Every time we are faced with creating a new account on some website, we cringe at the thought of having to create one more “password”. Arrrrggggghhhhh!!!! It’s easier to reuse the same password I used last week, to sign up for the shopping site. One strong password for everything; that ought to work right?
It works, till one account gets compromised. Since you used the same password on multiple websites, all of a sudden all those accounts also stand compromised. And going by the state of things today, that can happen real soon.
So what are your choices, if not this?
Well that’s where we come in, to tell you how to create strong passwords. We at SecurityJedi have been using strong combination passwords for as long as we can remember. The method used to create strong passwords is to take four unrelated words, string them together to form a strong password.
Here is where we got the idea from. We have to admit, it’s a great way to create strong passwords. Now at this point some of you might be wondering how do I find four unrelated words? Well to be honest, they do not need to be completely unrelated, but something that you can relate to while still keeping it difficult to guess.
Say for example you enjoy online shopping; four unrelated words you could choose could be, collar button sleeve cuff, that could be your password and that would be perfectly alright. It’s not so much as finding four difficult words to piece together, just stuff that you can relate to easier and yet make it a little difficult to guess at the same time.
However, if you use a lot of web services, in no time you would be running out of memory space trying to remember all the passwords. In the event that you have a lot of accounts that need strong passwords, remembering all this data would require a lot of processing cycles of your brain. That by any measure, is not an easy task.
Enter Password Managers.
For the ones who have too many accounts to keep track of, we would recommend using a password manager. There are a few options to choose from, LastPass, Dashlane, KeePass etc. We use Lastpass and are quite impressed with it.
It serves the purpose perfectly. All you need is to create one master(because you only need one, you can make it increasingly complex) password, to be used to login into LastPass. They have browser extensions for both Chrome and Firefox, so as to avoid having to login into the website. Once logged in, you can create passwords having varying degrees of complexity and of any required length. Password Managers like LastPass help you create secure passwords, that are increasingly complex and best of all, you do not have to remember any of it. It does make your life easier and certainly secure, just as we like it here at SecurityJedi.
I really enjoy the article post. Much obliged.
This is one awesome blog.Really thank you! Much obliged.
I’ve seen similar reoctirtisns but still consider the security sufficient ifa) you have some random login number that you write downb) your account gets blocked after 3 tries.If the login number was your account number it could be used for denial of service, so I prefer a random number.Of course someone could still steal your hashed password from the bank and brute-force it which is easier for simple password.But then this is not much easier than installing a trojan, staging a man in the middle attack or sniff your password by other means.
While for banking we do wish people have stronger passwords than their account numbers itself, we agree a random number / string would be secure enough. Just make sure to remember what it was considering it was random in the first place. 🙂