Password Security 101
Password Tips

"Strongest Security" = "Weakest Password"

Maintain security and reduce vulnerability: use strong passwords. Weak passwords increase your vulnerability to hackers and intruders, and increase the chances of identity theft. Strong passwords are critical for computer security.

Remember, it's not just you and your company that are compromised, it's also your customer. What is your liability?

Avoid Weak Passwords
Use Strong Passwords
Secure your passwords
Phishing 101

Avoid Weak Passwords

your first name, last name, or login name, in any form
consecutive or repetitive numbers or letters such as 12345678 or AAAAAAAA
adjacent keyboard letters such as qwerty or asdfghjk
common and obvious letter-number replacements (e.g. replace the letter O with number 0)
easily guessed personal information such as names and dates of yourself, family members, pets and close acquaintances
easily obtained information, such as:
- address
- license plate numbers
- telephone numbers
- credit card or ATM numbers
- Social Security or Social Insurance numbers
- email addresses
dictionary words, in any language, forward and backward
popular book titles, movie titles, or phrases
short passwords

Use Strong Passwords

ideally, a strong mnemonic passphrase (easy for you to remember, without writing it down, but hard for others to guess)
e.g.
"It helps to use a rhyme or mnemonic."
The previous sentence could represent the reasonably strong password, "Ih2uar0m."
at least eight characters long
a combination of upper and lower case letters, numbers, punctuation and other symbols
quick to type, in case anyone is peering over your shoulder

Secure Your Passwords

Never write down passwords.
Unfortunately, the most secure passwords are very hard to remember.
- Try to come up with a mnemonic
- Learn the key pattern when typing your password
- Most people can learn any random password in about a week of daily use
- If you must write it down, disguise it and keep it in a safe place (as with a credit card).
Never share your password with anyone. Protect all passwords as you would protect your bank PIN.
Never store passwords unencrypted on your computer. Password management software is great for managing many passwords, but take great care to protect access to your password database with a strong password, access card or USB key! (Or better, a combination of these).
Never type your password when anyone is standing nearby.
Beware of phishing scams.
Change your password frequently.
Never use the same password in many places, especially online!
Food for thought: Key clicks betray passwords, typed text

Password References

Password Crackers - Ensuring the Security of Your Password
Creating stronger passwords -- Microsoft Article
Selecting Good Passwords -- Advanced Laboratory Workstation System
Password -- Wikipedia
Improving the Security of your Unix System by David A. Curry
Free Random Password Generator
Password Tips
Use Strong Passwords
Longer Passwords Enhance Computer Security
How Passwords are Stored
Use Different Passwords
Passwords in Email
Two Factor Authentication
NT Password Length -- The LM Hash Factor

Link to this page

Knowledge is power. The Bitmill Inc. encourages links to our site. While your links to our site are much appreciated, please note that reciprocal links will be considered subject to relevance and quality. To link to this page, please cut and paste the following HTML code into your web page source file.

Thank you for your interest and support.