.

    Do not allow software or browsers to save your passwords

    Do not have browsers remember your passwords for you

  1. Change your passwords regularly:

    • Suggested frequency is every 3 months.  If that’s not realistic for you, change them as often as you can manage. (I rarely change my own passwords because they are all extremely secure passwords created by my Password Manager.)

  2. Use a Password Manager or Biometrics:

    • Use a password manager to create unique and strong passwords and to remove the need to memorize a huge volume of passwords. Click here for the reasons I like my Password Manager.  Research options such as 1Password, LastPass, KeePass, KeePassX, and RoboForm.
    • Biometrics can replace passwords or they can be used in combination with them. (I use them in combination myself.)

      Iris scan, facial recognition, fingerprinting

      Biometrics: Iris Scan, Fingerprint Reader, Facial Recognition

 
With never ending data breaches, elaborate phishing scams and other types of cybercrimes being a daily occurrence, it is wise to take advantage of all levels of protection available.  Strong password protection is the easiest place to start!

Until next time … Stay Cyber Safe!

You might also like
My password manager: 13 reasons why.
What do you do when you or someone you know has been hacked or spoofed?
How to Keep Track of Passwords and Usernames