Aiden Haines - 1/30/2023

Passwords & Why Replacing O With 0 Does Nothing

Introduction

Hey! So glad you are interested in making stronger passwords. In 2022, I made an article about Using a Password Manager & The Importance of Strong Passwords, and while I STILL RECOMMEND READING THIS, I'm going to show you today why short complex passwords are not as secure today.

What is a complex password?

When you make an account, you are told in the password field that it needs to be 8 characters, requires a symbol, and blah blah blah. A lot of people all fall into the same problem of re-using the same password over and over with small, difficult remember, alterations. Let's say, Eric, a Star Wars fan, uses this same password for everything.

Password: ToYoda

Then they get told that they need a number and a symbol, that might look something like this.

Complex password: T0yoD@

This password is difficult to remember and in the world of "hacking" only takes a few more seconds to crack.

But how do you make a secure, memorable password?!

Introducing, passphrases. A passphrase is a string of words used to make a password.

For example, a great password for Eric may be.

Passphrase: crafter unwitting sublime overrule

Ahh, I tricked you there, you thought it would be something with Yoda in it, but no. Another thing that makes passwords insecure is adding things you related to you them. Passwords should be unique so they can't be socially engineered. For example, don't make where you graduated in your password.

I can't remember that...

There is a site called Use a Passphrase and it will generate random passphrases every time you click the button. It's 100% secure and does not share your passwords (I checked). I tend to just click a few times until one of the combinations just sticks with me, I visualize a graphic of the words and put it into a scene that will help me remember. Here is a great comic to explain everything I have said above.

Comic of passphrase

Conclusion

Instead of using complex characters, using a passphrase made up of random words is recommended. This makes it easier to remember, yet still secure. Websites such as https://www.useapassphrase.com/ can generate random passphrases for you to use. If you have any questions feel free to email me at ahaines@palmyra.k12.nj.us

Thanks for reading and have a great day!