The point of a password is to let you in but keep others out of systems that might contain sensitive information. Sounds obvious but there is an increasing trend in making passwords so complicated that you cannot remember them either!
This often leads people to write them down... every IT engineers' nightmare!
So, to combat this we suggest you create a password in the following format:
- Two unrelated dictionary words containing at least one capital letter (maybe more if that makes sense to you) separated by a number or symbol. You can even add symbols or number on the end to help increase the security.
Something like this:
Get the idea?
The Science bit!
Recent studies have shown this kind of password is more secure from a brute force attack than a complicated password where one word if used with substations of certain letters for numbers and far less likely to be written down as users have found them more memorable.
Another great tip is to keep three passwords at any given time:
- A secure but throw-away password - use this online for those sites that insist you sign up but you don't really have any financial dealing with e.g. social media, ebay, online email etc. Make sure you change this one regularly.
- A second secure, memorable password - reserve this for secure online accounts. e.g. your bank, paypal, secure email systems etc., Do not use it anywhere else. Never enter it into a site after following a link in an email, always navigate straight to these sites. Again consider changing this regularly.
- A completely private secure password - think of this as an offline password. Never let it near the Internet. Use this for your desktop password, and screen saver password and yes, change this regularly too!