A secure password

Owned by Former user (Deleted)
Last updated: Mar 24, 2015 by Former user (Deleted)

How to create a safe password

A good password:

  • at least twelve characters
  • capital and small letters, special characters and numbers
  • no first or last names, no names of animals, no date of birth, ...
  • no words from the dictionary
  • no popular varieties and/or repetitions of common patterns (QWERTY or 123abc)
How to create a good password:

One popular method: Use the first letters of every word in a sentence that you have invented by yourself e.g. "I like to dring a cup of coffee every morning with my friend". --> Iltdacocemwmf 

Is it "ok" to write down your password?
  • Your password can be easily reset or cracked.
  • If somebody break in to your flat or house, they could steel your computer and see your password.
Shall I change my password regularly?

Yes. Each password should be changed in regular intervals. Of course, it is hard to remember all password, but it increases the likelihood that cybercriminals get access to your accounts or data.

It is necessary that I have to use a unique password for each account?

Yes. The problem is the habit to use common passwords for each account. If a cybercriminal get access to your account, they will have access to ALL accounts.

Do I have to change default passwords?

Yes. A lot of software products have predefined passwords e.g. 0000 or admin. It would therefore be advisable to read the manuals and check of predefined passwords. If you find some, CHANGE it!

Do I require a password after sleep or screen saver begins?

The BSI (Federal office for information security) recommends a screen saver password that locks your computer after a short time e.g. five minutes. You can lock your computer immediately with a shortcut (Windows --> windows key + L) (OS X --> with eject key: ctrl + shift + eject     no eject key: ctrl + shift + power button) (Linux [Ubuntu] --> ctrl + alt + L)

It is recommendable to share a password with third parties or send it via email?

Of course not. If you share your passwords with third parties or send it via an unencrypted email, you will lose control of your privacy and it was a waste of time to create a secure password.

Selftest

Here you can check if you are infected by an identity theft.

Here you can check your password security of your own password.

Here you can check how long it takes to crack your own password with a power of a desktop computer.

Sources 

Federal office for information security - Password (German)

Regulation using password (German)

 

For more and detailed information: cryptography lecture (Christian Forler) --> branch: passwords and entropy (German)