Get the right password for you and your business

You may not have heard of it National Institute of Standards and Technology (NIST) Special Publication 800-63, Appendix A.. But you have used its contents from your first online account and password to this day. This is because it includes the first password rules, such as requiring a combination of lowercase and uppercase letters, numbers, and special characters, as well as recommending that you change your password every 90 days.

There is only one problem. Bill Barr, who originally set these rules, thinks he blew it away.. “”Much of what I did now regrets,“The bar said The· The Wall Street Journal years ago.

why? This is because most people can’t bother to make significant changes when updating their passwords. For example, change “Abcdef1!” Instead of “Abcdef1?”. Next is “Abcdef”. etc.

I hate these rules, so in the end Completely incomplete password Instead, like “123456” or “password”. A typical cracking program takes less than a second to break any of these. It’s best not to use a password at all.

And if you do it “correctly”, you end up with a very hard-to-remember password. xkcd936! Remember semi-arbitrary strings such as EMC2. Most people can’t.

Instead, both NIST and cartoonist Randall Munroe have better ideas. Use a passphrase instead of a password. Both passphrases, such as “I LoveUNC basketballin 2021!”, Are easy to remember, and even if they contain real words, they are relatively difficult to break.

Copyright © 2021 IDG Communications, Inc.

Get the right password for you and your business

Source link Get the right password for you and your business

Back to top button