Passwords are required for logging into your system,
website, or an application. The logging credentials include a username and a
password and both these needs to be secure enough for maintaining your account
from theft or vulnerability from intruders. Strong usernames and passwords are
essential for those who use the system and online services more frequently.
Weak passwords increase your vulnerability to hackers and intruders and
increase the chances of identity theft. Strong passwords are critical for computer
and online security. A strong password is important in protecting your system
and also helps you have a safe online interaction. The
liability is serious when it is your company's security that is compromised which
also includes your customer's. So password security is overall important both
at the personal level and also for the company. One of the problems with passwords
is that users forget them but that is not an excuse for using weak passwords.
Here are some steps that you can take to avoid common
password pitfalls by avoiding weak passwords, creating strong passwords, and
keeping it secure enough.
Avoid Weak Passwords:
1. Do not use personal information. You should never use
personal information as a part of your password such as your first name, last
name, login name, pet's name, child's birth date, names of family members, pets, or close acquaintances and other similar details in
any form.
2. Do not use a password less than at least 8 characters
long.
3. Do not use real words or dictionary words in any language.
Today there are tools that are available to help attackers guess your password
by trying every word in the dictionary and find your password. So it is not better
you do not use real words for the password.
4. Do not use consecutive sequences, repetitive numbers,
letters, or characters such as 12345678, AAAAAAAA, or %%%%%% etc.
5. Do not use words spelled forward or backward
words, common misspellings, or abbreviations.
6. Do not use adjacent keyboard letters such as qwerty, yuiop, or
asdfghjkl.
7. Do not use easily obtained information, such as your
name, birthday, driver's license, passport number, address, license plate
numbers, telephone numbers, credit card or ATM numbers, Social Security or
Social Insurance numbers, email addresses, popular book titles, movie titles,
phrases, or similar information.
8. Do not use the same password for logging in to different
websites or applications.
Use Strong Passwords
1.Use a strong mnemonic pass phrase that is easy for you to
remember that is without writing it down, but hard for others to guess. Try to
remember a pass phrase that is a password created using various character types,
which should also not be a word in the dictionary. Think of a sentence or a
line from a song or poem that you like and create a password using the first
letter from each word. For example, you can use 2 in place of ‘to,’ 4 in place
of ‘for,’ and 0 in place of ‘o’, using an exclamation mark ! in place of ‘i’. Learn
the key pattern used in the pass phrase for your password.
2. Mix different character types. You can make a password
much more secure by mixing with a variety of different characters types. Make
it a combination of upper case letters, lower case letters along with numbers,
punctuation, and other symbols.
2. It should be at least eight characters long rather than a
very short one.
3. Use a password that is quick to type, in case someone is
peering over your shoulder in a public place but also not too weak.
5. Use very strong password in websites and applications
that need extra security such as logging in banks, credit card companies etc.
Secure Your Passwords
1. Never write down passwords. Unfortunately, the most
secure passwords are very hard to remember. If you must write it down, disguise
it and keep it in a safe place.
2. Never share your password with anyone. Protect all
passwords as you would you’re your credit card or your bank PIN number.
3. Never store passwords unencrypted on your computer. This
is one of the means of getting your password stolen by hacking or online theft.
4. You should use a different password for each website or
application that you are going to log in.
5. You should change your password at least every 30 to 60
days or so. Set an automatic reminder for yourself to change your passwords on
your email, banking, and credit card websites about every three months.
6. Password management software can be used when managing a
lot of passwords. These tools maintain a list of usernames and passwords in
encrypted form. Some programs will automatically fill in the username and
password information on sites and applications. Great care needs to be taken to
protect access to your password database with a strong master password, access
card, or USB key.
7. Beware of phishing scams that imitate an authorized
website and ask for your password without you knowing that it is a fake one.
8. Never type your password when anyone is standing nearby.
