ArtsAutosBooksBusinessEducationEntertainmentFamilyFashionFoodGamesGenderHealthHolidaysHomeHubPagesPersonal FinancePetsPoliticsReligionSportsTechnologyTravel

How to Select and Remember Strong Passwords

Updated on June 29, 2010

When it comes to creating passwords on the internet, many users take a lackadaisical approach. They either use the same password for every site they log in to or use a couple different passwords that are incredibly simple to remember. So if your password for Twitter is "tweet" and your password for your bank account is "money," you should definitely read this article. Hopefully, by using a few different tools, you will be able to both create and remember strong passwords.

Why Passwords Need to Be Strong

So why do you even need to bother with strong passwords? Every day, millions of attempts are made all across the internet to access accounts that contain personal data. Imagine what would happen if one day you woke up and couldn't log into your Gmail account because someone stole your password and then changed it to something different. Because of this, you now can't log in to YouTube, Google Docs, your Google Calendar, see your bookmarks, or view your iGoogle page (all services that rely on a single Google password), and to top it all off, your Android phone doesn't work properly any more (it relies on a continuous connection with your Google account). That's quite a mess. And it gets worse. If you use the same password for all of your accounts, that criminal is now buying things with your credit card on Amazon and eBay, transferring money to his account from Paypal and your bank account, copying photos of you and your kids from Facebook, and sending emails to your boss that would surely get you fired. In the one minute it took for that person to guess your password, your entire life could be ruined. It's scary to think about it this way, but it is necessary to make people change their behavior.

Current Issues with Passwords

As I mentioned above, the biggest problems with passwords these days is that they are simply insecure. You may think that using your phone number as your password is secure enough, but how easy is it to find someone's phone number? A quick trip to whitepages.com will reveal that it is easier than you could imagine. As I also mentioned, the other major problem with passwords is that they are used too often. Every account you own should have a different password. Below, I will talk about how to remember all the accounts you have, most of which you probably don't realize.

Creating a Strong Password

There are several rules to making a password secure. There are also many tools that will allow you to create secure passwords automatically within your browser if you have trouble thinking of ones on your own.

  • A password should be at least 7 characters long
  • Use numbers, letters (both cases), and symbols such as plof1$hinY
  • Do not use whole words, even if they are followed by some numbers. toys4kids is not a strong password.
  • Avoid using your phone number, birth date, or a common number sequence and nothing else such as 11301955 or 3234959981
  • Do not use your own name in the password like johnsmith10
  • Do not use your username in the password. If the username you use for the site is "awesomedude4," then don't make your password involve "awesomedude" in any way.
  • Do not use the word "password," "pass," "letmein," "open," or "love." These are some of the most common words used in a password and are guessed in seconds.
  • Do not use a number sequence such as "123," "987," or "1098."
  • Passwords should not be a string of text directly from the keyboard such as "qwerty" or "poiuyt"
  • Do not use any personally identifiable information in a password such as all or part of a social security number, birth date, marriage date, etc.
  • Good passwords alternate symbols, letters, and numbers instead of putting them in a chain. "abc123!@#" is not a good password, even though it seems to contain all the criteria
  • You can use something that is easy to remember FOR YOU, but alternate it a bit. For example, if your dog's name is Skip, then use "$k1PtheD0g".
  • Common ways to make a password secure, but memorable involve substitutions like: $ for the letter s, 1 for the letter i, 0 for the letter o, and & instead of the word and.
  • For an easier way to create passwords that are strong, look under "Tools to Help With Your Password" for some automatic password generators.

Tools to Help With Your Password

Sometimes it's difficult to think of a strong password on your own. The good news is that there are some tools online to help you with just that. One site, http://www.onlinepasswordgenerator.com/, allows you to just click a button and it responds with strong, secure passwords, that are fairly easy to remember. You can then customize it with some more options as well.

If you use Firefox, there are many add-ons that will create strong passwords from within the browser without even having to go to a different site. One of these is "pwgen," which you can read about and download here.

There are also some tools that any browser can use to keep passwords synced between multiple computers. LastPass is an excellent password manager that can sync between multiple browsers and stores your passwords in encrypted form online. Just remember to use a super-strong master password, and LastPass will do the rest.

Using Different Passwords

You can have the strongest password in the world, but if you use the same one everywhere, and somehow it gets compromised, you're out of luck. You really want to be using different strong passwords for each of your sites. The only way to really do this, without forgetting them is to either use a password that reminds you of the site such as "eM@1L{mE}" for an email account, or use a tool like LastPass to remember them all for you.

Change Passwords Frequently

You might think that it's ridiculous to spend so much time thinking of a good password, only to have to change it. Unfortunately, that's the only way to stay secure. Many times, people steal a password and continue to log in without the user ever knowing. They could be changing settings, forwarding your email to their accounts, etc. and you would never know. The only way to stop them would be to change your password often. I recommend changing important sites such as banking and financial site passwords once every two months. Other, less important sites like your Netflix account you can probably be safe changing twice a year.

Security Questions

Sometimes people create a super strong password, but forget about a little known method that people use to break into their account. Remember when you signed up for an account and it asked you to answer a security question such as "what is your pet's name?" in case you forgot your password? Well think about this: if someone wanted to break into your account, maybe they wouldn't even need your password. Instead, they just have to know the answer to a simple question and then they could reset it and log in. To defeat this, you want to use a question that truly only you would know. Maybe a lot of people don't know your pet's name. But have you ever mentioned it on Facebook or Twitter? Maybe your mother's maiden name is a secret, but could searching for her on Facebook allow a user to see her alternate name (Facebook allows users to enter an alternate name, such as a maiden name, to allow people to find them more easily)?

The questions that you decide to use should be truly secure ones that only you know the answers to. Remember to also monitor your email and report any attempts to change or reset a password that you didn't ask for.

Your Many Accounts

Above, I mentioned that people sometimes have accounts they don't even realize. You should go through all of your bookmarks and history to find sites you log into. Then, go to the settings page and change your password if it isn't secure, or hasn't been changed in a while. Think of Facebook, Myspace, Twitter, YouTube, Gmail, airline sites, eBay, Paypal, your actual computer, Skype, iTunes, Amazon, Yahoo, MSN, Microsoft Live, Digg, Reddit, coupon sites, basically any site that asks you to sign up.

Conclusion

Password security is difficult to take seriously because of the difficulty or remembering and creating strong passwords for each of the hundreds of sites we log in to every day. But with tools like LastPass or another password manager, it is easy to remain secure online.


Tags: thinking of strong passwords, password management, online passwords, changing passwords, password security, passcodes, usernames, username accounts, hijacking accounts, account security, online password security, thinking of strong passwords, remembering strong passwords, how to make passwords strong, how to make passwords unique, remembering my passwords, forgot a password

Comments

    0 of 8192 characters used
    Post Comment

    • Helengi profile image

      Helengi 

      7 years ago from London, England

      Really interesting, thank you. I fear that I have fallen into most of the traps from one time to another. I'm off to create something wonderful and secure now.

    working

    This website uses cookies

    As a user in the EEA, your approval is needed on a few things. To provide a better website experience, hubpages.com uses cookies (and other similar technologies) and may collect, process, and share personal data. Please choose which areas of our service you consent to our doing so.

     Necessary
     Features
     Marketing
     Statistics

    For more information on managing or withdrawing consents and how we handle data, visit our Privacy Policy at: https://hubpages.com/privacy-policy#gdpr

    Show Details
    Necessary
    HubPages Device IDThis is used to identify particular browsers or devices when the access the service, and is used for security reasons.
    LoginThis is necessary to sign in to the HubPages Service.
    Google RecaptchaThis is used to prevent bots and spam. (Privacy Policy)
    AkismetThis is used to detect comment spam. (Privacy Policy)
    HubPages Google AnalyticsThis is used to provide data on traffic to our website, all personally identifyable data is anonymized. (Privacy Policy)
    HubPages Traffic PixelThis is used to collect data on traffic to articles and other pages on our site. Unless you are signed in to a HubPages account, all personally identifiable information is anonymized.
    Amazon Web ServicesThis is a cloud services platform that we used to host our service. (Privacy Policy)
    CloudflareThis is a cloud CDN service that we use to efficiently deliver files required for our service to operate such as javascript, cascading style sheets, images, and videos. (Privacy Policy)
    Google Hosted LibrariesJavascript software libraries such as jQuery are loaded at endpoints on the googleapis.com or gstatic.com domains, for performance and efficiency reasons. (Privacy Policy)
    Features
    Google Custom SearchThis is feature allows you to search the site. (Privacy Policy)
    Google MapsSome articles have Google Maps embedded in them. (Privacy Policy)
    Google ChartsThis is used to display charts and graphs on articles and the author center. (Privacy Policy)
    Google AdSense Host APIThis service allows you to sign up for or associate a Google AdSense account with HubPages, so that you can earn money from ads on your articles. No data is shared unless you engage with this feature. (Privacy Policy)
    Google YouTubeSome articles have YouTube videos embedded in them. (Privacy Policy)
    VimeoSome articles have Vimeo videos embedded in them. (Privacy Policy)
    PaypalThis is used for a registered author who enrolls in the HubPages Earnings program and requests to be paid via PayPal. No data is shared with Paypal unless you engage with this feature. (Privacy Policy)
    Facebook LoginYou can use this to streamline signing up for, or signing in to your Hubpages account. No data is shared with Facebook unless you engage with this feature. (Privacy Policy)
    MavenThis supports the Maven widget and search functionality. (Privacy Policy)
    Marketing
    Google AdSenseThis is an ad network. (Privacy Policy)
    Google DoubleClickGoogle provides ad serving technology and runs an ad network. (Privacy Policy)
    Index ExchangeThis is an ad network. (Privacy Policy)
    SovrnThis is an ad network. (Privacy Policy)
    Facebook AdsThis is an ad network. (Privacy Policy)
    Amazon Unified Ad MarketplaceThis is an ad network. (Privacy Policy)
    AppNexusThis is an ad network. (Privacy Policy)
    OpenxThis is an ad network. (Privacy Policy)
    Rubicon ProjectThis is an ad network. (Privacy Policy)
    TripleLiftThis is an ad network. (Privacy Policy)
    Say MediaWe partner with Say Media to deliver ad campaigns on our sites. (Privacy Policy)
    Remarketing PixelsWe may use remarketing pixels from advertising networks such as Google AdWords, Bing Ads, and Facebook in order to advertise the HubPages Service to people that have visited our sites.
    Conversion Tracking PixelsWe may use conversion tracking pixels from advertising networks such as Google AdWords, Bing Ads, and Facebook in order to identify when an advertisement has successfully resulted in the desired action, such as signing up for the HubPages Service or publishing an article on the HubPages Service.
    Statistics
    Author Google AnalyticsThis is used to provide traffic data and reports to the authors of articles on the HubPages Service. (Privacy Policy)
    ComscoreComScore is a media measurement and analytics company providing marketing data and analytics to enterprises, media and advertising agencies, and publishers. Non-consent will result in ComScore only processing obfuscated personal data. (Privacy Policy)
    Amazon Tracking PixelSome articles display amazon products as part of the Amazon Affiliate program, this pixel provides traffic statistics for those products (Privacy Policy)