General

Creating a Good Password

October 20, 2021 /

Creating a Good Password

 

 

Our security tip today is shamelessly lifted (actually, they said I could use it) from the Cybersecurity & Infrastructure Security Agency’s web site. They do such a good job of summarizing best practices for password creation that I would have a hard time improving on it! Visit their site at Cybersecurity & Infrastructure Security Agency. A lot of good information is presented there, especially if you are on the path to a job in the information security field.

 

CREATING A PASSWORD

Creating a strong password is a critical step to protecting yourself online. Using long, complex passwords is one of the easiest ways to defend yourself from cybercrime. No one is immune to cyber risk, but #BeCyberSmart and you can minimize your chances of an incident.

 

SIMPLE TIPS

  • Use a long passphrase. According to National Institute of Standards and Technology (NIST) guidance, you should consider using the longest password or passphrase permissible. For example, you can use a passphrase such as a news headline or even the title of the last book you read. Then add in some punctuation and capitalization. An even better idea is to use the first letter of each word in a phrase. This helps you remember the password, but makes it much harder to guess the phrase!
  • Don’t make passwords easy to guess. Do not include personal information in your password such as your name or pets’ names. This information is often easy to find on social media, making it easier for cybercriminals to hack your accounts.
  • Avoid using common words. Substitute letters with numbers and punctuation marks or symbols. For example, @ can replace the letter “A” and an exclamation point (!) can replace the letters “I” or “L.”
  • Get creative. Use phonetic replacements, such as “PH” instead of “F”. Or make deliberate, but obvious misspellings, such as “enjin” instead of “engine.”
  • Keep your passwords on the down-low. Don’t tell anyone your passwords and watch for attackers trying to trick you into revealing your passwords through email or calls. Every time you share or reuse a password, it chips away at your security by opening more ways with which it could be misused or stolen.
  • Unique account, unique password. Having different passwords for various accounts helps prevent cyber criminals from gaining access to these accounts and protect you in the event of a breach. It’s important to mix things up—find easy-to remember ways to customize your standard password for different sites.
  • Double your login protection. Use multi-factor authentication (MFA) to ensure that the only person who has access to your account is you. Use it for email, banking, social media, and any other service that requires logging in.

Utilize a password manager to remember passwords. The most secure way to store all your unique passwords is by using a password manager such as LastPass or 1Password. With just one password, a computer can create and save passwords for every account that you have – protecting your online information, including credit card numbers and their three-digit codes, answers to security questions, and more.

Posted By: Bob Landon – IT Services

 

Posted By: Bob Landon - IT Services