It is hard for people who are not adept with computer technology to understand why a password of a pet's name or your mother's maiden name is not sufficient protection and why good passwords have to be changed regularly. The beauty of the Internet is the freedom of information it offers, but that is exactly why it can also be a risky space. There are websites and chat groups that are designed to assist those with criminal intent, including hackers. Hundreds of programs are also available online that do nothing but crack passwords. For these reasons and many more it is vital that care is taken when setting your password.
What is a 'strong' password?
A 'strong' password has a recommended minimum of 8 characters, with a combination of upper (ABC) and lower case letters (abc), numbers (123) and symbols(!@#). It should change on a regular basis, and should change immediately if you suspect you have been compromised. Many workplaces have an automatic function that requests that you regularly change your password or you are denied access to the network. This is prudent protection and not meant as an inconvenience. It is a good practice for home users as well.
Your password is useless if you leave it on a sticky note attached to your computer monitor or written on the underside of your keyboard. The password links you, or others, to specific activity on the computer. In a work situation you may be held responsible for activity using that password, so never give it to a co-worker, or to a family member if you have work equipment at home, such as a laptop.
How can you remember your password?
There are lots of ways to remember passwords. You can source them from a particular saying or rhyme. You can use the same substitutions in all your passwords (@=a, 0=o etc). You can take an eight-word phrase you remember and use the first letters of each word. For example, 'The best food in the world is chocolate'. That yields the password TbfitwiC. Then change i to 1 and w to $. That gives you Tbf1t$iC and meets the criteria for a strong password. A strong password still does need to change with some frequency, so work out a system that gives you an on-going supply of good passwords.
What is two factor identification?
Entering a password is providing a single factor for authenticating who you are and your right to access that particular system. Online banking is at the forefront of security practices and many banks are now moving to a second factor of authentication. You might use a special token, or the bank might call you on your mobile with a second one-off password to use for access on that single occasion. There are even computers being made now with a pad for registering your thumb print (called Biometrics) or you may be required to insert a special USB smart key. The higher the level of security, the more factors needed to confirm your identity for access.
