Creating a Strong Password Skip to main content
Information Security
YOUR SOURCE FOR IMPROVING INFORMATION SECURITY FOR YOURSELF AND OUR CES COMMUNITY.

Creating a Strong Password

Passwords can be the difference between getting hacked and keeping accounts secure. Creating a strong password is an essential part of protecting your identity, accounts, and network. They are often the first line of defense and should be managed with care.

Basic Guidelines

Here are some simple guidelines for creating and maintaining strong passwords:

  • Add between 16 and 20 characters. Anything shorter can be decrypted by a hacker in an hour or less
  • Add numbers, symbols, and a combination of upper and lowercase letters
  • Don’t store passwords on desktop sticky notes. You can find them easily, but so can everyone else.
  • Don’t recycle or repeat passwords.
  • Avoid incorporating keyboard patterns like 1234 or zxcv.
  • Personal information like pet names or birthdays are off-limits.

Pass Phrases

Memorizing passwords is easier when they derive from a phrase rather than a random word or combination of symbols. You can create a pass phrase by compiling a series of words (with or without spaces) and then replacing some of the letters with other symbols. For example, if a user wanted to use the phrase whale watcher popcorn, they might modify it like so: Wh8Lw8tCHrp0pCRN!. The stranger the phrase, the more difficult it will be to decrypt.

Password Managers

The safest way to store passwords is through a password manager. Password managers are third-party applications that encrypt homemade or auto-generated passwords. They allow the user to access their passwords with a master password. Some reliable password managers are LastPass, Dashlane, KeePass, Bitwarden, or 1Password—but always research the application before giving it your passwords.

Watch the following video for more information: Cars, Ducks, and Passwords