The Principles of Password Security
The Principles of Password Security
Passwords are the gatekeepers protecting your digital and online presence. They are your foremost line of defense in the intricate landscape of cyberspace, robust passwords act as the initial and often most critical security barrier against unauthorized access.
Understanding how to effectively create passwords and manage them, represents a fundamental component of daily cybersecurity practices.
Neglecting fundamental password security practices, such as using strong, unique passwords for different accounts, regularly updating them, and enabling multi-factor authentication, dramatically increases your susceptibility to a multitude of cyber threats. T
his can expose your personally identifiable information, financial data, and other sensitive details, as well as business data, to unauthorized access.
Three Principles of Password Security
Three Principles of Password Security
According to the National Cybersecurity Alliance, there are three (3) principles to creating strong, unique passwords.
1. Strong - Passwords should be at least 16 characters long. The longer your password, the longer it takes for hackers to crack it using brute force techniques. Right now, an eight-character password takes a few minutes for hacker software to guess by trying every combination of letters, numbers, and symbols. A 16-character password takes a billion years to guess!
2. Unique - Each account should have a unique password. If you reuse passwords, don’t feel ashamed! Reusing passwords is a bad habit many of us are guilty of, but you can start changing your habits today! Reusing passwords across multiple accounts can cause huge headaches. If one account is compromised, unique passwords ensure your other accounts remain secure. Small tweaks like adding a number or a special character aren’t enough; each password should be entirely distinct. You can use a password manager to create and store unique passwords for all your accounts!
3. Complex - Passwords should include a mix of uppercase and lowercase letters, numbers, and special characters (like @, !, or $). Some platforms even allow spaces. The strongest passwords are a long string of random characters, not identifiable words, names, or dates. However, even if your passwords are random, you must ensure they are each at least 16 characters long!
*We recognize that the guidelines evolve quickly. ETS will provide updates as they become available in future editions.
Additional Resources
Additional Resources
Robust password security is crucial due to the extensive digital storage of personal and financial information. Using strong, unique passwords for all online accounts is essential to protect against unauthorized access, data breaches, and identity theft, as a weak password can compromise multiple accounts.
Create and Use Strong Passwords (National Cybersecurity Alliance)
Use Strong Passwords (Cybersecurity & Infrastructure Security Agency, CISA)
Quick Reference Sheets
Quick Reference Sheets
Passwords and Passphrases (The Security Awareness Company)
How to Create Strong Passwords (The Security Awareness Company)
Layers Up For World Password Day (The Security Awareness Company)
Power Up Your Passwords (KnowBe4)
Page updated
Report abuse