Tips for Creating Safe, Useful Passwords

Passwords are the curious curse of our generation. I'm quite certain that my father and previous ancestors didn't need to worry about them on a day to day basis.

The topic is fresh in my mind because we started setting up this blog a few weeks ago as we planned a major update to www.armanda.com. We set the administrative password, as well as individual passwords for Armanda & for me. This blog was a low priority for me, so I either didn't write down my password or I lost the Post It I used for writing it down. Either way, it took several attempts for me to hit on the correct combination of user ID and password today.

What should I have done differently? You would think I would know after all these years of dealing with ATM cards, voicemail, websites, computers, email, and other common items that require a password.

Tip #1: A password should be something that you can easily remember. 'Nuf said.

Tip #2: A password should be difficult for others to guess. Don't use your birthday, your child's name, your pet's name, or simple sequences of letters or numbers on the keyboard such as "qwertyuiop" or "123456789".

Tip #3: It's best to use a "strong" password. Use both uppercase and lowercase letters, and add at least one number or special character (such as $ or # or *, etc.). Perhaps your favorite song by The Who is "Boris the Spider", which was released in 1966 ... Boris1966 might make a great password. It contains both uppercase and lowercase letters and some numbers; it's 9 characters long, and it would be easily remembered.

Tip #4: Use a longer, rather than a shorter, password. Go for at least 8 or 10 characters. The longer it is, the more difficult it will be for others to guess. Just don't make it too long for your own memory!

Tip #5: Do not use the same password for everything. Even if someone does crack one of your passwords, following this advice will keep them from having free run of all your accounts, files, etc. (I will admit to re-using some passwords, though, since it eventually becomes impossible for me to remember a unique password for every online membership, email account, bank account, ecommerce site, etc., etc.)

Password Fanaticism

If you want to really kick it up a notch, consider the following advice for protecting your computer & other accounts.

1. Change your passwords regularly. Some would say this should be done at least every six months. I have also worked for companies that required a change every three months.

2. Change your password immediately if you have even the slighest inkling that someone might have figured it out.

3. Don't share your password with anyone.

4. Don't use the "remember password" feature in your web browser for critical accounts. What happens if someone borrows or steals your computer?

5. Don't type your passwords on public computers (at a hotel, library, etc.) or on a computer that belongs to someone who is lax in their own security efforts. Spyware or keylogging software could compromise your privacy.

I wonder if I will remember the password for this blog the next time I want to log in?