How strong is your password?

Michel Curti Rozatti — Fri, 28 Aug 2009 14:39:25 +0000

People usually don’t give much importance to password strength. We must remember that the strength of a security architecture is equal to its weakest link. So it doesn’t matter if you have a strong cryptography algorithm applied to your data if you use a weak password for your key that can be quickly broken by guessing, or using a brute force or dictionary attack.

A strong password is formed by at least 8 of the most random sequence of letters (uppercase and lowercase), numbers and special characters possible. So we can tell that 3k!0H9w# is a strong password. The problem is, in a world where we have passwords for almost everything, how can we remember this kind of character sequence?

There are some techniques that might help you obtain a strong password and still make it easy to remember. A common one is to switch letters with visually similar numbers or symbols, something like “P0c4h0nt4$” (Pocahontas). To make it better try to not use single words, but small phrases like “!l1k3P0c4h0nt4$” (IlikePocahontas).

If you still think that this is hard, try at least repeating characters in a word, avoiding a basic dictionary attack. For example, “anacondda”.

People tend to use common words for passwords. You can find a lot of lists on the internet. Check then and if your password is there, I recommend you change it immediately.

A free and very good tool called Keepass can help you to safe store all your passwords. The app database is encrypted, and you will need only to remember a master password (keep this one strong) to access all the other ones.

Be safe!

Security Blog » Password Strengh

How strong is your password?