Checklist for choosing a strong password

By

– April 19, 2010Posted in: CIO, Security

This checklist will help you choose a strong password both at work and at home.

This checklist will help you choose a strong password both at work and at home.
Ensure it isn’t in the previous top 10 list of most commonly used passwords.
Ensure it isn’t a dictionary word or a number of dictionary words concatenated together.
Ensure it isn’t a person’s name, brand name, place name, the name of your football team and so on.
Ensure you haven’t used obvious character/numeric substitution. For example 3nglish, Rubb1sh and so on. There was a time when this was regarded as a secure password, but not any more. As hackers have learnt end-users tricks, they have added the words to their password cracking dictionaries.
Don’t use simple sequences such as 987654321 or QwErTy.
Use a different password for each system and service that you use.
Change your passwords regularly. The more important the system, such as electronic banking, the more frequent they should be changed.
Don’t use a password that can be linked back to you, such as using your date of birth, your wife’s name or your pet’s name.
Make sure your password is at least 8 characters long. For important systems, such as electronic banking, a password of 15 characters of longer is far more secure.
According to Microsoft, a password of 15 random letters and numbers is around 33,000 times stronger than an 8 character password.
Don’t use an incremental password system, such as mYpAssword01, mYpAssword02, mYpAssword03 and so on.
Don’t write your passwords down
Don’t share your passwords or tell anyone else.
Make sure you use non alphanumeric characters such as ,.<>?/;:@’~#{}[]_+-=()*!”£$%^&

Image of Information Security Management Principles: An ISEB Certificate

Resources for CIO and COO Professionals

Remember to bookmark the following ….

CIOCOO.com
add CIOCOO.com/feed/rss/ to your RSS feed
and follow twitter.com/timbullock/ on Twitter

For more information, contact

For copyright details, refer to http://ciocoo.com/legal/copyright/
For terms of use, refer to http://ciocoo.com/legal/terms-of-use/

© Copyright Tim Bullock 2010

Tags: Management, Password, Security

No Comments

Start the ball rolling by posting a comment on this article!

Leave a Reply Cancel reply

Recommended reading
Headlines
- Cloud storage - comparison of the main service providers http://t.co/7XG08h2J about 3 days ago
- RT @bcsjersey: @BCSJersey @JerseyTelecom Gigabit Jersey presentation slides from this event can be viewed here http://t.co/lpq8zutu about 3 days ago
- Stay legal on-line. What can you legally post? Here's a good test and an eye-opener http://t.co/qMLZuKcy about 6 days ago
- RT @LiveTheBusiness: FBI issues warning on hotel Internet connections http://t.co/Nvrqqt4s about 1 week ago
- Wearing headphones for just an hour will increase the bacteria in your ear by 700 times - yuk !! about 1 week ago
- RT @bcsjersey: @BCSJersey working with Jersey education: Schools competition has 486 entries - well done everyone !! about 1 week ago
- Security tip: When being interviewed on TV, make sure passwords aren't written behind you http://t.co/Ekk2Ag8H about 1 week ago
- Software architecture training comes to Jersey http://t.co/jdrMIuHV /cc @SimonBrown @JerseyTourism about 1 week ago
- Twitter users - time to change your password as 55,000 accounts and passwords are published http://t.co/uKjPvpxj about 1 week ago
- RT @bcsjersey: @BCSJersey event:'Gigabit Jersey-What is it exactly?' 16 May. JT Global explain this initiative and pose your questions h ... about 2 weeks ago
@timbullock