Our lives today are deeply interconnected with online services and digital connectivity. Accessing these services and the devices that connect them will always require authentication of some kind. The methods used for authentication range from biometric technologies like using a fingerprint scanner or facial recognition, to four digit PINS or patterns.
However, passwords are a form of authentication that serves as the backbone for accessing most services and devices, and how to create strong passwords is critical to your security.
Having strong passwords to protect your devices and online accounts is more important now than it has ever been. This is due to the proliferation of cyber threats from a wide range of sources. Weak passwords are like leaving the front door of your house open, as it invites cybercriminals to take advantage of your personal information.
Protecting this information requires strong passwords, the first line of defense against unauthorized access. This guide will equip you with the knowledge and tools to create strong passwords to keep your online accounts safer.
Before we get into creating strong passwords, I’ll first like to talk about usernames and passwords and how they are used in a system. The first thing you encounter when you visit an online site or log in to a computer is a prompt asking you to enter your username and password. This initial stage is referred to as identification. You make your identity known to the system. The second stage is called authentication. You demonstrate that you are who you say you are; this process is also known as entity authentication.
After entering your username and password, the computer will compare your input with the entries stored in a password file. Successful login requires the input of a valid username and its corresponding password. If there is an error with the username or password, the login will not be successful. Typically, the login screen will reappear, allowing you to make another attempt. Many systems track the number of unsuccessful attempts and take measures to restrict or delay additional attempts once a specific limit has been reached.
Authentication may be required not only at the beginning of a session, but also at specific intervals throughout the session. This is done to minimize the risk of an attacker exploiting an unattended device or online service while another user is logged on, this is known as repeated authentication.
Most computer systems rely on using identification and authentication through username and password as their first line of defense. For most users, this mechanism has become an integral part of the routine of starting a session for an online service or accessing a device.
The username and password is a mechanism that is widely accepted and not too difficult to implement. On the other hand, managing password security can be sometimes challenging, and obtaining a valid password is a common way of gaining unauthorized access to an account or computer system.
Managing Your Passwords
Passwords should be kept close to the individual it is supposed to authenticate. It is not recommended to convey passwords via email, text message, or by phone because there is the risk of the password being intercepted by an intruder.
Before delving into the complexities of creating strong passwords, it is important to have a solid understanding of the significance of effectively managing passwords. For example, using the same passwords for multiple accounts is a definite no-no, and remembering complexed and unique passwords for every account can be overwhelming.
You can consider using a trustworthy password manager that can streamline your online security by creating strong passwords and storing them a secure location. Password managers can encrypt and store complexed passwords for each of your accounts. They can also be used to autofill your login credentials anytime to need to authenticate to an online service.
Create Strong Passwords
So, how do you create a strong password? Choosing a password is a critical security issue. In theory, all passwords are susceptible to an attacker guessing it, either by a brute force attack or through an intelligent search. The important thing is to keep the probability of someone guessing the password as low as possible. Below is a guide to selecting a strong password.
1. Password Length
Use a minimum of 12 characters or more. Longer passwords are exponentially more difficult to crack.
2. Avoid Obvious Choices
It’s actually quite surprising how well-prepared attackers are when it comes to having lists of commonly used passwords. Avoid the use of easily guessable patterns like “12345” or obvious words like “password” (I still encounter people using this). Also refrain from sequences like “abcdef” or keyboard patterns like “tyuiop”.
3. Complexity to Create Strong Passwords
Incorporate a mix of upper and lower case symbols, and include numerical and other non-alphabetical symbols (@, #, $, &, % etc.) to create more complexed passwords.
4. Stay Clear of the Dictionary
Avoid using everyday words or trendy words, and words from dictionaries. Using these, hackers can use computer tools that can break passwords.
5. Consider Passphrases
You might want to consider using passphrases rather than passwords, by stringing together words that are not related. This will make it easier to remember while yet retaining a level of complexity. Passphrases are longer combinations of words or sentences that are simpler to remember but more difficult to guess.
Secure Passwords Tips
Below are some password best practices that can provide even greater security.
1. Use Unique Passwords
It goes without saying that you should not use the same password across multiple accounts. For each account, use a unique and complexed password. This keeps your other accounts safe even if someone is able to access one of them.
2. Use a Password Manager
As mentioned earlier, consider using a reliable password manager to create and store strong passwords safely. Password managers are great for effortlessly managing multiple passwords. Most modern browsers like Google Chrome or Microsoft Edge have built-in password managers that you can use for free.
It is important to remember that to use a password manager securely, the actual password for the password manager must be just as strong or even stronger, as it holds many of your passwords on file. If someone gets a hold of the password for your password manager, they would have access to all the passwords stored in it.
3. Enable Two-Factor Authentication (2FA)
It’s a good idea to enable Two-Factor Authentication (2FA) whenever you can. This provides an additional level of security by asking for a second form of verification, like a code sent to your phone, along with your password.
4. Change Passwords Regularly
This one can very easily be overlooked, but you should change your passwords regularly, especially for sensitive accounts like online banking. This can reduce the chances of an attacker successfully guessing your password using a brute force attack.
5. Monitor Your Accounts
It is always wise to be vigil, so make sure to keep an eye on your accounts for any signs of suspicious activity. If you happen to come across anything out of the ordinary, it might be a good idea to update your password right away.
Spoofing Attacks
Even the strongest passwords can’t always protect you, and one of the most common dangers for online accounts is spoofing attacks. A spoofing attack is when an attacker tries to copy real websites to trick people into giving up their login credentials. Watch out for phishing emails and websites that can look real, fooling you into giving away your login information.
Be careful with emails or text messages telling you to click on links or give out your password. Make sure to double-check the URL before entering any sensitive information, and consider enabling two-factor authentication whenever you can. And as mentioned before, make sure to keep an eye on your accounts for any unusual activity.
Summary
Passwords are still the cornerstone for online security. Protecting your digital identity from attack requires creating strong passwords. By following the steps outlined in this guide, you can greatly enhance your protection against brute force attacks.
Make sure to use strong, distinct, and complexed passwords, take advantage of password managers, enable Two-Factor Authentication, and stay proactive with updates and monitoring.
And a suggestion as I close, consider your password security seriously, and invest a bit of time and effort now to avoid any potential security issues down the line. Stay vigilant and stay secure.
Skip to content 
