Internet Safety
Passwords: The First Step to Safety
Passwords: The first step to safety
Most people don't put a lot of thought into creating a password. It's usually easiest just to create a short, easy-to-remember password, or even just to use the same password for every account you have. After all, the average person probably won't be able to guess your password.
However, hackers often use password-cracking software that can keep testing many different passwords until they find the correct one, and they can easily crack weak passwords. By creating strong passwords, you can greatly reduce the chance that your personal or financial information will be stolen.
Common password mistakes
Many people create passwords based on their spouse's name, a hobby, or a simple pattern, since those types of passwords are easy to remember. Unfortunately, they are also very easy for hackers to guess. To create a strong password, you will need to avoid these types of common mistakes.
Review the infographic below to learn some common password mistakes.
To see more examples of common password mistakes, check out The 25 worst passwords of 2013.
Tips for creating strong passwords:
- Never use personal information such as your name, birthday, or spouse's name. Personal information is often publicly available, which makes it easier for someone to guess your password.
- Use a longer password. Your password should be at least six characters long, and for extra security it should ideally be at least 12 characters (if the site allows it).
- If you need to write down your passwords, keep them in a secure place. It's even better if you encrypt your passwords, or just write down hints for them that others won't be able to understand.
- Don't use the same password for each account. If someone discovers your password for one account, all of your other accounts will be vulnerable.
- Try to include numbers, symbols, and both uppercase and lowercase letters (if the site allows it).
- Avoid using words that can be found in the dictionary. For example, "swimming1" would be a weak password.
- Random passwords are the strongest. Use a password generator instead of trying to think of your own.
- Random passwords are harder to remember, so create a mnemonic device. For example, "H=jNp2#" can be remembered as "HARRY = jessica NOKIA paris 2 #." This may still seem random, but with a bit of practice it becomes relatively easy to memorize. You can also choose a sentence that you know you'll remember and then use the first letter of each word in the sentence, plus a few symbols or numbers, as your password.
Using password managers
Instead of writing your passwords on paper where others can easily see them, you can use a password manager to encrypt and store them online. Some password managers can also generate random passwords, making your information even more secure. Examples of password managers include LastPass, KeePass, Firefox's password manager, and Google Chrome's password manager.
For example, when using LastPass, you will first need to install the LastPass browser plugin. Whenever you type a password on a website, the browser plugin will ask you whether you want to save it. The next time you go to the website, LastPass can automatically enter the password for you. If someone else wants to use your computer, you can simply log out of LastPass to prevent the other person from accessing your information.