Password Security Advice
With it being National Password Day, these are strongly recommended tips to keep your account as secure as possible.
NIST has prompted change in creating stable passwords. Before, a safe, secure password was considered to be a mix of uppercase and lowercase letters mixed with numbers and special characters. Now, the National Institute of Standards and Technology is recommending creating lengthier passwords over complicated ones. However, a recent article from Forbes has shot down that recommendation, stating that those are still too predictable and create an easier shot for cybercriminals to hack into your credentials.
It’s also been recommended that users don’t change their passwords, contrary to previous advice that’s told them to change their passwords every few months. Really, you should only switch it up if there’s suspicious activity on your accounts. Otherwise, you risk creating weaker passwords that hackers will crack quicker.
So what is the safest approach to creating a strong password? Over the years, researchers keep introducing alternatives to passwords; even some companies, like Microsoft, are turning to passkeys, logins that use a PIN number or a form of biometrics, like facial recognition or fingerprints.
Recently, to prevent cracks in the system, law enforcement suggests using passphrases – a combination of words – to secure an account or system. According to Forbes, 30% of those passwords are likely to be cracked, though, depending on the commonality of the used words – so don’t be predictable!
Overall, no matter the current trends around password security, it’s best to keep your logins long and arbitrary and install multi-factor authentication, an extra security measure.
Sources:
Forbes: Law Enforcement Can Break 77% Of ‘Three Random Word’ Passwords
Cybersecurity News: NIST Recommends New Rules for Password Security
Bleeping Computer: The 7 technology trends that could replace passwords