Security Corner

Mar 29 2014   9:36PM GMT

Oh no! Not another password post!

Ken Harthun Ken Harthun Profile: Ken Harthun

bad-passwordsYes, another post about passwords, choosing secure ones. Unfortunately, they aren’t going to go away anytime soon and, equally unfortunately, they are getting easier and easier to break. In a recent blog post, Bruce Schneier said: “As insecure as passwords generally are, they’re not going away anytime soon. Every year you have more and more passwords to deal with, and every year they get easier and easier to break. You need a strategy.”

Indeed. Agreed. I’ve written many posts about how to choose secure passwords. I’m not the only one. In addition to the blog post mentioned above, here are some other resources that have strategies designed to help you create secure passwords. Oh, and regardless of what any of these articles say is the best length for a password, I recommend no fewer than 12 characters and prefer 15 characters. This number is always a moving target, subject to adjustment upward as computing power increases. Here’s my top five list:

Steve Gibson’s Password Haystacks: https://www.grc.com/haystack.htm
My article: Is your password “qeadzcwrsfxv1331?”
Sophos’ How to Choose a Strong Password: http://nakedsecurity.sophos.com/2010/02/03/choose-strong-password
Roger Grimes’ Creating strong passwords is easier than you think
Microsoft’s Tips: http://windows.microsoft.com/en-us/windows-vista/tips-for-creating-a-strong-password

 

 Comment on this Post

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: