Security Corner

Aug 31 2011   8:52PM GMT

Creating a corporate password policy

Ken Harthun Ken Harthun Profile: Ken Harthun

How many of you have been through this?

“Why does my password expire so often?”

“I can’t change my password, why does it expire?”

“Why can’t I use ‘abc123′ as my password?”

“I can’t log in; did you change my password?”

“I changed my password, but it doesn’t work.”

“I used ‘fido1′ and it doesn’t work.”

I find myself in the midst of a  major IT initiative and the powers that be are asking my what I recommend. I keep pointing them to my posts about the new password paradigm and others I have written over the years, but they keep asking me what I think.

Here’s what I think: Choose a memorable word or phrase, add a couple of characters to the front and back – also things you will remember – and leave it at that. Mix it up a bit. The hackers don’t know what you’re doing. My dog’s name is Missy. She was born in 2007. My password is “Missy07*(”

It’s not rocket science, people. Jeesh!

The key is the last two characters which is my personal password enhancement pattern.

 Comment on this Post

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: